[go: up one dir, main page]

What a lovely hat

Is it made out of tin foil?

Paper 2021/204

Revisiting Homomorphic Encryption Schemes for Finite Fields

Andrey Kim
Yuriy Polyakov
Vincent Zucca
Abstract

The Brakerski-Gentry-Vaikuntanathan (BGV) and Brakerski/ Fan-Vercauteren (BFV) schemes are the two main homomorphic encryption (HE) schemes to perform exact computations over finite fields and integers. Although the schemes work with the same plaintext space, there are significant differences in their noise management, algorithms for the core homomorphic multiplication operation, message encoding, and practical usability. The main goal of our work is to revisit both schemes, focusing on closing the gap between the schemes by improving their noise growth, computational complexity of the core algorithms, and usability. The other goal of our work is to provide both theoretical and experimental performance comparison of BGV and BFV. More precisely, we propose an improved variant of BFV where the encryption operation is modified to significantly reduce the noise growth, which makes the BFV noise growth somewhat better than for BGV (in contrast to prior results showing that BGV has smaller noise growth for larger plaintext moduli). We also modify the homomorphic multiplication procedure, which is the main bottleneck in BFV, to reduce its algorithmic complexity. Our work introduces several other novel optimizations, including lazy scaling in BFV homomorphic multiplication and an improved BFV decryption procedure in the Residue Number System (RNS) representation. We also develop a usable variant of BGV as a more efficient alternative to BFV for common practical scenarios. We implement our improved variants of BFV and BGV in PALISADE and evaluate their experimental performance for several benchmark computations. The experimental results suggest that our BGV implementation is faster for intermediate and large plaintext moduli, which are often used in practical scenarios with ciphertext packing, while our BFV implementation is faster for small plaintext moduli.

Note: Small typo fixes in the Appendix.

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
A major revision of an IACR publication in ASIACRYPT 2021
Keywords
homomorphic encryption BGV BFV software implementation
Contact author(s)
ypolyakov @ dualitytech com
History
2022-10-31: last of 6 revisions
2021-03-01: received
See all versions
Short URL
https://ia.cr/2021/204
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/204,
      author = {Andrey Kim and Yuriy Polyakov and Vincent Zucca},
      title = {Revisiting Homomorphic Encryption Schemes for Finite Fields},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/204},
      year = {2021},
      url = {https://eprint.iacr.org/2021/204}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.