Paper 2017/246

An Analysis of FV Parameters Impact Towards its Hardware Acceleration

Joël Cathébras, Alexandre Carbon, Renaud Sirdey, and Nicolas Ventroux


The development of cloud computing services is restrained by privacy concerns. Centralized medical services for instance, require a guarantee of confidentiality when using outsourced computation platforms. Fully Homomorphic Encryption is an intuitive solution to address such issue, but until 2009, existing schemes were only able to evaluate a reduced number of operations (Partially Homomorphic Encryption). In 2009, C. Gentry proposed a blueprint to construct FHE schemes from SHE schemes. However, it was not practical due to the huge data size overhead and the exponential noise growth of the initial SHE. Since then, major improvements have been made over SHE schemes and their noise management, and resulting schemes, like BGV and FV, allow to foresee small applications. Besides scheme improvements, new practical approaches were proposed to bring homomorphic encryption closer to practice. The $IV$-based stream cipher trans-ciphering approach brought by Canteaut et al. in 2015 reduces the on-line latency of the trans-ciphering process to a simple homomorphic addition. The homomorphic evaluation of stream ciphers, that produces the trans-ciphering keystream, could be computed in an off-line phase, resulting in an almost transparent trans-ciphering process from the user point of view. This approach combined with hardware accelerations could bring homomorphic encryption closer to practice. This paper deals the choice of FV parameters for efficient implementation of this scheme in the light of related works' common approaches. At first sight, using large polynomial degree to reduce the coefficients size seemed to be advantageous, but further observations contradict it. Large polynomial degrees imply larger ciphertexts and more complex implementations, but smaller ones imply more primes to find for CRT polynomial representation. The result of this preliminary work for the choice of an adequate hardware target motivates the choice of small degree polynomials rather than small coefficients for the FV scheme.

Available format(s)
Publication info
Published elsewhere. Minor revision. WAHC'17 - 5th Workshop on Encrypted Computing and Applied Homomorphic Cryptography
Homomorphic evaluationFV parametersChinese Remainder TheoremNumber Theorical Transform
Contact author(s)
joel cathebras @ cea fr
2017-03-20: received
Short URL
Creative Commons Attribution


      author = {Joël Cathébras and Alexandre Carbon and Renaud Sirdey and Nicolas Ventroux},
      title = {An Analysis of FV Parameters Impact Towards its Hardware Acceleration},
      howpublished = {Cryptology ePrint Archive, Paper 2017/246},
      year = {2017},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.