Paper 2022/1438

Plug-and-play sanitization for TFHE

Florian Bourse
Malika Izabachène
Abstract

Fully Homomorphic encryption allows the evaluation of any circuits over encrypted data while preserving the privacy of the data. However, without any additional properties, no guarantee is provided for the privacy of the circuits which are evaluated. A sanitization algorithm allows to destroy all previous information about how a ciphertext was obtained, ensuring that the circuit which was evaluated remains secret. In this paper, we present two techniques to randomize RLWE ciphertexts, and show how they can be used to achieve ciphertext sanitization for the TFHE scheme proposed by Chilotti et al (Asiacrypt 2016), by modifying the bootstrapping procedure internally. The first technique is a generalization of the strategy proposed by Bourse et al (Crypto 2016) to the ring setting. While this approach adapts well in theory, we show evidence that it fails to provide a practical solution. To improve over this strategy, we relax the circuit privacy property to its computational counterpart, and make use of an efficient public randomizer composed of an RLWE-based public key encryption with additional properties on the ciphertexts distribution. This randomizer can also be used in the soak-and-spin paradigm of Ducas and Stehlé (Eurocrypt 2016). Using a backward induction over the circuit size, we also improve on the proof technique from Bourse et al to avoid randomization at each step of the computation, enabling faster randomization and smaller noise growth. As a proof of concept, we provide a C implementation of our sanitization strategy, which shows that a sanitized LWE ciphertext can be obtained almost for free compared to a bootstrapped LWE ciphertext assuming many discrete Gaussian samples at hand.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Preprint.
Keywords
Fully Homomorphic Encryptioncircuit privacyleftover hash lemmasanitizationbootstrapping implementation
Contact author(s)
florian bourse @ ens fr
malika izabachene @ gmail com
History
2024-03-12: last of 2 revisions
2022-10-21: received
See all versions
Short URL
https://ia.cr/2022/1438
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2022/1438,
      author = {Florian Bourse and Malika Izabachène},
      title = {Plug-and-play sanitization for TFHE},
      howpublished = {Cryptology ePrint Archive, Paper 2022/1438},
      year = {2022},
      note = {\url{https://eprint.iacr.org/2022/1438}},
      url = {https://eprint.iacr.org/2022/1438}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.