Paper 2022/1459

Circuit Privacy for FHEW/TFHE-Style Fully Homomorphic Encryption in Practice

Kamil Kluczniak, CISPA Helmholtz Center for Information Security
Abstract

A fully homomorphic encryption (FHE) scheme allows a client to encrypt and delegate its data to a server that performs computation on the encrypted data that the client can then decrypt. While FHE gives confidentiality to clients' data, it does not protect the server's input and computation. Nevertheless, FHE schemes are still helpful in building delegation protocols that reduce communication complexity, as the ciphertext's size is independent of the size of the computation performed on them. We can further extend FHE by a property called circuit privacy, which guarantees that the result of computing on ciphertexts reveals no information on the computed function and the inputs of the server. Thereby, circuit private FHE gives rise to round optimal and communication efficient secure two-party computation protocols. Unfortunately, despite significant efforts and much work put into the efficiency and practical implementations of FHE schemes, very little has been done to provide useful and practical FHE supporting circuit privacy. In this work, we address this gap and design the first randomized bootstrapping algorithm whose single invocation sanitizes a ciphertext and, consequently, serves as a tool to provide circuit privacy. We give an extensive analysis, propose parameters, and provide a C++ implementation of our scheme. Our bootstrapping can sanitize a ciphertext to achieve circuit privacy at an 80-bit statistical security level in between 1.3 and 0.9 seconds, depending which Gaussian sampling algorithm is used, and whether the parameter set targets a fast Fourier or a number theoretic transform-based implementation. In addition, we can perform non-sanitized bootstrapping in around 0.27 or 0.14 seconds. Crucially, we do not need to increase the parameters to perform computation before or after sanitization takes place. For comparison's sake, we revisit the Ducas-Stehl\'e washing machine method. In particular, we give a tight analysis, estimate efficiency, review old, and provide new parameters.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Preprint.
Keywords
Fully Homomorphic EncryptionCircuit PrivacyBootstrapping
Contact author(s)
kamil kluczniak @ gmail com
History
2024-03-08: last of 4 revisions
2022-10-25: received
See all versions
Short URL
https://ia.cr/2022/1459
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2022/1459,
      author = {Kamil Kluczniak},
      title = {Circuit Privacy for {FHEW}/{TFHE}-Style Fully Homomorphic Encryption in Practice},
      howpublished = {Cryptology {ePrint} Archive, Paper 2022/1459},
      year = {2022},
      url = {https://eprint.iacr.org/2022/1459}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.