Paper 2024/1921
Downlink (T)FHE ciphertexts compression
Abstract
This paper focuses on the issue of reducing the bandwidth requirement for FHE ciphertext transmission. While this issue has been extensively studied from the uplink viewpoint (transmission of encrypted inputs towards a FHE calculation) where several approaches exist to essentially cancel FHE ciphertext expansion, the downlink case (transmission of encrypted results towards an end-user) has been the object of much less attention. In this paper, we address this latter issue with a particular focus on the TFHE scheme for which we investigate a number of methods including several approaches for switching to more compact linearly homomorphic schemes, reducing the precision of T(R)LWE coefficients (while maintaining acceptable probabilities of decryption errors) and others. We also investigate how to use these methods in combination, depending on the number of FHE results to transmit. We further perform extensive experiments demonstrating that the downlink FHE ciphertext expansion factor can be practically reduced to values below 10, depending on the setup, with little additional computational burden.
Metadata
- Available format(s)
-
PDF
- Category
- Public-key cryptography
- Publication info
- Preprint.
- Keywords
- FHEciphertext compression
- Contact author(s)
-
antonina bondarchuk @ cea fr
olive chakraborty @ cea fr
couteau @ irif fr
renaud sirdey @ cea fr - History
- 2024-11-29: approved
- 2024-11-26: received
- See all versions
- Short URL
- https://ia.cr/2024/1921
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2024/1921,
author = {Antonina Bondarchuk and Olive Chakraborty and Geoffroy Couteau and Renaud Sirdey},
title = {Downlink (T){FHE} ciphertexts compression},
howpublished = {Cryptology {ePrint} Archive, Paper 2024/1921},
year = {2024},
url = {https://eprint.iacr.org/2024/1921}
}
