RNS Arithmetic Approach in Lattice-Based Cryptography: Accelerating the &amp;#x0022;Rounding-off&amp;#x0022; Core Procedure

Bajard, Jean-Claude; Eynard, Julien; Merkiche, Nabil; Plantard, Thomas

doi:10.1109/arith.2015.30

Cited by 13 publications

(14 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…no multiple of M 0 should appear in the residues of the output in base M), the base M 0 has to be large enough to completely represent the result. In further parts, different approaches and their consequences will be discussed [4,5].…”

Section: Adapting Babai's Rounding-off Algorithm To Rnsmentioning

confidence: 99%

See 1 more Smart Citation

RNS Approach in Lattice-Based Cryptography

Bajard¹,

Eynard²

2017

Embedded Systems Design With Special Arithmetic and Number Systems

Self Cite

View full text Add to dashboard Cite

Section: Adapting Babai's Rounding-off Algorithm To Rnsmentioning

confidence: 99%

“…The pure RNS approach deals with the procedures FastRnsModRed and GamRnsBabaiRO depicted in Algorithms 6 and 7, which have been implemented on FPGA [5]. The complexity analysis is summarized in Table 13.2.…”

Section: About the Full Rns Approachmentioning

confidence: 99%

RNS Approach in Lattice-Based Cryptography

Bajard¹,

Eynard²

2017

Embedded Systems Design With Special Arithmetic and Number Systems

Self Cite

View full text Add to dashboard Cite

“…The RNS representation, proposed in the late 50s in [3], [4], is increasingly used for large modular arithmetic computations and asymmetric cryptography implementations, see for instance [11], [12], [13], [9], [14], [10], [8].…”

Section: A Residue Number System (Rns)mentioning

confidence: 99%

Hybrid Position-Residues Number System

Bigou

Tisserand

2016

2016 IEEE 23nd Symposium on Computer Arithmetic (ARITH)

View full text Add to dashboard Cite

We propose an hybrid representation of large integers, or prime field elements, combining both positional and residue number systems (RNS). Our hybrid position-residues (HPR) number system mixes a high-radix positional representation and digits represented in RNS. RNS offers an important source of parallelism for addition, subtraction and multiplication operations. But, due to its non-positional property, it makes comparisons and modular reductions more costly than in a positional number system. HPR offers various trade-offs between internal parallelism and the efficiency of operations requiring position information. Our current application domain is asymmetric cryptography where HPR significantly reduces the cost of some modular operations compared to state-of-the-art RNS solutions. Index Terms-number representation; large integer; finite field; modular arithmetic; residue number system.

show abstract

“…Lemma 2 enables an e cient and correct RNS rounding as long as k( 1 2 kvck q ) 1 ⇠ has the size of a modulus [4]. Concretely, one computes (3) t , it su ces that v satisfies the following bound:…”

Section: Correcting the Approximate Rns Roundingmentioning

confidence: 99%

“…And the rounding operation involves comparisons which require to switch from RNS to another positional system anyway, should it be a classical binary system or a mixed-radix one [12]. To provide an e cient RNS variant of Dec FV , we use an idea of [4]. To this end, we introduce relevant RNS tools.…”

Section: Towards a Full Rns Decryptionmentioning

confidence: 99%

A Full RNS Variant of FV Like Somewhat Homomorphic Encryption Schemes

Bajard

Eynard

Hasan

et al. 2017

Lecture Notes in Computer Science

Self Cite

133

163

View full text Add to dashboard Cite

Abstract. Since Gentry's breakthrough work in 2009, homomorphic cryptography has received a widespread attention. Implementation of a fully homomorphic cryptographic scheme is however still highly expensive. Somewhat Homomorphic Encryption (SHE) schemes, on the other hand, allow only a limited number of arithmetical operations in the encrypted domain, but are more practical. Many SHE schemes have been proposed, among which the most competitive ones rely on (Ring-) Learning With Error (RLWE) and operations occur on high-degree polynomials with large coe cients. This work focuses in particular on the Chinese Remainder Theorem representation (a.k.a. Residue Number Systems) applied to large coe cients. In SHE schemes like that of Fan and Vercauteren (FV), such a representation remains hardly compatible with procedures involving coe cient-wise division and rounding required in decryption and homomorphic multiplication. This paper suggests a way to entirely eliminate the need for multi-precision arithmetic, and presents techniques to enable a full RNS implementation of FV-like schemes. For dimensions between 2 11 and 2 15 , we report speed-ups from 5⇥ to 20⇥ for decryption, and from 2⇥ to 4⇥ for multiplication.

show abstract

RNS Arithmetic Approach in Lattice-Based Cryptography: Accelerating the "Rounding-off" Core Procedure

Cited by 13 publications

References 21 publications

RNS Approach in Lattice-Based Cryptography

RNS Approach in Lattice-Based Cryptography

Hybrid Position-Residues Number System

A Full RNS Variant of FV Like Somewhat Homomorphic Encryption Schemes

Contact Info

Product

Resources

About