[Resource Topic] 2022/771: Field Instruction Multiple Data

Welcome to the resource topic for 2022/771

Title:
Field Instruction Multiple Data

Authors: Khin Mi Mi Aung, Enhui Lim, Jun Jie Sim, Benjamin Hong Meng Tan, Huaxiong Wang, and Sze Ling Yeo

Abstract:

Fully homomorphic encryption~(FHE) has flourished since it was first constructed by Gentry~(STOC 2009). Single instruction multiple data~(SIMD) gave rise to efficient homomorphic operations on vectors in ((\mathbb{F}{t^d})^\ell), for prime (t). RLWE instantiated with cyclotomic polynomials of the form (X^{2^N}+1) dominate implementations of FHE due to highly efficient fast Fourier transformations. However, this choice yields very short SIMD plaintext vectors and high degree extension fields, e.g. (\ell < 100, d > 100) for small primes~((t = 3, 5, \dots)). In this work, we describe a method to encode more data on top of SIMD, \emph{Field Instruction Multiple Data}, applying reverse multiplication friendly embedding~(RMFE) to FHE. With RMFE, length-(k) (\mathbb{F}{t}) vectors can be encoded into (\mathbb{F}_{t^d}) and multiplied once. The results have to be recoded~(decoded and then re-encoded) before further multiplications can be done. We introduce an FHE-specific technique to additionally evaluate arbitrary linear transformations on encoded vectors for free during the FHE recode operation. On top of that, we present two optimizations to unlock high degree extension fields with small (t) for homomorphic computation: (r)-fold RMFE, which allows products of up to (2^r) encoded vectors before recoding, and a three-stage recode process for RMFEs obtained by composing two smaller RMFEs. Experiments were performed to evaluate the effectiveness of FIMD from various RMFEs compared to standard SIMD operations. Overall, we found that FIMD generally had (>2\times) better (amortized) multiplication times compared to FHE for the same amount of data, while using almost (k/2 \times) fewer ciphertexts required.

ePrint: https://eprint.iacr.org/2022/771

Talk: https://www.youtube.com/watch?v=TE_sYzJtZQc&t=1517

Slides: https://iacr.org/submit/files/slides/2022/eurocrypt/eurocrypt2022/347/slides.pdf

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .