R/pars.R
In iamtrask/R-Homomorphic-Encryption-Package: Fully Homomorphic Encryption
Defines functions
pars
Documented in
pars
#' Setup encryption scheme parameters
#'
#' Use this function to create an encryption scheme parameters object.
#'
#' Currently only the scheme of Fan and Vercauteren (\code{"FandV"}) is implemented.
#'
#' For \code{"FandV"} you may specify:
#' \describe{
#' \item{\code{d}}{power of the cyclotomic polynomial ring (default 4096);}
#' \item{\code{sigma}}{the standard deviation of the discrete Gaussian used to
#' induce a distribution on the cyclotomic polynomial ring (default 16.0);}
#' \item{\code{qpow}}{the power of 2 to use for the coefficient modulus (default 128);}
#' \item{\code{t}}{the value to use for the message space modulus (default 32768).}
#' }
#'
#' This function simply sets up the parameters which must be specified to use a
#' particular encryption scheme. Using the scheme then requires generating
#' cryptographic keys.
#'
#' @param scheme the scheme for which to create a parameter object. Currently
#' only Fan and Vercauteren's scheme is supported by specifying \code{"FandV"}.
#'
#' @param ... pass the specific options for the chosen scheme as named arguments
#' to override any default values. See the details section for options for
#' encryption schemes currently implemented.
#'
#' @references
#' Fan, J., & Vercauteren, F. (2012). Somewhat Practical Fully Homomorphic
#' Encryption. IACR ePrint. Retrieved from \url{https://eprint.iacr.org/2012/144}
#'
#' @seealso
#' \code{\link{parsHelp}} for automatic assistance selecting parameters which
#' achieve a certain security level and multiplicative depth.
#'
#' \code{\link{keygen}} to generate encryption keys using these parameters.
#'
#' @examples
#' # Simplest example
#' p <- pars("FandV")
#' keys <- keygen(p)
#' ct <- enc(keys$pk, 1)
#' dec(keys$sk, ct)
#'
#' # Change degree of cyclotomic polynomial used for ciphertext
#' p <- pars("FandV", d=2048)
#' keys <- keygen(p)
#' ct <- enc(keys$pk, 1)
#' dec(keys$sk, ct)
#'
#' @author Louis Aslett
pars <- function(scheme, ...) {
args <- list(...)
if(scheme=="FandV") {
p <- list(d=4096, sigma=16, qpow=128, t=32768)
if("d" %in% names(args)) {
if(as.integer(log2(args$d))!=log2(args$d)) stop("d must be a power of 2.")
if(args$d<32) stop("d must >=32.")
p$d <- args$d
}
if("sigma" %in% names(args)) {
if(args$sigma<=0.0) stop("Sigma must be >=0.")
p$sigma <- args$sigma
}
if("qpow" %in% names(args)) {
if(args$qpow<=0) stop("qpow must be >0.")
if(args$qpow%%2!=0) stop("qpow must be divisible by 2 (for relinearisation optimisation).")
p$qpow <- args$qpow
}
if("t" %in% names(args)) {
if(args$t<=0) stop("t must be >0.")
if(log2(args$t)>p$qpow) stop("message space modulus (t) cannot exceed coefficient modulus (2^qpow).")
p$t <- args$t
}
# Figure out multiplicative depth this can support
L <- 1
while(FandV_testDepth(L, d=as.bigz(p$d), q=as.bigz(2)^(p$qpow), t=p$t, B_err=as.bigz(3*p$sigma))) {
L <- L+1
}
L <- L-1
# Figure out security provided
lambda <- 2
while(FandV_maxqLP11(p$d, lambda, p$sigma) > p$qpow) {
lambda <- lambda+1
}
lambda <- lambda-1
p <- new(FandV_par, p$d, p$sigma, p$qpow, p$t, lambda, L)
attr(p, "FHEt") <- "pars"
attr(p, "FHEs") <- "FandV"
return(p)
}
# if(scheme=="FandV_CRT") {
# p <- list(d=4096, sigma=16, qpow=128, t=c(32693, 32707, 32713, 32717, 32719, 32749))
# if("d" %in% names(args)) {
# if(as.integer(log2(args$d))!=log2(args$d)) stop("d must be a power of 2.")
# if(args$d<32) stop("d must >=32.")
# p$d <- args$d
# }
# if("sigma" %in% names(args)) {
# if(args$sigma<=0.0) stop("Sigma must be >=0.")
# p$sigma <- args$sigma
# }
# if("qpow" %in% names(args)) {
# if(args$qpow<=0) stop("qpow must be >0.")
# if(args$qpow%%2!=0) stop("qpow must be divisible by 2 (for relinearisation optimisation).")
# p$qpow <- args$qpow
# }
# if("t" %in% names(args)) {
# if(length(args$t)<2) stop("more than one modulus must be provided (else use FandV rather than FandV_CRT).")
# if(any(args$t<=0)) stop("t must be >0.")
# if(any(log2(args$t)>p$qpow)) stop("message space modulus (t) cannot exceed coefficient modulus (2^qpow).")
# p$t <- args$t
# }
# pres <- list()
# for(i in 1:length(p$t)) {
# pres[[i]] <- new(FandV_par, p$d, p$sigma, p$qpow, p$t[i])
# attr(pres[[i]], "FHEt") <- "pars"
# attr(pres[[i]], "FHEs") <- "FandV"
# }
# class(pres) <- "FandV_CRT"
# attr(pres, "FHEt") <- "pars"
# attr(pres, "FHEs") <- "FandV_CRT"
# return(pres)
# }
stop("The scheme ", scheme, " is not recognised. Currently only 'FandV' and 'FandV_CRT' are implemented.")
}
iamtrask/R-Homomorphic-Encryption-Package documentation built on May 29, 2019, 2:56 p.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Defines functions pars
Documented in pars
#' Setup encryption scheme parameters
#'
#' Use this function to create an encryption scheme parameters object.
#'
#' Currently only the scheme of Fan and Vercauteren (\code{"FandV"}) is implemented.
#'
#' For \code{"FandV"} you may specify:
#' \describe{
#' \item{\code{d}}{power of the cyclotomic polynomial ring (default 4096);}
#' \item{\code{sigma}}{the standard deviation of the discrete Gaussian used to
#' induce a distribution on the cyclotomic polynomial ring (default 16.0);}
#' \item{\code{qpow}}{the power of 2 to use for the coefficient modulus (default 128);}
#' \item{\code{t}}{the value to use for the message space modulus (default 32768).}
#' }
#'
#' This function simply sets up the parameters which must be specified to use a
#' particular encryption scheme. Using the scheme then requires generating
#' cryptographic keys.
#'
#' @param scheme the scheme for which to create a parameter object. Currently
#' only Fan and Vercauteren's scheme is supported by specifying \code{"FandV"}.
#'
#' @param ... pass the specific options for the chosen scheme as named arguments
#' to override any default values. See the details section for options for
#' encryption schemes currently implemented.
#'
#' @references
#' Fan, J., & Vercauteren, F. (2012). Somewhat Practical Fully Homomorphic
#' Encryption. IACR ePrint. Retrieved from \url{https://eprint.iacr.org/2012/144}
#'
#' @seealso
#' \code{\link{parsHelp}} for automatic assistance selecting parameters which
#' achieve a certain security level and multiplicative depth.
#'
#' \code{\link{keygen}} to generate encryption keys using these parameters.
#'
#' @examples
#' # Simplest example
#' p <- pars("FandV")
#' keys <- keygen(p)
#' ct <- enc(keys$pk, 1)
#' dec(keys$sk, ct)
#'
#' # Change degree of cyclotomic polynomial used for ciphertext
#' p <- pars("FandV", d=2048)
#' keys <- keygen(p)
#' ct <- enc(keys$pk, 1)
#' dec(keys$sk, ct)
#'
#' @author Louis Aslett
pars <- function(scheme, ...) {
args <- list(...)
if(scheme=="FandV") {
p <- list(d=4096, sigma=16, qpow=128, t=32768)
if("d" %in% names(args)) {
if(as.integer(log2(args$d))!=log2(args$d)) stop("d must be a power of 2.")
if(args$d<32) stop("d must >=32.")
p$d <- args$d
}
if("sigma" %in% names(args)) {
if(args$sigma<=0.0) stop("Sigma must be >=0.")
p$sigma <- args$sigma
}
if("qpow" %in% names(args)) {
if(args$qpow<=0) stop("qpow must be >0.")
if(args$qpow%%2!=0) stop("qpow must be divisible by 2 (for relinearisation optimisation).")
p$qpow <- args$qpow
}
if("t" %in% names(args)) {
if(args$t<=0) stop("t must be >0.")
if(log2(args$t)>p$qpow) stop("message space modulus (t) cannot exceed coefficient modulus (2^qpow).")
p$t <- args$t
}
# Figure out multiplicative depth this can support
L <- 1
while(FandV_testDepth(L, d=as.bigz(p$d), q=as.bigz(2)^(p$qpow), t=p$t, B_err=as.bigz(3*p$sigma))) {
L <- L+1
}
L <- L-1
# Figure out security provided
lambda <- 2
while(FandV_maxqLP11(p$d, lambda, p$sigma) > p$qpow) {
lambda <- lambda+1
}
lambda <- lambda-1
p <- new(FandV_par, p$d, p$sigma, p$qpow, p$t, lambda, L)
attr(p, "FHEt") <- "pars"
attr(p, "FHEs") <- "FandV"
return(p)
}
# if(scheme=="FandV_CRT") {
# p <- list(d=4096, sigma=16, qpow=128, t=c(32693, 32707, 32713, 32717, 32719, 32749))
# if("d" %in% names(args)) {
# if(as.integer(log2(args$d))!=log2(args$d)) stop("d must be a power of 2.")
# if(args$d<32) stop("d must >=32.")
# p$d <- args$d
# }
# if("sigma" %in% names(args)) {
# if(args$sigma<=0.0) stop("Sigma must be >=0.")
# p$sigma <- args$sigma
# }
# if("qpow" %in% names(args)) {
# if(args$qpow<=0) stop("qpow must be >0.")
# if(args$qpow%%2!=0) stop("qpow must be divisible by 2 (for relinearisation optimisation).")
# p$qpow <- args$qpow
# }
# if("t" %in% names(args)) {
# if(length(args$t)<2) stop("more than one modulus must be provided (else use FandV rather than FandV_CRT).")
# if(any(args$t<=0)) stop("t must be >0.")
# if(any(log2(args$t)>p$qpow)) stop("message space modulus (t) cannot exceed coefficient modulus (2^qpow).")
# p$t <- args$t
# }
# pres <- list()
# for(i in 1:length(p$t)) {
# pres[[i]] <- new(FandV_par, p$d, p$sigma, p$qpow, p$t[i])
# attr(pres[[i]], "FHEt") <- "pars"
# attr(pres[[i]], "FHEs") <- "FandV"
# }
# class(pres) <- "FandV_CRT"
# attr(pres, "FHEt") <- "pars"
# attr(pres, "FHEs") <- "FandV_CRT"
# return(pres)
# }
stop("The scheme ", scheme, " is not recognised. Currently only 'FandV' and 'FandV_CRT' are implemented.")
}
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.