From f18b7c2a5562e6763d0e11f8450fea9d619ed6fc Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Thu, 7 Apr 2022 12:08:52 +0200
Subject: [PATCH 01/42] remove redundant code

---
 new_scripts.py | 23 -----------------------
 1 file changed, 23 deletions(-)

diff --git a/new_scripts.py b/new_scripts.py
index 84ffd46d8..7e3855e61 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -168,28 +168,6 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128])
     return results
 
 
-
-def test_it():
-
-    D = nd.NoiseDistribution.DiscreteGaussian
-    DEFAULT_PARAMETERS = LWE.Parameters(n=1024, q=2**64, Xs=D(0.50, -0.50), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')
-
-
-    # x = estimate(params)
-    # y = get_security_level(x, 2)
-    # print(y)
-    #z1 = automated_param_select_n(schemes.TFHE630.updated(n=786), 128)
-    #print(z1)
-    sd_range = [1,4]
-    print("working...")
-    z3 = generate_parameter_matrix(DEFAULT_PARAMETERS, sd_range=[5, 6], target_security_levels=[128, 192, 256])
-    # TODO: in this function call the initial guess for n is way off (security is ~60-bits instead of close to 128).
-    print(z3)
-    save(z3, "123.sobj")
-
-    return z3
-
-
 def generate_zama_curves64(sd_range=[2, 60], target_security_levels=[128, 192, 256]):
 
     D = ND.DiscreteGaussian
@@ -198,5 +176,4 @@ def generate_zama_curves64(sd_range=[2, 60], target_security_levels=[128, 192, 2
 
     return raw_data
 
-
 generate_zama_curves64()
\ No newline at end of file

From d0efc71796b3f254fc8d79f1c20e37aa3d0ba691 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Mon, 11 Apr 2022 15:11:03 +0100
Subject: [PATCH 02/42] allow for a single arg for AWS

---
 new_scripts.py | 19 +++++++++++++++----
 1 file changed, 15 insertions(+), 4 deletions(-)

diff --git a/new_scripts.py b/new_scripts.py
index 7e3855e61..4232c5066 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -2,6 +2,7 @@ from estimator_new import *
 from sage.all import oo, save
 from math import log2
 
+
 def old_models(security_level, sd, logq = 32):
     """
     Use the old model as a starting point for the data gathering step
@@ -142,7 +143,7 @@ def automated_param_select_n(params, target_security=128):
 
     return params
 
-def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128]):
+def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128], name="v0.sobj"):
     """
     :param sd_range: a tuple (sd_min, sd_max) giving the values of sd for which to generate parameters
     :param params: the standard deviation of the LWE error
@@ -164,16 +165,26 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128])
             Xe_new = nd.NoiseDistribution.DiscreteGaussian(2**sd)
             params_out = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
             results["{}".format(lam)].append((params_out.n, params_out.q, params_out.Xe.stddev))
+            save(results, "{}.sobj".format(name))
 
     return results
 
 
-def generate_zama_curves64(sd_range=[2, 60], target_security_levels=[128, 192, 256]):
+def generate_zama_curves64(sd_range=[2, 60], target_security_levels=[256], name="v0256.sobj"):
 
     D = ND.DiscreteGaussian
     init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')
-    raw_data = generate_parameter_matrix(init_params, sd_range=sd_range, target_security_levels=target_security_levels)
+    raw_data = generate_parameter_matrix(init_params, sd_range=sd_range, target_security_levels=target_security_levels, name=name)
 
     return raw_data
 
-generate_zama_curves64()
\ No newline at end of file
+def plota_curve(raw_data, security_level):
+
+    data = raw_data["{}".format(security_level)]
+
+import sys
+a = int(sys.argv[1])
+print(a)
+
+generate_zama_curves64(target_security_levels=[a])
+

From 5d4de0cd95fde3ad08917a4899fd03086431bf76 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Mon, 11 Apr 2022 15:12:46 +0100
Subject: [PATCH 03/42] naming

---
 new_scripts.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/new_scripts.py b/new_scripts.py
index 4232c5066..f91b22b0b 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -186,5 +186,5 @@ import sys
 a = int(sys.argv[1])
 print(a)
 
-generate_zama_curves64(target_security_levels=[a])
+generate_zama_curves64(target_security_levels=[a], name="{}".format(a))
 

From 00691670655d0ab25c2d00f45884ea1de1a5a225 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Mon, 11 Apr 2022 16:38:07 +0100
Subject: [PATCH 04/42] optimize

---
 new_scripts.py | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/new_scripts.py b/new_scripts.py
index f91b22b0b..fdee04dea 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -122,12 +122,8 @@ def automated_param_select_n(params, target_security=128):
 
     # final estimate (we went too far in the above loop)
     if security_level < target_security:
-        # TODO: we should somehow keep the previous estimate stored so that we don't need to compute it twice
-        # if we do this we need to make sure that it works for both sides (i.e. if (i-1) is above or below the
-        # security level
-
+        # we go back
         params = params.updated(n = params.n - z * 8)
-        costs = estimate(params)
         security_level = get_security_level(costs, 2)
 
     print("the finalised parameters are n = {}, log2(sd) = {}, log2(q) = {}, with a security level of {}-bits".format(params.n,

From 468dcfc1f3b184da75fb61cf0f9625fe2bcca289 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 12 Apr 2022 13:33:37 +0100
Subject: [PATCH 05/42] add script to bypass mem issues

---
 job.sh | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100755 job.sh

diff --git a/job.sh b/job.sh
new file mode 100755
index 000000000..52a2a071a
--- /dev/null
+++ b/job.sh
@@ -0,0 +1,4 @@
+#!/bin/sh
+sage-python new_scripts.py 80
+sage-python new_scripts.py 128
+sage-python new_scripts.py 192

From 85f05ea6618482ed54a856354446352368814cde Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 12 Apr 2022 14:03:22 +0100
Subject: [PATCH 06/42] uypdates for aws

---
 new_scripts.py | 25 +++++++++++++++----------
 1 file changed, 15 insertions(+), 10 deletions(-)

diff --git a/new_scripts.py b/new_scripts.py
index fdee04dea..c3a98ad50 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -1,6 +1,9 @@
+import gc
+
 from estimator_new import *
 from sage.all import oo, save
 from math import log2
+import gc
 
 
 def old_models(security_level, sd, logq = 32):
@@ -35,7 +38,6 @@ def old_models(security_level, sd, logq = 32):
 
     return round(n_est)
 
-
 def estimate(params, red_cost_model = RC.BDGL16):
     """
     Retrieve an estimate using the Lattice Estimator, for a given set of input parameters
@@ -45,7 +47,6 @@ def estimate(params, red_cost_model = RC.BDGL16):
     est = LWE.estimate(params, deny_list=("arora-gb", "bkw"), red_cost_model=red_cost_model)
     return est
 
-
 def get_security_level(est, dp = 2):
     """
     Get the security level lambda from a Lattice Estimator output
@@ -59,7 +60,6 @@ def get_security_level(est, dp = 2):
     security_level = round(log2(min(attack_costs)), dp)
     return security_level
 
-
 def inequality(x, y):
     """ A utility function which compresses the conditions x < y and x > y into a single condition via a multiplier
     :param x: the LHS of the inequality
@@ -71,7 +71,6 @@ def inequality(x, y):
     if x > y:
         return -1
 
-
 def automated_param_select_n(params, target_security=128):
     """ A function used to generate the smallest value of n which allows for
     target_security bits of security, for the input values of (params.Xe.stddev,params.q)
@@ -109,9 +108,6 @@ def automated_param_select_n(params, target_security=128):
         # if params.n > 1024:
         # we only need to consider powers-of-two in this case
         # TODO: fill in this case! For n > 1024 we only need to consider every 256
-
-
-
         params = params.updated(n = params.n + z * 8)
         costs = estimate(params)
         security_level = get_security_level(costs, 2)
@@ -137,6 +133,10 @@ def automated_param_select_n(params, target_security=128):
     if security_level < target_security:
         params.updated(n=None)
 
+    del(costs)
+    del(costs2)
+    gc.collect()
+
     return params
 
 def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128], name="v0.sobj"):
@@ -162,11 +162,11 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128],
             params_out = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
             results["{}".format(lam)].append((params_out.n, params_out.q, params_out.Xe.stddev))
             save(results, "{}.sobj".format(name))
-
+            del(params_out)
+            gc.collect()
     return results
 
-
-def generate_zama_curves64(sd_range=[2, 60], target_security_levels=[256], name="v0256.sobj"):
+def generate_zama_curves64(sd_range=[25, 26], target_security_levels=[256], name="v0256.sobj"):
 
     D = ND.DiscreteGaussian
     init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')
@@ -182,5 +182,10 @@ import sys
 a = int(sys.argv[1])
 print(a)
 
+D = ND.DiscreteGaussian
+init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=ND.UniformMod(2), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')
+
 generate_zama_curves64(target_security_levels=[a], name="{}".format(a))
 
+
+

From 0381574d9bd9532b2d65dd639ee6b72823933abd Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 12 Apr 2022 14:19:51 +0100
Subject: [PATCH 07/42] update

---
 new_scripts.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/new_scripts.py b/new_scripts.py
index c3a98ad50..8db5a23d0 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -166,7 +166,7 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128],
             gc.collect()
     return results
 
-def generate_zama_curves64(sd_range=[25, 26], target_security_levels=[256], name="v0256.sobj"):
+def generate_zama_curves64(sd_range=[2, 56], target_security_levels=[256], name="v0256.sobj"):
 
     D = ND.DiscreteGaussian
     init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')

From 378e4a57d757bdb34a997606cba59542ce9762fb Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 12 Apr 2022 14:41:33 +0100
Subject: [PATCH 08/42] update

---
 new_scripts.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/new_scripts.py b/new_scripts.py
index 8db5a23d0..6233a75ad 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -118,8 +118,9 @@ def automated_param_select_n(params, target_security=128):
 
     # final estimate (we went too far in the above loop)
     if security_level < target_security:
-        # we go back
-        params = params.updated(n = params.n - z * 8)
+        # we make n larger
+        params = params.updated(n = params.n + 8)
+        costs = estimate(params)
         security_level = get_security_level(costs, 2)
 
     print("the finalised parameters are n = {}, log2(sd) = {}, log2(q) = {}, with a security level of {}-bits".format(params.n,

From 0dd1825341a8b2750bd3b5daaa1e63ad41d9503a Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 12 Apr 2022 14:52:51 +0100
Subject: [PATCH 09/42] update

---
 new_scripts.py | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/new_scripts.py b/new_scripts.py
index 6233a75ad..8d31740fa 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -95,6 +95,13 @@ def automated_param_select_n(params, target_security=128):
     # TODO -- is this how we want to deal with the small n issue? Shouldn't the model have this baked in?
     # we want to start no lower than n = 450
     n_start = max(n_start, 450)
+
+    #if n_start > 1024:
+        # we only consider powers-of-two for now, in this range
+        # n_log = log2(n_start)
+        # n_start = 2**round(n_log)
+
+
     print("n_start = {}".format(n_start))
     params = params.updated(n=n_start)
     print(params)
@@ -119,6 +126,7 @@ def automated_param_select_n(params, target_security=128):
     # final estimate (we went too far in the above loop)
     if security_level < target_security:
         # we make n larger
+        print("we make n larger")
         params = params.updated(n = params.n + 8)
         costs = estimate(params)
         security_level = get_security_level(costs, 2)

From b627a5c1ddebce614ca53ff378a2d3aac3d1cee1 Mon Sep 17 00:00:00 2001
From: root <root@ip-172-31-5-96.eu-west-3.compute.internal>
Date: Wed, 13 Apr 2022 19:19:42 +0000
Subject: [PATCH 10/42] full data|

---
 128.sobj |   6 ++++++
 80.sobj  | Bin 0 -> 911 bytes
 2 files changed, 6 insertions(+)
 create mode 100644 128.sobj
 create mode 100644 80.sobj

diff --git a/128.sobj b/128.sobj
new file mode 100644
index 000000000..d80c2660b
--- /dev/null
+++ b/128.sobj
@@ -0,0 +1,6 @@
+x���wpTU��M�$QA4vƶ�}ټj�ΪǒX`]��L�݀5����c7v�.vcEc�b�s��?sFgd/gf�������+먊�bI/@�LT6�Қ5��������Bw_X��l��l�s�П�fyt�Y�;;_�.����������w�{�l����wT��ə���2�uL]����3-��mS5�ZA���]U]���!�(ٖ��`&	2Q���I�h�I�%$���3v�L����]����M�;�3��=��ɘ,؋V�$p�%{3��K���O�����h�IJ�=4(9�q��`�!��!Je�������{H(I2<A�6�$p�����4���	�43����4?�#��8Jp4�L�9d��c�
+����)�*9�1]p�G�O�D%'1N�����S����)4b��|�*9����i�$�C�Pr&�,A;
��wH����Υv�9O�L�,A���}��$ǘ-褺����$Ϙ+iӘ����R�͘'���M�;�GI/�O0�M8d�0
+�"��$tH����E�)c���4.Rr1����!?�˔0.\A���X��J��U���|~K�\�X&Zk��!�(Y�X!��V��4�	�)��q��F�g�!+��ĸYp���wȭJnc�.��&G�o�*%w2w�_U��p��{�
+��&)�p��
+�h�I<�<��a�#�Gi�I|�<��q��')g��!���a<%x�Z"�xFɳ���S}��f���E�Z�K���|~3^V�
+�U�k4b�!�+y��`��L8�-%o3��K&	���P�Vd�V��>T3��H�1%M��5�2>|Nu��]�/�hS�e�|��k�7�oi�4�k�S�=���4h��ب�'�ς_h�i<����7��?���?%֎A
\ No newline at end of file
diff --git a/80.sobj b/80.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..c5f7033c8d4c3f8ae388f32516fe424640a0810b
GIT binary patch
literal 911
zcmV;A191F!oQ=>|aMV>4$MH=eNEC?JKoKHXz_RZC^Uv}Rs30N;>xp_q3?Qy4%O;Wp
ze!Fx*qJT$27qE+pU<bP(ij5*DMWskn6kdGN;f>*moPin0<<8{Zw|izjbMN;wWKTz^
zEISkm1rcP8LUs@8n%CGSbmnALX3A5^aJr^Gl?kVl<+X{raii1ui9}`7WqdM`;HFvW
zgu04kIx#Vs&eV*pkK`lAMGdS;)>fT^a^uBw%5t0D<kA79XeG#Fv@UDkH1NZbv!`DK
z7sLw%Z5a823n}m1-&W^TpC*ApE>hB#(N55w{%d6;DT5R!xtP&Ga0%_Tl4vs$#idFv
zV_Yt{f;L%+XONCcIx(&kTtzFb#5YK1C08@L2)fc-D+vrzsN@<(H$itwJLE@kt&-~)
z*9&f-;STv8dMN41xKVHul{n;kxLL_9jIiKVDs;&A5K$6kc!DBo?U3)mS5nM~33}20
zxh>~=2$YmCdJFo{J}YUSUxeF~+|IZ|(3dt?iD!_0O73Lz7u-dwti(6S03~-b1_}nz
zJSzzda*vY1j3I(JWgPO0aIX?#lnU;n5f1r2?pN{vg9Q&#e}{Y@LzO(l7$$g_dOGC$
zC{r?=F+wns3LNr%JfdV2<559^PUN(l@8dBg<%|kJB^|Mn=J~~_Qj%nh7Nls4m3RiJ
zR#L-wTrh^#Scz|tS|xRidcjy)W+j0^#wh_KEy&O`hx}rUS2BSyQ80<B9P(qBtYivf
zs^AHVJLJbOP04h|lY$xKIpoLCpyVmW(}J1Q$ss?6SxROzo)HLTIpoLitdcp5M!{VA
zH@oHhUYMt3K4XDkA?>mf&mfDGEM`0>SVC*9#5c%NCCeDk3tph*RuUNGMI|pWUKYGU
zv#lg$kXMzw##k<Ro$4I&1H7T+O~wkrTQt-mKfp>Qs~B$!-l0AY`2pTl@*d-T!3WgM
zAwR%}N>(%02tJ~Ghx`B^EBS=+so*m@p4D=G2|icy1>;M>TH0?Vo<Y_r`HHb#@HMTs
z65k--DA~aHR`4CIu#&(a-z)in@uOfPHCjo^Ae)qIW^57sMCtQL!Fl=72)3%(#`szA
z3sqQ+XPWJ5b})7dcF_>4@lErqn%@||3wD!dHGygNsM*WdC-{RpSWU__`_&v^926Xi
lpLAG36o-}k$@oifB!19g15x~~<R8XS!Lei}d<q$kjV)S0w3z?^

literal 0
HcmV?d00001


From e24631aad363c82a35f15747a286120ea837581c Mon Sep 17 00:00:00 2001
From: root <root@ip-172-31-5-96.eu-west-3.compute.internal>
Date: Thu, 14 Apr 2022 19:57:18 +0000
Subject: [PATCH 11/42] data from AWS pre-shutdown

---
 112.sobj | Bin 0 -> 221 bytes
 144.sobj | Bin 0 -> 839 bytes
 160.sobj |   1 +
 192.sobj |   2 ++
 256.sobj |   3 +++
 96.sobj  |   4 ++++
 6 files changed, 10 insertions(+)
 create mode 100644 112.sobj
 create mode 100644 144.sobj
 create mode 100644 160.sobj
 create mode 100644 192.sobj
 create mode 100644 256.sobj
 create mode 100644 96.sobj

diff --git a/112.sobj b/112.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..1ab2c07e8a472cd2b0b6d31ac4e5707d5974c052
GIT binary patch
literal 221
zcmV<303!c*oNHjJEo6vbW?*12G&Cw?j4fo+@Ga)(;$(mV#^mC}^i;i~%)Insy`t2_
zocP>=v?8wf_+%ibBsD%h2q@-Pnwykb6knEFRGgWgXTVj+OpGqK%+#C|Buy;drkxQi
zKs$r{T>J`I+Y8x(3fUw0fdVFa1_<C_P{`q}&|b(HRLIp{$nEQi?Ai?G42TvBG%Y+J
zExbX6eC>t&z8YAyq@!sO0BI2nDimrj6!vAqs>KjRi(#P%NQ-Dtp;&vNxbG8oY+8)a
Xv`B!oNCp*3wHHdK7V7~32RUCAvYBVE

literal 0
HcmV?d00001

diff --git a/144.sobj b/144.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..3f9659048ffc304b66d4c396c5088ce1ca721950
GIT binary patch
literal 839
zcmV-N1GxNnoQ==vZ<JLO$MK;pODkAF5m1yJS%;aYPuph%q-+H#r^sO|n?otnr-iok
zH&a$Yb`JX{TJ{~4Rg`@ZMHUhM3SO9)m}p|+dwU{@%;hFC=iNQYC+B|GWUNA<EHe-Y
zgk2ZS<{+alHRf#14!oFV6^U{`7K~Td`H5gWR$ddWt*?ydM57f=kA_$@%1yh{#kKQd
z@#vCRJW;)<E|i1JbX0M5tY-d8D61rYOIcRaO)ec>isphAjFx4&O$#>|`hSW-XjRfp
zkj=;uyhb%I|F$Z#>ObNcq_vVZjMoLZG}20ZgS1uBj?rH526eKMa1sgQO(h)|ZwWfm
zpV>Cz7^IVu&WyJO@6cT<aShT%$-9jA1YK#bm3Ri}rldQghoC1_S&46uUP^j1`Uu{q
z0xL<*chFZ!KSqDS0BW5^zJq~E1~Gzy!SuXU>U;+wC1Hjm$fFxp;u*wMlFuj*6w(eW
z@eSfBi7-A84511uNzTv1P$k0{9}0$3#7Z246e$_O7%3P<xoPC*VYHGljAFr9`mJT^
z{5*_P@)2XapoH#NiEoezN{CS^m`J;=Bst&3$4VwKSTLC?t;8|N6eUv`(*)CLsFk<|
zDN{0oF;g&$+NY84Vz!bwj86nn`n^T!d>3<-lr!cDD(Ie-B<JU2zLFTDQsC1*D{%}`
zrKFm%K(LS&Scz+p8YQ)iI>90;vJ%fA^-92q3lh{Jjr@ExC|S%{B3Md)G*6vhfMrUS
zGgb&brTbRm7-XfARgBLBtEtgST!XApvX-$<u%2qI#52eSB^w!=1VW>%#5c%hC0iI<
z1>2}|8u^9Tu4D&er(hTTm6bZb5WAJ^VeA!rPLHg_HOM|CUogHDG}1vU@eHzG$pOYe
z!6B-*65k+)l^kIl6&#~tD@o4xa9qg=#!0~`>XJsjhto>VFuoFeO@C*m&iC+*lCz9+
zg7fsmN<4#HP;!xRN$@QlwG!VTmz8|S_+D^@8muHaKZ2`Dt}(6)ZqRruaSU=($t}ih
z!5!+FMt%f$mHfcCC-{;6$w-|a!B0x=Gkz94pl4R%8|0yqM~ugUU+Baur0pyD;Sipv
R`IYfh@GO=H{tFGULZHiRh>rjO

literal 0
HcmV?d00001

diff --git a/160.sobj b/160.sobj
new file mode 100644
index 000000000..be9e64790
--- /dev/null
+++ b/160.sobj
@@ -0,0 +1 @@
+x����Nq��)E��E��0�:��Z/���l�Lj�M����;cbN�xW�]�>�[_��h"�����O���?
|��H:��+{H�b K߆wSοI���(t��V�u㰹l�[��A��=v� �ޮ�~�m¸�����HEU;���
4X+}m�nr�R�1�qƉ�hoQt����a�6%H1҂a�9��v����Qr�qJ0JU+�2��4��,MZI���0��cBp�~�m$o�I%�臕
rY��U�5�b%�A��dӂ���J"��P2ø)�E+���#�d�q[0GR���qG�<�,�O+)�S�c�ڳ� E%%FYp��V�Wr��(X�E+��/ྒ���G4r����<f<<�_C��PQ�Q<��V�䅒��W�}��� +J�Q���>{$�
\ No newline at end of file
diff --git a/192.sobj b/192.sobj
new file mode 100644
index 000000000..8a3d3e431
--- /dev/null
+++ b/192.sobj
@@ -0,0 +1,2 @@
+x����NSQ��U����3xk���
@���TE�
��l6U(�Z@Őx7Q_��{�Mx_��{_���N4VVR�nM�ˬ���D�
�H$9�n�=���Cs����+�a/�a%^&g���t9����c!�}��2�s���/�Ja������H!��Z��c���h�&g�llf4f۫7��7�	4�u	�1A-���L����UIc����Vd���6�vj�����%;���G��8٣d/c�`?}�� �dt҄�x�Rr�qDp���$4�1%�'ݴ�R;�A����S�Ӵj%�Az��a�gi�J\�$�$���F��3��$����+	
�)`
+���X��>\Pr�qI0D_��1Ȱ�ˌ+��T�� i%�#�Q�� ו�`��Q�JB��RB���6}o���⎒�ܣOV�侒q��C�Y�k���G�ǂ'�k%�A�*�`<����v���J&9A��Y������iAH��1Ȍ���%�[�k�Y%s��`�:��3HI	eA��k称�d��$xE�V�1����a,���o^�X
\ No newline at end of file
diff --git a/256.sobj b/256.sobj
new file mode 100644
index 000000000..c22a70366
--- /dev/null
+++ b/256.sobj
@@ -0,0 +1,3 @@
+x��ϷNA��3&�`r�9�
&gSX�b*S��8,��3�B�
/@œ���/�W �W+��v��f�%�02A�0���(/
OU���r�k��/g����s~u��(��v�������;����^^X!���Y���*M�3�����N��QN�Ȅ�i�κ��T?��bT���ߞO�IB!5���aQ�%�B�%i 42��{��D
+H͒�Zm�ZKl��K�A�dt	KKb
+閤���������K2@d�W-�2,�a�1&���0�Ƹ$�IƔh�[!Ӓ�LƬ��+�oÒ$B�Q�%	��$���"�%�B�,K"�%��Q,K�BXe������Q�K�A�dl�;-�)d[�B�����/*/�x
\ No newline at end of file
diff --git a/96.sobj b/96.sobj
new file mode 100644
index 000000000..fdc930980
--- /dev/null
+++ b/96.sobj
@@ -0,0 +1,4 @@
+x���Wp�U��M�H��ATTDXw��o��Q�'�Qd-����'�~�
DQ�#���^ł�+X�bX@�|�'�4gtFr�3{��=3���{�w"�.�D"�MF�`Ⲯ>��NQc�!�Fs-�a>��6�f�f4��3���KG6���Y�̶)�\fV6�o��+G��Ӓm�z*�K,L�v������KЛQ�������gdG�
�a���a������_�(%G3*�Ti%�A�*9��Op,���F�=H���8^p��� '*9�q���b%�ANUR� 8��[I`��JNg�!8�:�$4� %g1��Ci�|����"8�j�=U2��OU�bJ�OPM�|���F����
+�{����h���̯�p%2F.��V�d��Q����"+�
2Zɥ�1�˨�J�\�d,c����;�W�
+%Ĩ\I��>�+��`�UT���j%�&�_���}��\˸Np=���� 7(�̸Q��V�&%
�)�FZg%=���$�h�4�J<�4+iaL�LM�	�*ic���X��f(
#'��P��:��d��B�5�U�m���鏒��5����q��N�m%�A�*��q�`m��� �(��X Zf%�A�U���%XDs��g~�)����A�8�'񐒇���(��$U��q�䐟�R%��+��!?��JV1V���Ņ��U���^���� O*��xJ�4m�� �<�xV�-��� �+��xA��:�$4�%[/
+^�I�)����6��T됟�kJ^g�!x���SxK�v����wQ���Q�.�=����JB�|�d'�C�G��0����x�����3Zo5�iv�����K��4_�����[�f5�iv����N�=����4?����W����� ������E�+�s�A��`�&8��G�
Q��
\ No newline at end of file

From 4d09db8b74a95954b980a3ede9fec1801b560c8f Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Thu, 12 May 2022 15:48:30 +0100
Subject: [PATCH 12/42] add test code for memory usage

---
 memory_tests/test.py  | 17 +++++++++++++++++
 memory_tests/test2.py | 31 +++++++++++++++++++++++++++++++
 2 files changed, 48 insertions(+)
 create mode 100644 memory_tests/test.py
 create mode 100644 memory_tests/test2.py

diff --git a/memory_tests/test.py b/memory_tests/test.py
new file mode 100644
index 000000000..22a58d63e
--- /dev/null
+++ b/memory_tests/test.py
@@ -0,0 +1,17 @@
+from estimator_new import *
+from sage.all import oo, save
+
+def test():
+
+    # code
+    D = ND.DiscreteGaussian
+    params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2**57), m=oo, tag='TFHE_DEFAULT')
+
+    names = [params, params.updated(n=761), params.updated(q=2 ** 65), params.updated(n=762)]
+
+    for name in names:
+        x = LWE.estimate(name, deny_list=("arora-gb", "bkw"))
+
+    return 0
+
+test()
\ No newline at end of file
diff --git a/memory_tests/test2.py b/memory_tests/test2.py
new file mode 100644
index 000000000..4ad476806
--- /dev/null
+++ b/memory_tests/test2.py
@@ -0,0 +1,31 @@
+
+from multiprocessing import *
+from estimator_new import *
+from sage.all import oo, save
+
+
+def test_memory(x):
+    print("doing job...")
+    print(x)
+    y = LWE.estimate(x, deny_list=("arora-gb", "bkw"))
+    return y
+
+if __name__ == "__main__":
+    D = ND.DiscreteGaussian
+    params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2**57), m=oo, tag='TFHE_DEFAULT')
+
+    names = [params, params.updated(n=761), params.updated(q=2**65), params.updated(n=762)]
+    procs = []
+    proc = Process(target=print_func)
+    procs.append(proc)
+    proc.start()
+    p = Pool(1)
+
+    for name in names:
+        proc = Process(target=test_memory, args=(name,))
+        procs.append(proc)
+        proc.start()
+        proc.join()
+
+    for proc in procs:
+        proc.join()
\ No newline at end of file

From 15963ff51fa7e66624ec8f605d0fbfd939df6fc4 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Thu, 9 Jun 2022 22:27:37 +0200
Subject: [PATCH 13/42] start getting multiprocessing to work

---
 new_scripts.py | 146 +++++++++++++++++++++++++++++++++++++++----------
 1 file changed, 117 insertions(+), 29 deletions(-)

diff --git a/new_scripts.py b/new_scripts.py
index 8d31740fa..3f7b74c26 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -4,9 +4,10 @@ from estimator_new import *
 from sage.all import oo, save
 from math import log2
 import gc
+from multiprocessing import *
 
 
-def old_models(security_level, sd, logq = 32):
+def old_models(security_level, sd, logq=32):
     """
     Use the old model as a starting point for the data gathering step
     :param security_level: the security level under consideration
@@ -14,12 +15,11 @@ def old_models(security_level, sd, logq = 32):
     :param logq          : the (base 2 log) value of the LWE modulus q
     """
 
-    def evaluate_model(sd, a, b):
-        return (sd - b)/a
+    def evaluate_model(a, b, stddev=sd):
+        return (stddev - b)/a
 
     models = dict()
 
-    # TODO: figure out a way to import these from a datafile, for future version
     models["80"] = (-0.04049295502947623, 1.1288318226557081 + logq)
     models["96"] = (-0.03416314056943681, 1.4704806061716345 + logq)
     models["112"] = (-0.02970984362676178, 1.7848907787798667 + logq)
@@ -34,32 +34,38 @@ def old_models(security_level, sd, logq = 32):
     models["256"] = (-0.014530554319171845, 3.2094375376751745 + logq)
 
     (a, b) = models["{}".format(security_level)]
-    n_est = evaluate_model(sd, a, b)
+    n_est = evaluate_model(a, b, sd)
 
     return round(n_est)
 
-def estimate(params, red_cost_model = RC.BDGL16):
+
+def estimate(params, red_cost_model=RC.BDGL16, skip=("arora-gb", "bkw")):
     """
     Retrieve an estimate using the Lattice Estimator, for a given set of input parameters
     :param params: the input LWE parameters
+    :param red_cost_model: the lattice reduction cost model
+    :param skip: attacks to skip
     """
 
-    est = LWE.estimate(params, deny_list=("arora-gb", "bkw"), red_cost_model=red_cost_model)
+    est = LWE.estimate(params, red_cost_model=red_cost_model, deny_list=skip)
     return est
 
-def get_security_level(est, dp = 2):
+
+def get_security_level(est, dp=2):
     """
     Get the security level lambda from a Lattice Estimator output
     :param est: the Lattice Estimator output
-    :param dp      : the number of decimal places to consider
+    :param dp: the number of decimal places to consider
     """
     attack_costs = []
-    for key in est.keys():
+    # note: key does not need to be specified est vs est.keys()
+    for key in est:
         attack_costs.append(est[key]["rop"])
     # get the security level correct to 'dp' decimal places
     security_level = round(log2(min(attack_costs)), dp)
     return security_level
 
+
 def inequality(x, y):
     """ A utility function which compresses the conditions x < y and x > y into a single condition via a multiplier
     :param x: the LHS of the inequality
@@ -71,6 +77,7 @@ def inequality(x, y):
     if x > y:
         return -1
 
+
 def automated_param_select_n(params, target_security=128):
     """ A function used to generate the smallest value of n which allows for
     target_security bits of security, for the input values of (params.Xe.stddev,params.q)
@@ -101,15 +108,15 @@ def automated_param_select_n(params, target_security=128):
         # n_log = log2(n_start)
         # n_start = 2**round(n_log)
 
-
     print("n_start = {}".format(n_start))
     params = params.updated(n=n_start)
     print(params)
+    #
     costs2 = estimate(params)
     security_level = get_security_level(costs2, 2)
+    costs2 = None
     z = inequality(security_level, target_security)
 
-
     # we keep n > 2 * target_security as a rough baseline for mitm security (on binary key guessing)
     while z * security_level < z * target_security:
         # if params.n > 1024:
@@ -118,6 +125,9 @@ def automated_param_select_n(params, target_security=128):
         params = params.updated(n = params.n + z * 8)
         costs = estimate(params)
         security_level = get_security_level(costs, 2)
+        # try none with delete, try none without delete
+        # test the list of objects that are in memory before end of program
+        costs = None
 
         if -1 * params.Xe.stddev > 0:
             print("target security level is unatainable")
@@ -127,14 +137,14 @@ def automated_param_select_n(params, target_security=128):
     if security_level < target_security:
         # we make n larger
         print("we make n larger")
-        params = params.updated(n = params.n + 8)
+        params = params.updated(n=params.n + 8)
         costs = estimate(params)
         security_level = get_security_level(costs, 2)
 
     print("the finalised parameters are n = {}, log2(sd) = {}, log2(q) = {}, with a security level of {}-bits".format(params.n,
                                                                                                                       log2(params.Xe.stddev),
                                                                                                                       log2(params.q),
-                                                                                                                     security_level))
+                                                                                                                      security_level))
 
     # final sanity check so we don't return insecure (or inf) parameters
     # TODO: figure out inf in new estimator
@@ -142,12 +152,9 @@ def automated_param_select_n(params, target_security=128):
     if security_level < target_security:
         params.updated(n=None)
 
-    del(costs)
-    del(costs2)
-    gc.collect()
-
     return params
 
+
 def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128], name="v0.sobj"):
     """
     :param sd_range: a tuple (sd_min, sd_max) giving the values of sd for which to generate parameters
@@ -175,26 +182,107 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128],
             gc.collect()
     return results
 
-def generate_zama_curves64(sd_range=[2, 56], target_security_levels=[256], name="v0256.sobj"):
 
-    D = ND.DiscreteGaussian
-    init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')
-    raw_data = generate_parameter_matrix(init_params, sd_range=sd_range, target_security_levels=target_security_levels, name=name)
+def generate_parameter_matrix_para(params_in, sd_range, target_security_levels=[128], name="v0.sobj"):
+    """
+    :param sd_range: a tuple (sd_min, sd_max) giving the values of sd for which to generate parameters
+    :param params: the standard deviation of the LWE error
+    :param target_security: the target number of bits of security, 128 is default
 
-    return raw_data
+    EXAMPLE:
+    sage: X = generate_parameter_matrix()
+    sage: X
+    """
+    if __name__ == "__main__":
 
-def plota_curve(raw_data, security_level):
+        results = dict()
 
-    data = raw_data["{}".format(security_level)]
+        def test_memory(x):
+            print("doing job...")
+            print(x)
+            y = LWE.estimate(x, deny_list=("arora-gb", "bkw"))
+            return y
+
+        # grab min and max value/s of n
+        (sd_min, sd_max) = sd_range
+        print(sd_range)
+
+        for lam in target_security_levels:
+            results["{}".format(lam)] = []
+            names = range(sd_min, sd_max + 1)
+            procs = []
+            proc = Process(target=automated_param_select_n)
+            procs.append(proc)
+            proc.start()
+            p = Pool(1)
+            for name in names:
+                proc = Process(target=test_memory, args=(name,))
+                procs.append(proc)
+                proc.start()
+                proc.join()
+                Xe_new = nd.NoiseDistribution.DiscreteGaussian(2**sd)
+                params_out = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
+                results["{}".format(lam)].append((params_out.n, params_out.q, params_out.Xe.stddev))
+                save(results, "{}.sobj".format(name))
+                params_out = None
+                del(params_out)
+                gc.collect()
+    return results
+
+# what we run
+
+def generate_zama_curves64(sd_range=[2, 56], target_security_levels=[256], name="default", pools = 1):
+    if __name__ == '__main__':
+
+        D = ND.DiscreteGaussian
+        vals = sd_range
+        p = Pool(pools)
+        procs = []
+        for val in vals:
+            init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2**55), m=oo, tag='TFHE_DEFAULT')
+            proc = Process(target=generate_parameter_matrix, args=(init_params, [val, val + 1], target_security_levels, name))
+            procs.append(proc)
+            proc.start()
+
+    return "done"
 
 import sys
 a = int(sys.argv[1])
-print(a)
+print("input arg is {}".format(a))
 
 D = ND.DiscreteGaussian
-init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=ND.UniformMod(2), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')
-
-generate_zama_curves64(target_security_levels=[a], name="{}".format(a))
+init_params = LWE.Parameters(n=1024, q=2 ** 32, Xs=ND.UniformMod(2), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')
+#automated_param_select_n(init_params, target_security=128)
+#automated_param_select_n(init_params, target_security=192)
+generate_zama_curves64(sd_range=[50, 53], target_security_levels=[a], name="{}".format("testing"))
+
+
+
+
+
+
+
+
+
+#if __name__ == "__main__":
+#    D = ND.DiscreteGaussian
+#    params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2**57), m=oo, tag='TFHE_DEFAULT')
+#
+#    names = [params, params.updated(n=761), params.updated(q=2**65), params.updated(n=762)]
+#    procs = []
+#    proc = Process(target=print_func)
+#    procs.append(proc)
+#    proc.start()
+#    p = Pool(1)
+#
+#    for name in names:
+#        proc = Process(target=test_memory, args=(name,))
+#        procs.append(proc)
+#        proc.start()
+#        proc.join()
+#
+#    for proc in procs:
+#        proc.join()
 
 
 

From 997c627fc9031940053b78d156842901d36e2529 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Mon, 20 Jun 2022 18:26:34 +0100
Subject: [PATCH 14/42] use starmap

---
 new_scripts.py | 122 +++++++++++--------------------------------------
 1 file changed, 26 insertions(+), 96 deletions(-)

diff --git a/new_scripts.py b/new_scripts.py
index 3f7b74c26..184d66778 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -1,7 +1,8 @@
 import gc
+import multiprocessing
 
 from estimator_new import *
-from sage.all import oo, save
+from sage.all import oo, save, load
 from math import log2
 import gc
 from multiprocessing import *
@@ -152,7 +153,7 @@ def automated_param_select_n(params, target_security=128):
     if security_level < target_security:
         params.updated(n=None)
 
-    return params
+    return (params, security_level)
 
 
 def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128], name="v0.sobj"):
@@ -166,123 +167,52 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128],
     sage: X
     """
 
-    results = dict()
-
     # grab min and max value/s of n
     (sd_min, sd_max) = sd_range
-
     for lam in target_security_levels:
-        results["{}".format(lam)] = []
+        print("LAM = {}".format(lam))
         for sd in range(sd_min, sd_max + 1):
             Xe_new = nd.NoiseDistribution.DiscreteGaussian(2**sd)
-            params_out = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
-            results["{}".format(lam)].append((params_out.n, params_out.q, params_out.Xe.stddev))
+            (params_out, sec) = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
+            print("PARAMS OUT = {}".format(params_out))
+
+            try:
+                results = load("{}.sobj".format(name))
+            except:
+                results = dict()
+                results["{}".format(lam)] = []
+
+            results["{}".format(lam)].append((params_out.n, params_out.q, params_out.Xe.stddev, sec))
             save(results, "{}.sobj".format(name))
+
             del(params_out)
             gc.collect()
     return results
 
 
-def generate_parameter_matrix_para(params_in, sd_range, target_security_levels=[128], name="v0.sobj"):
-    """
-    :param sd_range: a tuple (sd_min, sd_max) giving the values of sd for which to generate parameters
-    :param params: the standard deviation of the LWE error
-    :param target_security: the target number of bits of security, 128 is default
-
-    EXAMPLE:
-    sage: X = generate_parameter_matrix()
-    sage: X
-    """
-    if __name__ == "__main__":
-
-        results = dict()
-
-        def test_memory(x):
-            print("doing job...")
-            print(x)
-            y = LWE.estimate(x, deny_list=("arora-gb", "bkw"))
-            return y
-
-        # grab min and max value/s of n
-        (sd_min, sd_max) = sd_range
-        print(sd_range)
-
-        for lam in target_security_levels:
-            results["{}".format(lam)] = []
-            names = range(sd_min, sd_max + 1)
-            procs = []
-            proc = Process(target=automated_param_select_n)
-            procs.append(proc)
-            proc.start()
-            p = Pool(1)
-            for name in names:
-                proc = Process(target=test_memory, args=(name,))
-                procs.append(proc)
-                proc.start()
-                proc.join()
-                Xe_new = nd.NoiseDistribution.DiscreteGaussian(2**sd)
-                params_out = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
-                results["{}".format(lam)].append((params_out.n, params_out.q, params_out.Xe.stddev))
-                save(results, "{}.sobj".format(name))
-                params_out = None
-                del(params_out)
-                gc.collect()
-    return results
-
-# what we run
-
-def generate_zama_curves64(sd_range=[2, 56], target_security_levels=[256], name="default", pools = 1):
+def generate_zama_curves64(sd_range=range(5,9), target_security_levels=[256], name="default"):
     if __name__ == '__main__':
 
         D = ND.DiscreteGaussian
         vals = sd_range
-        p = Pool(pools)
         procs = []
-        for val in vals:
-            init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2**55), m=oo, tag='TFHE_DEFAULT')
-            proc = Process(target=generate_parameter_matrix, args=(init_params, [val, val + 1], target_security_levels, name))
-            procs.append(proc)
-            proc.start()
+        pool = multiprocessing.Pool(2)
+        init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2 ** 55), m=oo, tag='TFHE_DEFAULT')
+        inputs = [(init_params, (val, val+1), target_security_levels, name) for val in vals]
+        print(inputs[0])
+        res = pool.starmap(generate_parameter_matrix, inputs)
 
     return "done"
 
+def wrap(*args):
+    return generate_parameter_matrix(*args)
+
+
 import sys
 a = int(sys.argv[1])
-print("input arg is {}".format(a))
-
 D = ND.DiscreteGaussian
 init_params = LWE.Parameters(n=1024, q=2 ** 32, Xs=ND.UniformMod(2), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')
-#automated_param_select_n(init_params, target_security=128)
-#automated_param_select_n(init_params, target_security=192)
-generate_zama_curves64(sd_range=[50, 53], target_security_levels=[a], name="{}".format("testing"))
-
-
-
-
-
-
-
-
-
-#if __name__ == "__main__":
-#    D = ND.DiscreteGaussian
-#    params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2**57), m=oo, tag='TFHE_DEFAULT')
-#
-#    names = [params, params.updated(n=761), params.updated(q=2**65), params.updated(n=762)]
-#    procs = []
-#    proc = Process(target=print_func)
-#    procs.append(proc)
-#    proc.start()
-#    p = Pool(1)
-#
-#    for name in names:
-#        proc = Process(target=test_memory, args=(name,))
-#        procs.append(proc)
-#        proc.start()
-#        proc.join()
-#
-#    for proc in procs:
-#        proc.join()
+generate_zama_curves64(sd_range= range(2,60), target_security_levels=[a], name="{}".format("new_96"))
 
 
 

From 35cea16c22284a1ce1cb1d575c063da54efb7001 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 21 Jun 2022 13:41:25 +0100
Subject: [PATCH 15/42] update script

---
 128.sobj                                      |   8 ++---
 80.sobj                                       | Bin 911 -> 1156 bytes
 96.sobj                                       | Bin 915 -> 939 bytes
 .../__pycache__/lwe_primal.cpython-38.pyc     | Bin 14230 -> 14230 bytes
 job.sh                                        |  33 ++++++++++++++++--
 new_scripts.py                                |   9 +++--
 6 files changed, 38 insertions(+), 12 deletions(-)

diff --git a/128.sobj b/128.sobj
index d80c2660b..2d09818c4 100644
--- a/128.sobj
+++ b/128.sobj
@@ -1,6 +1,2 @@
-x���wpTU��M�$QA4vƶ�}ټj�ΪǒX`]��L�݀5����c7v�.vcEc�b�s��?sFgd/gf�������+먊�bI/@�LT6�Қ5��������Bw_X��l��l�s�П�fyt�Y�;;_�.����������w�{�l����wT��ə���2�uL]����3-��mS5�ZA���]U]���!�(ٖ��`&	2Q���I�h�I�%$���3v�L����]����M�;�3��=��ɘ,؋V�$p�%{3��K���O�����h�IJ�=4(9�q��`�!��!Je�������{H(I2<A�6�$p�����4���	�43����4?�#��8Jp4�L�9d��c�
-����)�*9�1]p�G�O�D%'1N�����S����)4b��|�*9����i�$�C�Pr&�,A;
��wH����Υv�9O�L�,A���}��$ǘ-褺����$Ϙ+iӘ����R�͘'���M�;�GI/�O0�M8d�0
-�"��$tH����E�)c���4.Rr1����!?�˔0.\A���X��J��U���|~K�\�X&Zk��!�(Y�X!��V��4�	�)��q��F�g�!+��ĸYp���wȭJnc�.��&G�o�*%w2w�_U��p��{�
-��&)�p��
-�h�I<�<��a�#�Gi�I|�<��q��')g��!���a<%x�Z"�xFɳ���S}��f���E�Z�K���|~3^V�
-�U�k4b�!�+y��`��L8�-%o3��K&	���P�Vd�V��>T3��H�1%M��5�2>|Nu��]�/�hS�e�|��k�7�oi�4�k�S�=���4h��ب�'�ς_h�i<����7��?���?%֎A
\ No newline at end of file
+x���Kl�U�i�ϩP(cg:m?Ղ����R�0�2������UD(�%e�la�KŽ]�`Æ+H\A\rN�כ����|�~��{�w<�H_4�$�
*v�����_��W�`a ���G�s�x>;0����2�A��d3��҇��e���|a��xs�rԖ������i��We3%ݕF�4j�}s�T����ٌ���Өĺ;�Fn<�u���8�=�����9�7Cx.�/<O�[�F�+�M5���č^���X�x��m������K�w����p����+xOqӝ�gS���yq��%��
+�Be/#�{q����/X�
{a�^k��������U��7�-��o��x��nX�x��C�늣��xu
K�cş��+�O��kK'��YqB��nO�6h!�ۋ'9��U�fqm��r�v�
/N:Ɂ�u��W�i�_�oyq�Iި�C��5C�>'���)'�S�&�f��v�7
� ���tr�)�bq�n9f�M�Ћgw;��o|��g�&��/,��-ئ�iM~b�q�o�ox��N�vŽ	];��(�;+�NG5����wyq�$�)�^�ChT??�.]v+����Q����� C�(cT)�U< �����z�SN�~�Y�Ph�9b��9+�矈�{q��Q�c�q��w�A��U&C��#io�{3b*��m0�	�Fu��jU��vU|L0�e�n�u��ď�8p�V|B��~aZu��I�^�t�O)�UpZ���]�3ķ�8�$�U<%8gq�x�����8�$�W|ApQ�U�.�-�܎ˊ\���x
�d�WP�
\ No newline at end of file
diff --git a/80.sobj b/80.sobj
index c5f7033c8d4c3f8ae388f32516fe424640a0810b..3f5faea9d632da18c3df7cdbfd3129b53d428539 100644
GIT binary patch
literal 1156
zcmV-~1bh2<oQ>95a8yMU2H+%wU?M_<utNd}dQgZnlS#NigAswCV@GpD4Hz7OOonIz
z`DYqb7R4n-0)iVVsHhO!jk_R<3m|SFZh+;B#hX=HT0US|KG{cZm1EOXZokdceD&Wx
zr~AxZowEvA^*LEtSzZX)^N>TNe(T+tpXIOYh3WapL}{vdaWY++O3ZJGx3)E<3gYpF
z=7Ube<7~dGUD~=Jk%})%q|(hx7KaMZD~OueoM>sxK)JE<HTAhBlWV8fqIU=K7=7yd
zn=g{3q5oEO2&ctHcOaipP*XiSyQaHn`7w>tNtNVfJolnri%#IEh5HIVgVE36+~vm%
z*XU2`aBmk5{||>zDELgq0E18bR%0NkJZG|JB^L=E#274({Y!iCPSzMgYOOQbvyz7j
z9>y4MaNh%F9n=^>YM&EFEId;1C`PftWBlY2QYj}+T6nbJF^sVW53LieaTcjACyrWp
zoZ#_{vke}wp@EL?)i{ULoB-91fCNuqoNMslCRrNik*W-^=LjYWp2R4XR&6_4Pz8<i
zNgc`UIk^lW!C^+k;L$!VBh@EBt0IUBE@xC2+;69;Sc%4DQoEhW5i8jfT*;VXaIuds
zAoaTwC#~cQ1y?bq3NDhvt#J{l?M@uElB)$@%$SyeFCmo<kX(l8f@d&h8a%wJ&6G@|
zhSb~u)sAA8;7b{oWt^}WsdY~5S;?0RR*YJMN7C^<8yYmOAT=#OwWGLFa2<mU9wLKe
zmc~`2e(KfpW0zyL;Hw$eWVGs9QiTB?JBoV2a~N|C9%v3&TbIUlr1m?LBUW;Q;CYPe
zWzYUFh?DxuiIZ0H4T9%07RWI0r{_Xa-A){}k{bml7)=I`FpaAFRU=7iWq{;zEE3$z
zxKXNIAg4s*CQ=)n*t2kp;8w<BgNJQ0YqQ1@QjGyxRe?6aV5AHl=MVifsaSw&S3nD1
z%2;ObSbv7yOzP*Ho|7lz7QweNmK#j|*<L|vSb#lOV5Q(yjN1$zC6}s7<91SqoXHU@
zd9~m>7<U>x-dqd%Q{ygD*#TNrfx88_Gw#VaVI8D)IFqAR^1XuBFgi1;y_QtF6DKXa
zPVjw<^#)J!_q>7B7AN*Be81oa7!PLr(LF?}H9)I8JS=!4;}L@=`jg~QQnLe8+rwjm
zH!(I#pT$nlc%0N9**zy$;t9b|GPW2zMe4Oe<0(>O1MJzu(}JI2Y&AIS-{)<lesCs7
ztmH1i+ZoRqJlP+B&ygw!&?*nl3x0v|qQO)B0r(QBUC!jFmHe{cR~X#}=ll2hRZ?4>
z*t76!f?sF6k@05mCaF#*PFnaa!EZC(F?f)FF?N`@p_6doNv#Tpuv7HAj9o_O`O)u@
zTHw?XTfZ-QH{%1N8~v;CA*qN{d$#^a^v8@nM$hn{d@rd1PMx&%KGB~r_8Xn@=h&wd
z`#Zq4!}v__=Zr55Uhlshd`Yn%1ME7C1A-4SzB0J*-ydrnIt7l}_-n!6Fuu*WS>K%k
Wdp7=F@L|T0416?^F8v4EULy{xr7;Nr

literal 911
zcmV;A191F!oQ=>|aMV>4$MH=eNEC?JKoKHXz_RZC^Uv}Rs30N;>xp_q3?Qy4%O;Wp
ze!Fx*qJT$27qE+pU<bP(ij5*DMWskn6kdGN;f>*moPin0<<8{Zw|izjbMN;wWKTz^
zEISkm1rcP8LUs@8n%CGSbmnALX3A5^aJr^Gl?kVl<+X{raii1ui9}`7WqdM`;HFvW
zgu04kIx#Vs&eV*pkK`lAMGdS;)>fT^a^uBw%5t0D<kA79XeG#Fv@UDkH1NZbv!`DK
z7sLw%Z5a823n}m1-&W^TpC*ApE>hB#(N55w{%d6;DT5R!xtP&Ga0%_Tl4vs$#idFv
zV_Yt{f;L%+XONCcIx(&kTtzFb#5YK1C08@L2)fc-D+vrzsN@<(H$itwJLE@kt&-~)
z*9&f-;STv8dMN41xKVHul{n;kxLL_9jIiKVDs;&A5K$6kc!DBo?U3)mS5nM~33}20
zxh>~=2$YmCdJFo{J}YUSUxeF~+|IZ|(3dt?iD!_0O73Lz7u-dwti(6S03~-b1_}nz
zJSzzda*vY1j3I(JWgPO0aIX?#lnU;n5f1r2?pN{vg9Q&#e}{Y@LzO(l7$$g_dOGC$
zC{r?=F+wns3LNr%JfdV2<559^PUN(l@8dBg<%|kJB^|Mn=J~~_Qj%nh7Nls4m3RiJ
zR#L-wTrh^#Scz|tS|xRidcjy)W+j0^#wh_KEy&O`hx}rUS2BSyQ80<B9P(qBtYivf
zs^AHVJLJbOP04h|lY$xKIpoLCpyVmW(}J1Q$ss?6SxROzo)HLTIpoLitdcp5M!{VA
zH@oHhUYMt3K4XDkA?>mf&mfDGEM`0>SVC*9#5c%NCCeDk3tph*RuUNGMI|pWUKYGU
zv#lg$kXMzw##k<Ro$4I&1H7T+O~wkrTQt-mKfp>Qs~B$!-l0AY`2pTl@*d-T!3WgM
zAwR%}N>(%02tJ~Ghx`B^EBS=+so*m@p4D=G2|icy1>;M>TH0?Vo<Y_r`HHb#@HMTs
z65k--DA~aHR`4CIu#&(a-z)in@uOfPHCjo^Ae)qIW^57sMCtQL!Fl=72)3%(#`szA
z3sqQ+XPWJ5b})7dcF_>4@lErqn%@||3wD!dHGygNsM*WdC-{RpSWU__`_&v^926Xi
lpLAG36o-}k$@oifB!19g15x~~<R8XS!Lei}d<q$kjV)S0w3z?^

diff --git a/96.sobj b/96.sobj
index fdc9309803c8f89785ca11285a67ece04487ee3f..ccd378d8b20cffaf97cd6f514eddff5bfb1f661d 100644
GIT binary patch
literal 939
zcmV;c162HYoQ>93aMV>4$MH>pNYn%oyHQlsh_LSd^WW@$V+)Ezh$rH)uohfH*!&Yr
z0>9k=ibSG-M}ieASiy!3uwex&R_tH_8)BL9O`m+zoRJyH<<9KAZ}-l8=HBmly1m6c
zh@^`nkw~f*MN?2*O<dMDB(ifAwd9+_Y&6&273QP4Y;#AZb7pI<Jd<hZ-*jg)8SX!8
zn$<Zqo6F43=JM?`x?<%haZ%&jvmMiRL8Xm}#p%-iJGp6G69x$eGs@DH{Re(D_W!Dn
zVUNZUf+37@!Jaf`*Vnd{wEaf{gY2bbZ$^cnk}9nvG{{gT`!I$H_NBiD+emx>iDS5u
z{TTZT4xlYo;u+*XB?mDM792urt;9FTp-QS4hY1d+<yI0HWQ39<7)J_@q8=*=4Kh;6
z(TrmR$5PrM-$S*M;~1j^$5Wj{zK79D#xSCS6R64|-$P7EoZ$&-DB_Us!B>)C)C!Wc
zV^HCI4}p>tqfT%lZM2es`87C6$;pgU1gFv}EAb3cuVgIaG{Nb##7caFj8k$3W4xe&
zx~wEH$eBteFeVBbX_7;J4bD<Rj3&X^RO68EW0I0{7%VuKDjf2CoTub`#sz}O^ml3D
zd>?5g7cwpqTuj@nBrwP&N~SO_6=Z0Gm4pVlOi43is-T5dSjoWr1g0s;GFk;8EwB>L
zAZ<$88Pf%qQ>#OM0v$>^8C`-IG{GT1ftgCc$O-Z^+95xIZY8rAvjuag!XdvFS17rX
zF;{RE{aI2tzZUb9^f0a#%%{y(;v1w_$u*2?1q*1Ml>`P^sALi2I)TtKD+vv9y^_U@
zKEV>2XC(vklej_2jf|TFH&ezTKZ#qE+{#!gxQ)g-<R@{vk~<i83httj4*5yktz;Qv
zx!@iubI4EPUM2T2?iV~je-sza5AdLp6^xaFhiH?Pcm{b`$s>$M1&`4hEAb7oO3CAl
zCj?K@QY#4z@|2RN8LI_rsM|_HgRE8Z4C7hBb2Ql@KZWO&yuer|c#-NH@>6(8$;*sa
z1g}z+Lw*XcDOu0hAb6erDJq<w!W&B7WV|JKo3>g>Xpnc5Y-GGEc#qcaMuzT|ACKXE
zH6JiO6nsQ0t;RFWCN&>3J`sFMeOBX}<})>)GrkafNz<(+FwJH)TNqynzNU#*6Po55
zHQzF}3bxTGml?$Iotp0%KL~!LVJ<U><0m!S89xhlR6BmMeo^x)<F|(Tbm`pf4XcND
N<M(Vn`Y$K>oU@ZEwf+DA

literal 915
zcmV;E18n?woQ=>|aMV>4$MH>pNYn%oyFpY`L|AwK`ET~W5fKzoh$q5PWG%Rcu=yvL
z1b({#3q(<bBf*M=UKPcHfCVd9v0?`cSU}!<(<k3FXLLq#xifq3+dVU%x%YeK7Iz|&
zE{;SZsTvebM)6?cvaUXn|4vb3z9Gy;b1m&*KAOumv}W37H08=Ona1u*M>dn;?pgiJ
zwkg?MW>z+rZ<*d6D@Tco8q<<(oq7l=txGISmv+C&^`q<2OVFE9magm`_|e$^XJiaV
z)D0B$VU!Dwq+y5twz;JFUlJJPC?!WTDg>2OX(gdS`YJhw(NAzJ{n^__;yp+l{goWY
zI9_l9?XeQiASWt0iE*;v6xw1XzClh^QpFe`IE|KDNnntHN=|2-Avlvdtt2$aASGup
z&K8_QX@`6dgO!}i7$P{2Y8~=D3{^6W5fz+IRSx+cVoKr+Pf$$}hkOsdk_4khkfejX
z3g>$Wl%yE7f(vM;mGsQ7#&9JUGDZk4qK#JK8DylAQH+ZPm(U_B@eMLs$)$`jg3GAg
zN&<siu4F7@oS=@zJLFg63MIs-7hFlz4*5RDE1AGx!Bte@kniJaB@-Ff2qw{ArG@i-
zq?KIDxK40A?X!}=AU7zP%(zjIp&eEd8ssJ=4U8#*Mp|bjJ@XToswB&35`;9*N<4!!
zD`{a&6WmNq4*3bRDrsZ13#QXphx`O)C;=lU$kR}V`~*6b%w)_G+(H!&`8Bvz$!(0=
z1+(dolEV2ln4_eVafjee+HEDiLFOvCi*dJL9&NLdz##W1na@}t5L#v>p+W9dvXIdw
zSVVKIq-TB-_bIub@qpk#$~fdF@sN^-8H)vv&?txeBpy}r7~^rl5*p-?pTtrn%NWZA
zE2zvNKZ%t}Rxwr!*3j?8h4TZfRkDt;Uho9%vJ%fAPb%5KcuMdzZMG8MARCoD!+2Kk
z94)qzz#z{n*~EB3u$elnBs9ntC0iLU3SOc~4*4m(tmGBOHo>b@>yV$qYf4^cydij#
zsvPoDcuUE4#ty;T^mkF={1o0%@-E{&!TYq=N<xEtpkycGL%~P1{V>w^u>5!oAFKI<
z@u}c5T5mO;X?CgkobiR=OX{*3-!xyT`I_;K;9HtzHGye%tJ%Z&PVhaAvzpK}KdAYU
pu~)E<hPdn?j-S;0%=ks{EA?~PK^*(l9ANw=IGD{x{{c}2jL~&Ex4HlT

diff --git a/estimator_new/__pycache__/lwe_primal.cpython-38.pyc b/estimator_new/__pycache__/lwe_primal.cpython-38.pyc
index f00bc1cb77d2d8eab9036de6b363fb8575a82152..0326ade84030fb3fbf9fc476583b14cae6f743db 100644
GIT binary patch
delta 20
acmbQ1KP{g-l$V!_0SK0cgl^>SHU|JX%mrHj

delta 20
acmbQ1KP{g-l$V!_0SNR1yf<=pn*#tgNCeja

diff --git a/job.sh b/job.sh
index 52a2a071a..47b418a64 100755
--- a/job.sh
+++ b/job.sh
@@ -1,4 +1,31 @@
 #!/bin/sh
-sage-python new_scripts.py 80
-sage-python new_scripts.py 128
-sage-python new_scripts.py 192
+# 80-bits
+sage-python new_scripts.py 80 2 12
+sage-python new_scripts.py 80 13 22
+sage-python new_scripts.py 80 23 32
+sage-python new_scripts.py 80 33 42
+sage-python new_scripts.py 80 43 52
+sage-python new_scripts.py 80 53 59
+# 128-bits
+sage-python new_scripts.py 128 2 12
+sage-python new_scripts.py 128 13 22
+sage-python new_scripts.py 128 23 32
+sage-python new_scripts.py 128 33 42
+sage-python new_scripts.py 128 43 52
+sage-python new_scripts.py 128 53 59
+# 192-bits
+sage-python new_scripts.py 192 2 12
+sage-python new_scripts.py 192 13 22
+sage-python new_scripts.py 192 23 32
+sage-python new_scripts.py 192 33 42
+sage-python new_scripts.py 192 43 52
+sage-python new_scripts.py 192 53 59
+# 256-bits
+sage-python new_scripts.py 256 2 12
+sage-python new_scripts.py 256 13 22
+sage-python new_scripts.py 256 23 32
+sage-python new_scripts.py 256 33 42
+sage-python new_scripts.py 256 43 52
+sage-python new_scripts.py 256 53 59
+
+
diff --git a/new_scripts.py b/new_scripts.py
index 184d66778..959f51da8 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -194,11 +194,11 @@ def generate_zama_curves64(sd_range=range(5,9), target_security_levels=[256], na
     if __name__ == '__main__':
 
         D = ND.DiscreteGaussian
-        vals = sd_range
+        vals = range(sd_range[0], sd_range[1])
         procs = []
         pool = multiprocessing.Pool(2)
         init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2 ** 55), m=oo, tag='TFHE_DEFAULT')
-        inputs = [(init_params, (val, val+1), target_security_levels, name) for val in vals]
+        inputs = [(init_params, (val, val), target_security_levels, name) for val in vals]
         print(inputs[0])
         res = pool.starmap(generate_parameter_matrix, inputs)
 
@@ -210,9 +210,12 @@ def wrap(*args):
 
 import sys
 a = int(sys.argv[1])
+b = int(sys.argv[2])
+c = int(sys.argv[3])
+print(b)
 D = ND.DiscreteGaussian
 init_params = LWE.Parameters(n=1024, q=2 ** 32, Xs=ND.UniformMod(2), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')
-generate_zama_curves64(sd_range= range(2,60), target_security_levels=[a], name="{}".format("new_96"))
+generate_zama_curves64(sd_range= (b,c), target_security_levels=[a], name="{}".format(a))
 
 
 

From 86eb6734665a8fb23b15acda0fdb6320da5e1e0b Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 21 Jun 2022 15:02:06 +0100
Subject: [PATCH 16/42] update outputs

---
 new_scripts.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/new_scripts.py b/new_scripts.py
index 959f51da8..efc937d72 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -182,7 +182,7 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128],
                 results = dict()
                 results["{}".format(lam)] = []
 
-            results["{}".format(lam)].append((params_out.n, params_out.q, params_out.Xe.stddev, sec))
+            results["{}".format(lam)].append((params_out.n, log(params_out.q,2), log(params_out.Xe.stddev,2), sec))
             save(results, "{}.sobj".format(name))
 
             del(params_out)

From 40c0cc6744e995e244622cee926f7118fbcd85e7 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 21 Jun 2022 15:03:18 +0100
Subject: [PATCH 17/42] correct bounds

---
 job.sh | 40 ++++++++++++++++++++--------------------
 1 file changed, 20 insertions(+), 20 deletions(-)

diff --git a/job.sh b/job.sh
index 47b418a64..7c1928464 100755
--- a/job.sh
+++ b/job.sh
@@ -1,31 +1,31 @@
 #!/bin/sh
 # 80-bits
 sage-python new_scripts.py 80 2 12
-sage-python new_scripts.py 80 13 22
-sage-python new_scripts.py 80 23 32
-sage-python new_scripts.py 80 33 42
-sage-python new_scripts.py 80 43 52
-sage-python new_scripts.py 80 53 59
+sage-python new_scripts.py 80 12 22
+sage-python new_scripts.py 80 22 32
+sage-python new_scripts.py 80 32 42
+sage-python new_scripts.py 80 42 52
+sage-python new_scripts.py 80 52 59
 # 128-bits
 sage-python new_scripts.py 128 2 12
-sage-python new_scripts.py 128 13 22
-sage-python new_scripts.py 128 23 32
-sage-python new_scripts.py 128 33 42
-sage-python new_scripts.py 128 43 52
-sage-python new_scripts.py 128 53 59
+sage-python new_scripts.py 128 12 22
+sage-python new_scripts.py 128 22 32
+sage-python new_scripts.py 128 32 42
+sage-python new_scripts.py 128 42 52
+sage-python new_scripts.py 128 52 59
 # 192-bits
 sage-python new_scripts.py 192 2 12
-sage-python new_scripts.py 192 13 22
-sage-python new_scripts.py 192 23 32
-sage-python new_scripts.py 192 33 42
-sage-python new_scripts.py 192 43 52
-sage-python new_scripts.py 192 53 59
+sage-python new_scripts.py 192 12 22
+sage-python new_scripts.py 192 22 32
+sage-python new_scripts.py 192 32 42
+sage-python new_scripts.py 192 42 52
+sage-python new_scripts.py 192 52 59
 # 256-bits
 sage-python new_scripts.py 256 2 12
-sage-python new_scripts.py 256 13 22
-sage-python new_scripts.py 256 23 32
-sage-python new_scripts.py 256 33 42
-sage-python new_scripts.py 256 43 52
-sage-python new_scripts.py 256 53 59
+sage-python new_scripts.py 256 12 22
+sage-python new_scripts.py 256 22 32
+sage-python new_scripts.py 256 32 42
+sage-python new_scripts.py 256 42 52
+sage-python new_scripts.py 256 52 59
 
 

From 314ceaf09cd9169088076b48b088eb5bf7cc4b99 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 21 Jun 2022 15:04:28 +0100
Subject: [PATCH 18/42] change for aws

---
 job.sh | 48 ++++++++++++++++++++++++------------------------
 1 file changed, 24 insertions(+), 24 deletions(-)

diff --git a/job.sh b/job.sh
index 7c1928464..b5d58512c 100755
--- a/job.sh
+++ b/job.sh
@@ -1,31 +1,31 @@
 #!/bin/sh
 # 80-bits
-sage-python new_scripts.py 80 2 12
-sage-python new_scripts.py 80 12 22
-sage-python new_scripts.py 80 22 32
-sage-python new_scripts.py 80 32 42
-sage-python new_scripts.py 80 42 52
-sage-python new_scripts.py 80 52 59
+sage new_scripts.py 80 2 12
+sage new_scripts.py 80 12 22
+sage new_scripts.py 80 22 32
+sage new_scripts.py 80 32 42
+sage new_scripts.py 80 42 52
+sage new_scripts.py 80 52 59
 # 128-bits
-sage-python new_scripts.py 128 2 12
-sage-python new_scripts.py 128 12 22
-sage-python new_scripts.py 128 22 32
-sage-python new_scripts.py 128 32 42
-sage-python new_scripts.py 128 42 52
-sage-python new_scripts.py 128 52 59
+sage new_scripts.py 128 2 12
+sage new_scripts.py 128 12 22
+sage new_scripts.py 128 22 32
+sage new_scripts.py 128 32 42
+sage new_scripts.py 128 42 52
+sage new_scripts.py 128 52 59
 # 192-bits
-sage-python new_scripts.py 192 2 12
-sage-python new_scripts.py 192 12 22
-sage-python new_scripts.py 192 22 32
-sage-python new_scripts.py 192 32 42
-sage-python new_scripts.py 192 42 52
-sage-python new_scripts.py 192 52 59
+sage new_scripts.py 192 2 12
+sage new_scripts.py 192 12 22
+sage new_scripts.py 192 22 32
+sage new_scripts.py 192 32 42
+sage new_scripts.py 192 42 52
+sage new_scripts.py 192 52 59
 # 256-bits
-sage-python new_scripts.py 256 2 12
-sage-python new_scripts.py 256 12 22
-sage-python new_scripts.py 256 22 32
-sage-python new_scripts.py 256 32 42
-sage-python new_scripts.py 256 42 52
-sage-python new_scripts.py 256 52 59
+sage new_scripts.py 256 2 12
+sage new_scripts.py 256 12 22
+sage new_scripts.py 256 22 32
+sage new_scripts.py 256 32 42
+sage new_scripts.py 256 42 52
+sage new_scripts.py 256 52 59
 
 

From 7feb1f599e6c927da853b6542a52850c9febcf33 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 21 Jun 2022 15:37:27 +0100
Subject: [PATCH 19/42] bug

---
 new_scripts.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/new_scripts.py b/new_scripts.py
index efc937d72..baaf2ddf6 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -182,7 +182,7 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128],
                 results = dict()
                 results["{}".format(lam)] = []
 
-            results["{}".format(lam)].append((params_out.n, log(params_out.q,2), log(params_out.Xe.stddev,2), sec))
+            results["{}".format(lam)].append((params_out.n, log2(params_out.q), log2(params_out.Xe.stddev), sec))
             save(results, "{}.sobj".format(name))
 
             del(params_out)

From 2a304c4f60f2bb171d5110675a79ecf42d85d4a4 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 21 Jun 2022 17:35:12 +0100
Subject: [PATCH 20/42] tidy finalized script

---
 new_scripts.py | 78 +++++++++++++++-----------------------------------
 1 file changed, 23 insertions(+), 55 deletions(-)

diff --git a/new_scripts.py b/new_scripts.py
index baaf2ddf6..251bc75ce 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -1,11 +1,7 @@
-import gc
-import multiprocessing
-
 from estimator_new import *
 from sage.all import oo, save, load
 from math import log2
-import gc
-from multiprocessing import *
+import multiprocessing
 
 
 def old_models(security_level, sd, logq=32):
@@ -49,6 +45,7 @@ def estimate(params, red_cost_model=RC.BDGL16, skip=("arora-gb", "bkw")):
     """
 
     est = LWE.estimate(params, red_cost_model=red_cost_model, deny_list=skip)
+
     return est
 
 
@@ -64,6 +61,7 @@ def get_security_level(est, dp=2):
         attack_costs.append(est[key]["rop"])
     # get the security level correct to 'dp' decimal places
     security_level = round(log2(min(attack_costs)), dp)
+
     return security_level
 
 
@@ -91,47 +89,26 @@ def automated_param_select_n(params, target_security=128):
     456
     """
 
-    # get an initial estimate
-    # costs = estimate(params)
-    # security_level = get_security_level(costs, 2)
-    # determine if we are above or below the target security level
-    # z = inequality(security_level, target_security)
-
     # get an estimate based on the prev. model
     print("n = {}".format(params.n))
     n_start = old_models(target_security, log2(params.Xe.stddev), log2(params.q))
-    # TODO -- is this how we want to deal with the small n issue? Shouldn't the model have this baked in?
-    # we want to start no lower than n = 450
     n_start = max(n_start, 450)
+    # TODO: think about throwing an error if the required n < 450
 
-    #if n_start > 1024:
-        # we only consider powers-of-two for now, in this range
-        # n_log = log2(n_start)
-        # n_start = 2**round(n_log)
-
-    print("n_start = {}".format(n_start))
     params = params.updated(n=n_start)
-    print(params)
-    #
     costs2 = estimate(params)
     security_level = get_security_level(costs2, 2)
-    costs2 = None
     z = inequality(security_level, target_security)
 
     # we keep n > 2 * target_security as a rough baseline for mitm security (on binary key guessing)
     while z * security_level < z * target_security:
-        # if params.n > 1024:
-        # we only need to consider powers-of-two in this case
-        # TODO: fill in this case! For n > 1024 we only need to consider every 256
+        # TODO: fill in this case! For n > 1024 we only need to consider every 256 (optimization)
         params = params.updated(n = params.n + z * 8)
         costs = estimate(params)
         security_level = get_security_level(costs, 2)
-        # try none with delete, try none without delete
-        # test the list of objects that are in memory before end of program
-        costs = None
 
         if -1 * params.Xe.stddev > 0:
-            print("target security level is unatainable")
+            print("target security level is unattainable")
             break
 
     # final estimate (we went too far in the above loop)
@@ -147,34 +124,25 @@ def automated_param_select_n(params, target_security=128):
                                                                                                                       log2(params.q),
                                                                                                                       security_level))
 
-    # final sanity check so we don't return insecure (or inf) parameters
-    # TODO: figure out inf in new estimator
-    # or security_level == oo:
     if security_level < target_security:
         params.updated(n=None)
 
-    return (params, security_level)
+    return params, security_level
 
 
-def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128], name="v0.sobj"):
+def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128], name="default_name"):
     """
+    :param params_in: a initial set of LWE parameters
     :param sd_range: a tuple (sd_min, sd_max) giving the values of sd for which to generate parameters
-    :param params: the standard deviation of the LWE error
-    :param target_security: the target number of bits of security, 128 is default
-
-    EXAMPLE:
-    sage: X = generate_parameter_matrix()
-    sage: X
+    :param target_security_levels: a list of the target number of bits of security, 128 is default
+    :param name: a name to save the file
     """
 
-    # grab min and max value/s of n
     (sd_min, sd_max) = sd_range
     for lam in target_security_levels:
-        print("LAM = {}".format(lam))
         for sd in range(sd_min, sd_max + 1):
             Xe_new = nd.NoiseDistribution.DiscreteGaussian(2**sd)
             (params_out, sec) = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
-            print("PARAMS OUT = {}".format(params_out))
 
             try:
                 results = load("{}.sobj".format(name))
@@ -185,36 +153,36 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128],
             results["{}".format(lam)].append((params_out.n, log2(params_out.q), log2(params_out.Xe.stddev), sec))
             save(results, "{}.sobj".format(name))
 
-            del(params_out)
-            gc.collect()
     return results
 
 
-def generate_zama_curves64(sd_range=range(5,9), target_security_levels=[256], name="default"):
+def generate_zama_curves64(sd_range=[2, 58], target_security_levels=[128], name="default_name"):
+    """
+    The top level function which we use to run the experiment
+
+    :param sd_range: a tuple (sd_min, sd_max) giving the values of sd for which to generate parameters
+    :param target_security_levels: a list of the target number of bits of security, 128 is default
+    :param name: a name to save the file
+    """
     if __name__ == '__main__':
 
         D = ND.DiscreteGaussian
         vals = range(sd_range[0], sd_range[1])
-        procs = []
         pool = multiprocessing.Pool(2)
-        init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2 ** 55), m=oo, tag='TFHE_DEFAULT')
+        init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2 ** 55), m=oo, tag='params')
         inputs = [(init_params, (val, val), target_security_levels, name) for val in vals]
-        print(inputs[0])
         res = pool.starmap(generate_parameter_matrix, inputs)
 
     return "done"
 
-def wrap(*args):
-    return generate_parameter_matrix(*args)
-
 
+# The script runs the following commands
 import sys
+# grab values of the command-line input arguments
 a = int(sys.argv[1])
 b = int(sys.argv[2])
 c = int(sys.argv[3])
-print(b)
-D = ND.DiscreteGaussian
-init_params = LWE.Parameters(n=1024, q=2 ** 32, Xs=ND.UniformMod(2), Xe=D(131072.00), m=oo, tag='TFHE_DEFAULT')
+# run the code
 generate_zama_curves64(sd_range= (b,c), target_security_levels=[a], name="{}".format(a))
 
 

From 3a88a8300398431e05146e586884bdcb4687dfb8 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 21 Jun 2022 18:14:58 +0100
Subject: [PATCH 21/42] this is slowing it down

---
 new_scripts.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/new_scripts.py b/new_scripts.py
index 251bc75ce..401f3d37d 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -92,7 +92,7 @@ def automated_param_select_n(params, target_security=128):
     # get an estimate based on the prev. model
     print("n = {}".format(params.n))
     n_start = old_models(target_security, log2(params.Xe.stddev), log2(params.q))
-    n_start = max(n_start, 450)
+    # n_start = max(n_start, 450)
     # TODO: think about throwing an error if the required n < 450
 
     params = params.updated(n=n_start)

From 1a59cf56c0f8e37d015f02c054e4bd65905fde4e Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Tue, 21 Jun 2022 18:40:14 +0100
Subject: [PATCH 22/42] print

---
 new_scripts.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/new_scripts.py b/new_scripts.py
index 401f3d37d..38dd212ce 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -141,6 +141,7 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128],
     (sd_min, sd_max) = sd_range
     for lam in target_security_levels:
         for sd in range(sd_min, sd_max + 1):
+            print("run for {}".format(lam, sd))
             Xe_new = nd.NoiseDistribution.DiscreteGaussian(2**sd)
             (params_out, sec) = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
 

From 93804ade442b2d753984622bb09ffbf563b3aaeb Mon Sep 17 00:00:00 2001
From: root <root@ip-172-31-5-96.eu-west-3.compute.internal>
Date: Wed, 22 Jun 2022 12:42:32 +0000
Subject: [PATCH 23/42] updated results

---
 128.sobj | Bin 828 -> 703 bytes
 192.sobj | Bin 553 -> 699 bytes
 256.sobj | Bin 377 -> 726 bytes
 80.sobj  | Bin 1156 -> 715 bytes
 4 files changed, 0 insertions(+), 0 deletions(-)

diff --git a/128.sobj b/128.sobj
index 2d09818c41fc5c159fd24fa873b2f9547265b9dd..79a6242f3cf14f5d10a8ac6c3f8e5c527aac6717 100644
GIT binary patch
literal 703
zcmV;w0zmzEoMqHKOjJP-2k>_v9LJ$}o(JLq2O^#W;>q!Ofas~{Au>j6v_PYU7FLXI
zg(0~_(Gp9c#ZoN|oe3r;CfaCWV?$vDi4{gW_sB3iFK???{PLgO*_~GjFOqjF;(1=7
zzeu6m6b8U&b>-4^Z+DeT-rmPuZ|z57f(%6fi&`WDA_{m%i@1o;)>3x;hM^k3lon|b
zH5<!w@W)UL@Ks!ijzC5&;I<acE+e}>yR~E}4){omPPfw?Tc+Dk9pEP|T1BMnHg-N5
zN&wDi(Iq0zr>zIfX^|6=WU&wMZLJc$B4Q7!%g}zne_DX6vio7E0q}(ud3W0RY8gWZ
z0KaR|Bce7jVU3|AV51iOBEp;Hcj+gF4g%iOqEAHhi(Ow0r2v1&lo)Us)glQ)hXBWQ
zMnOcx?sNXNp)}xUoiXU{)^1~A(@-PenifOu=D4R#fCVjzfqonYT-0LN^}}B6#<HPi
zz<Mo4-Dwx94KZ{C@TL|cft$+!{;E-8%$?Rg)7fo9Er6?9oDosSFS!-aXffe#pHJHc
z_(6;DK-aT?*R(hrIBh#1XmKuZmJY!8Q6<icNbvhO3K-TICD(PHxlX{BzKn{TcEzq$
zL&pGrYEcpqt!{MAP#54sEiSlz?0y(J4w%*AV&L|3fRnxqsS>MhwB67Nz`qflA)=n&
zsr?sz(_+%~gS*}h_{JwBBhG)A9y<+MT$YS9zp;~m&$YM|xVc_Cx4sOiviFxdW#`tH
zA)<lrHgD%PtVCI=BzdQ&?aXO0<#x)m-)HC6mmyV}xTgg>bG{4_8SYrWohU7?NR?*3
z+W|Y-J|P)x{Kf|D%!QPg7SYasx*<E+I%8U@WVmC)cA|8~RS_*bw<CZnKH;kHy%YhT
lYB3`j!`$^zz$KrMj4AH=7+^&UbUWpajo*Kq{|_K}lklAjQS<-+

literal 828
zcmV-C1H=4yoQ>5>Y?M_L2k>d9&#4F&P!uQ#0tX*sXF6>^9@T=Cisg*-fKs(Elro(b
z+tUBc<yAxwDCH$(iELquOTvx>5)u+!xnRSF1uIBgL0obVPU6>_o6OwZeEEL)pL@=C
z@0_YUfk<C85{V>|0V;N*l8DdNU#yQ5SH)mqAeW8jN5*r7cs@HYni-oI%EvO9LHomG
zGa0eZ(uc<OW%HTC*?eK-;COQk(Q?$5k?iRH5UT2Fz0g->GbP=XM)fpm1hsv0?SoXj
z`Ty0~jJlrX)2J83x;ytqZaj*0z@ULR2-iIv9sUpJ9Q=mjIf6GscrNiCFAf|$Pw`uV
zMvE(+O*P#SgZadbUYwYP6Ih^lq2O(ctMAS9(@TSQh@aQ_aMHnx6u&EYPjS<o-e*$=
zi;1s!ap2%3ikAwSLS-)_&U<mr!OIoDFIb@sdtvKdYp{~|ffuJ7{DI<Cg4Gr`+AY7h
zZ?J}Vn-|Y+SQ4aot>8n8>x!fLh<J4w4NKx<#h(b`7SAi<Pl=~%ODDIWS#d&;)NW6x
zHfSOK+lvDyIi<K&&}MOMtiy7HcH#jqPCChf;&p=c7FYdg*Ix!3h;Mmu&Pm>=xI^%n
z#Wh2^3_d5`;KeB?xl{2b!Dfr2cE=Mp4Za}$r>1mr3%V44DcE9hrEWQ9&`tc%i)VK`
zg|8HE6@0CqXZIfqCZ8De5HBpF+b!6pm<4G~eq!};gKvm$c$1S(@^;0&0tsCPJBS;~
zD7zIq6@M%EPDeGV(FVJScX@H(B=;%)UhqR`R6i0wtu9@5EBY1h7VObc+2h>%+#o}o
zC}UJ9>{UD<*cbY?2Z`@`lT%Lee#KeAP-xCMV&la*2M;SA5gZ7e=bwnLdvW04QN?3|
zaf|DVci2JVv=`4FRU0N0Ly*@aX>Xx>GX@1>Dx=$NFp3We4u?i{g!pPz>Ew1CReVe^
zsb&9e*L8#A#E-o=aFTykd_wSxeqma5zrji3174hTl20lARd8Cn{rX*lGsL&OIOimv
zRXim)XK}1}s-}s%yg20~pI3ZAa8Vnke^tv2E)oA5EuGws%Zh&!T(P*Jcn!^D3-MP_
Gumc7Dvy&hI

diff --git a/192.sobj b/192.sobj
index 8a3d3e431363ef41a77374f4331aca14dda21551..213644ddea97cd5351598d9f041b577a8b161df7 100644
GIT binary patch
literal 699
zcmV;s0!00IoMqHKOjA)52k?G>L4iUMP@sHsz*>P83IzletfD6o6BA>KgNeqG8?Q?f
z5)$L&z=}E=T}+IL3!^ftiIamaj7C?PJ&&AsdS2d}I{flKx99!u+YRlQz@2a)5SU(=
zF~Kbp0>HI&b@gW8<f*Q<xj!DIw_pEAEn5=?{GdfZL}K&Lv;G5XB7ku%vLZsuPKY&8
zz`7O*5iJK4lCvfT_`O+)ZV@TYhy!kEF(4vdgMWv6)+7L5Y0)bp;~eysHA%p6Ervw2
zaz+a9cast$B4Q7n$C@U<k6Mh0h#v0M;MkgGz#T0>MC1!SU#&?4X0*tQ2-86~|60=m
z_$#GEK}1v0d8}y#tm=%(#uVqT)U0U(tmurH#+!3qt+6Hp_*RQ4-`3j!BU%(287Dui
z=>Xi;Vp>G<1wAjV$pU^$Dp6{@xsx&0bOP>cG3(p<DZt}|67!9H@W#3T@9T^?5pI*a
z0YB@E1>a740P{MdETXx7RDGYd<}~1Qolz0d&Ko-enA2iOL>u3iUg}s}iDeOP3;O_X
z>x@Ma89GJ%$eMm?q0YD<qJ=k>qZVqhBBGP`F#z~8ro=_xe;K5X>5NqoS?<^nHOP~(
z>xv$J`@__APlkvN-uehNNM~G<Dc!uWQEH(UmqqmPog1UBdopB7jypC^EsW|65xsmX
z>07w3#hOeR=95lP$2>wZ2Kfs!3HT|Z#1+XH<*lEkj_Hhb5y1a8PhHm;>oR4Gzn13!
zpL(W<aKAwX>R4Ebt1@MdGtL8|&ZvrTzd=)g?>reYCBnC18nDZgAtJ~<odJBJGp@;$
zAort49rFmuDD!P7QBOlkY>1e5N;qN7EOkt0Y{--)KIt6b8=Y}oM2SV2TIdnJDf57L
hwYVV}?!8?Ata*g59~HoRTA=S7iw_<b{sW?;nQ%}#MVtTt

literal 553
zcmV+^0@nR_oQ==hPE%13#_<AGpn!<yGk63QYrEOS4IV(PpyE^=Me6~#v}`t2DE(SM
z#gKS6QD4Bsd#_D+0$;$ydtZPT@Y+r^5mr`G=Wb2%%dG#q`V~a74UtGBIpCmf0`)!g
zwe3T5<nPqwE0bXmFBghoC0-6DXZ^X-bUEhx`RZdK@O`fCGK+J$pzJRN<w{|`n24d_
zf7D1Jn4MaOqGPG|*=Y49XVMvL5^QEPX4|U^H=g)6!wEEvbqSgoF+mG0um9~#!^|Jz
z8KhN78)J*0ozhkk8f2@I4#qaYc51Ye<OY(&4kbGoy9B%GN2`rE2HB%zFJqrzKYg|m
z*B}R!9Aq34bkc;Ccn0ZGa+q;MaFn{OBs9n|CC3>j1l_dOQaj&4kCKy&Q-ag9Y9)?A
zdX=1E#06(*#Y$X*B$Ol>j-Zc5t;92kt0cwf7o4LGD+vwaDH&i43eMBdSnd2iTu^e6
zaY-;lU#!G2$gq;jj4OhxRI(D+AZaDn7$bsF8nhD6AlH@LVB8dpQPfI8gWOU=jEvwm
zeQ&Ov@8XV<y9^fGqfb`i805Z^amE9|L&{l+YmlsxM~ugUC)8^to<W`}nP5B<`1Gr(
zcD{?}N+uaOL7u)@$;SK?rj!JXX+cOIt;8|NjFJN5h2SNPTZwCsStWCfqF|mnt;91(
rNeLKbL50>DYv-r1pk$G;BzQ%uR<bd_AFq|XVJr*Y29@}4UXEA|D!~Rm

diff --git a/256.sobj b/256.sobj
index c22a70366607e6355402e21bb067abe0f76c3b40..168914b0ae6e225d39fbbbeef0ee801bf272896b 100644
GIT binary patch
literal 726
zcmV;{0xA7?oMqHaNK{c22k<w}r*B4Qtf|aww8`wRsi~vmS5spjj$a2VS`-*<`q+Bw
zLSO_ExC*LewrG=^Al&96h-?=HL4>Oo(k3W^7Pe~9dvfR8^Xje!=Ewisd+xb!vF5IF
zE`}Y)=^rer&}CHvP^_U+KI?3+N;y;gF&|ogIEUX_g+Y&{a9G5ba%<;)XcYmy$q12U
z5ncAy6Ro148JUr=RlJDrOIpQ1T4pq|aJ>I>Yg)xYU(-UgvIwtc7d9ugN`QK0Ml*}Z
z!e(VPt5q%Nsm#b*fi3U6TDhQ0QncAB8*XWSMXMwzD@D5%rXMNLM7<DQEMi_ux87=1
z2l^-lY)|L>jc8R53Q5spGfMN%He9XJp!-sE+6>nxT4g}5>V)XE_u{woyjBgMf)xEM
zYAb$Iwb}u?Ek&Od=5BX_ex`&dut@kV?a(R<dM?F)72ZioN~>L<t5OWINSWK;4Qi31
z$RcU(We?~<Qix#|A-`cItr|g}q!_Zo^kXk*N{SH{jyX#c=$<RYF&1^E%05s;W{lbl
zGlk8d*D_<witVM<eo#@05{q!bUs~lrziNdz&Z5SDP%T=ufL=&(!U{7%t)MRnA;wu$
z-^&5e4Vh79QGMBY&~hMSk?+>LsDq$<AcIBJy!|%N1(|V@t5m-*hd}S*LY!jZUiX()
z?VxlZgR8{+qukNzFlZ@|!J<0J-nVdEiqrOP&1>iY{fSAz87b4TPEfZL6E?%l*b&f6
zDbBD+n$vcHzC~q*tzxFI8+0>}!NN7S-ve5a85ORQF)!*Us7Z>+|9097x)R9XDrqx?
zeW1?~nPGQoUUom|krY$*wB{>S0L=!(;=lVC0Ii3Gm}XI(!a-16W=wOH)b<apir($Z
zj2RYfW=@Ad<$&NSjqknnL91cVm=v>|kvB6o0vZYk&d8W5qo7eKh%<6oe}uFeyLPMR
IFS(kTRoJFu0RR91

literal 377
zcmV-<0fzo~oQ==7P6I&@#_=;InqYFyIUeV;4JKz(SnFacQ=k*!I4qIAGoeDF8v!ps
z#gowR2D}3=f>$7cS1Xz6cBG$X{|_biFfu{IFzomo0{bW#7cUJ@RmRT*j&cW{Yx>y>
zFK7Dh!I^V@b>fE{=P3WUb{&WEyY$WZq3b)huAj?ZURWUn|D%#w_w4u&Dow>7Go|^P
zl-^FGj8RUg$b|EYm}&jax`oPAKck8eVpNON-`}1FPrpe*AvKcJ66zRXQLZJPLh2=H
zAT%<X#CyGtL<&d*&62bbS{ZHPT1#w&v`f-K=wx&WOG{!3>6WC2(97r(pW)*95%fzk
zKp12UiB~Q06f!Ky2w{{lCib+XFyF?wBol;5#*}E*5?dkDlFSfH#;o|LE1qw|k|aW~
z8By`9B?*PZB#9H|81o{jC7wbOk}MDw8A~FdC58D>EK9ONSY@n<x7y<QQLIa{LD*z$
Xi90QcDP&uc9YT_^>*mZaDlg1<P)V{&

diff --git a/80.sobj b/80.sobj
index 3f5faea9d632da18c3df7cdbfd3129b53d428539..14697f236394e52974d679fb352c69ec2bccc243 100644
GIT binary patch
literal 715
zcmV;+0yO=2oMqKJOjJP>2H@QV7FZDxmiKE}0e=vX_tQlLagp^TVkp#LW6;io15=?U
zG&E|Yve3dpv89!m*r>76P^rYm(3xm778qmYy)b+3x$acA`0~%pnKN@&Lbo|^F%$>{
z20J-;g+l=S$VrZ!5A2QPSW)_8HkjOqF7Fu50@a6=2#CmD-f@iKY|sat5f!ojVK@gA
z)){%;EZ<h^HZK?sgYN2#n23UR&UkM)7xYGp3K0!9BM-EwMO;M1j7tpXgVwdE5mCH0
zhuznPBcMxKG>Ry@?heBTKtozId%J!5DUx8r1)!hVO0<cni@GH<d=M1V84wY*H7x{v
z)EONjVs@58pj@5NDxz@H*>1hzBG5gZ(Ji6|yRX*f3?Bx))S}Z{sm&+`EospsqAIcA
zti*5$=$RH>8M}>wE^E=7aW18xaV`2pl)FthWw;FVCrgPz@APe-mV;V!M!$$sXRr8e
zxB~P=XAEWRwh~mNGX_MII7MGrH(UjJt22hZn%X|C20hT?gow(A&Uj?F2DG8Yh=^*Z
z8Z+Mw*Me?ok?`sfam#MF4m7XDsE9_}LG_@N7AHl-ZLh~bK`l;Y?4<$Jt;Lv#*xrZX
zIOuCgXRM?J?AaaxRr)eS)Vd9nFx&{*(i!72OOrjhCeULoCcM+PcfT3*+?OG<r0a1M
zwCc+c(Qen_yoEQkI4!fZ+56H0n)L~9w=QTg+zN_laYiymZI2xTjc73`qSvmp4fHFh
zGh~)w7u+=54vPCSM0DBP&;i=k8A+LCz}~3ipcg(N8TqzPJ3&vhn39b2Ti6A<;}epR
zzH{Bqo2<oI$q3tw9?(^vkc@d-k6zHU7Sob3(c=!oeNLbHgk((Gb@YRZwMa?EqP-0R
xNd477BJSH~Y!Io>3Y?RK{ePz6q5ps+q?=<Hsci*F60+>;GIDLH;~%can2uc3UYY;^

literal 1156
zcmV-~1bh2<oQ>95a8yMU2H+%wU?M_<utNd}dQgZnlS#NigAswCV@GpD4Hz7OOonIz
z`DYqb7R4n-0)iVVsHhO!jk_R<3m|SFZh+;B#hX=HT0US|KG{cZm1EOXZokdceD&Wx
zr~AxZowEvA^*LEtSzZX)^N>TNe(T+tpXIOYh3WapL}{vdaWY++O3ZJGx3)E<3gYpF
z=7Ube<7~dGUD~=Jk%})%q|(hx7KaMZD~OueoM>sxK)JE<HTAhBlWV8fqIU=K7=7yd
zn=g{3q5oEO2&ctHcOaipP*XiSyQaHn`7w>tNtNVfJolnri%#IEh5HIVgVE36+~vm%
z*XU2`aBmk5{||>zDELgq0E18bR%0NkJZG|JB^L=E#274({Y!iCPSzMgYOOQbvyz7j
z9>y4MaNh%F9n=^>YM&EFEId;1C`PftWBlY2QYj}+T6nbJF^sVW53LieaTcjACyrWp
zoZ#_{vke}wp@EL?)i{ULoB-91fCNuqoNMslCRrNik*W-^=LjYWp2R4XR&6_4Pz8<i
zNgc`UIk^lW!C^+k;L$!VBh@EBt0IUBE@xC2+;69;Sc%4DQoEhW5i8jfT*;VXaIuds
zAoaTwC#~cQ1y?bq3NDhvt#J{l?M@uElB)$@%$SyeFCmo<kX(l8f@d&h8a%wJ&6G@|
zhSb~u)sAA8;7b{oWt^}WsdY~5S;?0RR*YJMN7C^<8yYmOAT=#OwWGLFa2<mU9wLKe
zmc~`2e(KfpW0zyL;Hw$eWVGs9QiTB?JBoV2a~N|C9%v3&TbIUlr1m?LBUW;Q;CYPe
zWzYUFh?DxuiIZ0H4T9%07RWI0r{_Xa-A){}k{bml7)=I`FpaAFRU=7iWq{;zEE3$z
zxKXNIAg4s*CQ=)n*t2kp;8w<BgNJQ0YqQ1@QjGyxRe?6aV5AHl=MVifsaSw&S3nD1
z%2;ObSbv7yOzP*Ho|7lz7QweNmK#j|*<L|vSb#lOV5Q(yjN1$zC6}s7<91SqoXHU@
zd9~m>7<U>x-dqd%Q{ygD*#TNrfx88_Gw#VaVI8D)IFqAR^1XuBFgi1;y_QtF6DKXa
zPVjw<^#)J!_q>7B7AN*Be81oa7!PLr(LF?}H9)I8JS=!4;}L@=`jg~QQnLe8+rwjm
zH!(I#pT$nlc%0N9**zy$;t9b|GPW2zMe4Oe<0(>O1MJzu(}JI2Y&AIS-{)<lesCs7
ztmH1i+ZoRqJlP+B&ygw!&?*nl3x0v|qQO)B0r(QBUC!jFmHe{cR~X#}=ll2hRZ?4>
z*t76!f?sF6k@05mCaF#*PFnaa!EZC(F?f)FF?N`@p_6doNv#Tpuv7HAj9o_O`O)u@
zTHw?XTfZ-QH{%1N8~v;CA*qN{d$#^a^v8@nM$hn{d@rd1PMx&%KGB~r_8Xn@=h&wd
z`#Zq4!}v__=Zr55Uhlshd`Yn%1ME7C1A-4SzB0J*-ydrnIt7l}_-n!6Fuu*WS>K%k
Wdp7=F@L|T0416?^F8v4EULy{xr7;Nr


From 5f68915c75fd46cad2c78e7530a19e9cf541f0df Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Wed, 22 Jun 2022 11:59:00 +0100
Subject: [PATCH 24/42] update file for last exps

---
 job.sh | 83 +++++++++++++++++++++++++++++++++++++++++-----------------
 1 file changed, 59 insertions(+), 24 deletions(-)

diff --git a/job.sh b/job.sh
index b5d58512c..036d9b610 100755
--- a/job.sh
+++ b/job.sh
@@ -1,31 +1,66 @@
 #!/bin/sh
 # 80-bits
-sage new_scripts.py 80 2 12
-sage new_scripts.py 80 12 22
-sage new_scripts.py 80 22 32
-sage new_scripts.py 80 32 42
-sage new_scripts.py 80 42 52
-sage new_scripts.py 80 52 59
+#sage new_scripts.py 80 2 12
+#sage new_scripts.py 80 12 22
+#sage new_scripts.py 80 22 32
+#sage new_scripts.py 80 32 42
+#sage new_scripts.py 80 42 52
+#sage new_scripts.py 80 52 59
+# 96-bits
+sage new_scripts.py 96 2 12
+sage new_scripts.py 96 12 22
+sage new_scripts.py 96 22 32
+sage new_scripts.py 96 32 42
+sage new_scripts.py 96 42 52
+sage new_scripts.py 96 52 59
+# 112-bits
+sage new_scripts.py 112 2 12
+sage new_scripts.py 112 12 22
+sage new_scripts.py 112 22 32
+sage new_scripts.py 112 32 42
+sage new_scripts.py 112 42 52
+sage new_scripts.py 112 52 59
 # 128-bits
-sage new_scripts.py 128 2 12
-sage new_scripts.py 128 12 22
-sage new_scripts.py 128 22 32
-sage new_scripts.py 128 32 42
-sage new_scripts.py 128 42 52
-sage new_scripts.py 128 52 59
+#sage new_scripts.py 128 2 12
+#sage new_scripts.py 128 12 22
+#sage new_scripts.py 128 22 32
+#sage new_scripts.py 128 32 42
+#sage new_scripts.py 128 42 52
+#sage new_scripts.py 128 52 59
+# 144-bits
+sage new_scripts.py 144 2 12
+sage new_scripts.py 144 12 22
+sage new_scripts.py 144 22 32
+sage new_scripts.py 144 32 42
+sage new_scripts.py 144 42 52
+sage new_scripts.py 144 52 59
+# 160-bits
+sage new_scripts.py 160 2 12
+sage new_scripts.py 160 12 22
+sage new_scripts.py 160 22 32
+sage new_scripts.py 160 32 42
+sage new_scripts.py 160 42 52
+sage new_scripts.py 160 52 59
+# 176-bits
+sage new_scripts.py 176 2 12
+sage new_scripts.py 176 12 22
+sage new_scripts.py 176 22 32
+sage new_scripts.py 176 32 42
+sage new_scripts.py 176 42 52
+sage new_scripts.py 176 52 59
 # 192-bits
-sage new_scripts.py 192 2 12
-sage new_scripts.py 192 12 22
-sage new_scripts.py 192 22 32
-sage new_scripts.py 192 32 42
-sage new_scripts.py 192 42 52
-sage new_scripts.py 192 52 59
+#sage new_scripts.py 192 2 12
+#sage new_scripts.py 192 12 22
+#sage new_scripts.py 192 22 32
+#sage new_scripts.py 192 32 42
+#sage new_scripts.py 192 42 52
+#sage new_scripts.py 192 52 59
 # 256-bits
-sage new_scripts.py 256 2 12
-sage new_scripts.py 256 12 22
-sage new_scripts.py 256 22 32
-sage new_scripts.py 256 32 42
-sage new_scripts.py 256 42 52
-sage new_scripts.py 256 52 59
+#sage new_scripts.py 256 2 12
+#sage new_scripts.py 256 12 22
+#sage new_scripts.py 256 22 32
+#sage new_scripts.py 256 32 42
+#sage new_scripts.py 256 42 52
+#sage new_scripts.py 256 52 59
 
 

From 8804164d2bbab69be240386ba5a3cfa195c91cef Mon Sep 17 00:00:00 2001
From: root <root@ip-172-31-5-96.eu-west-3.compute.internal>
Date: Thu, 23 Jun 2022 08:31:09 +0000
Subject: [PATCH 25/42] turn off aws

---
 112.sobj | Bin 221 -> 708 bytes
 144.sobj | Bin 839 -> 710 bytes
 160.sobj | Bin 415 -> 721 bytes
 176.sobj | Bin 0 -> 714 bytes
 96.sobj  | Bin 939 -> 716 bytes
 5 files changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 176.sobj

diff --git a/112.sobj b/112.sobj
index 1ab2c07e8a472cd2b0b6d31ac4e5707d5974c052..a50b2f74cb6a1101814de0686621aa684bfb6383 100644
GIT binary patch
literal 708
zcmV;#0z3V9oMqKJOp{R*2k^dVO96Qm<P9R!KM0jlo<+2XP*6{NBpQdhXmsX;o0yPj
z7-TllNf$L5CuMRlI;o3;kI6VV5nU7q7j!c5`|y5;^QCwChF|`t_uO-DS3}o0a6TLe
z1TvXn4qo68K!_LervlrnkgxGRiowmbj^}3#he69)1Vpq<FFpL6FdP9zwMdHi|6#Zc
zw5UZ~MCfJ_TW<_ULEmCZG>NEu=dAaJW1yE>w3SqegC1znC8E{Y%ITkm%R%R~=n>KI
z+W8^B4JSZXwdfX6=0t3+8Lj}0Xps_8pLLhvN>H5^5YcUSTLt<URboIy&&oz&J!yCs
z=&2Uzl8kE5cP;vN`r(|)G#jn~-Oyr4M1}1~Ehw+Wu!z`ta%E$|a2@EP78w!ccbs+C
za6PC~i>!#~6?Yj<g8r5%F(M*jciRB^qQ$5PZ$279*R_}s(QD6TH|T{HV<LhDcQb~Y
zKxeg>Ea^ux=)M-?B2soQEugFxIT7(KXN39;w}O5}lsG8Do1ivOt<IP#=~z4HgU*;P
z=|>0Xi57=;PJeqD?gZV|;;@J@Tcr!cTI5A!odH^UWOxrKrNxYhSi-&hhPy!vzKm5*
zc=NFr6!B$<@J_!6^fj!+5vdZkH>wwOPm5U*m2lf`I0bs;%aAJ7MVA=f=S+|<Lqx*9
zW6oPx)Z%E#Zu>wvpOB2O?N~qPQ%H$<$?*EIAJnWf=0w!kdpiJn=F5;OjrQaQL4UNE
z6H(=EW!i8WbW4kZRH?HQbO3Zxiv<zhYdHj3@?}Vsc3UL_8uVp|@NVTWs6vZHsnWIm
zVK@u=5!6C52JG36fF5gcOhno((rI`U^wuY&N=MQiGQ(q_OIjS4j2ZhnjDyyELNao8
qJ|>)hF)dDrn6+~{>D&gNkSas=Y;&M_El4uFH)!hea{3=EpN(6?#!q<w

literal 221
zcmV<303!c*oNHjJEo6vbW?*12G&Cw?j4fo+@Ga)(;$(mV#^mC}^i;i~%)Insy`t2_
zocP>=v?8wf_+%ibBsD%h2q@-Pnwykb6knEFRGgWgXTVj+OpGqK%+#C|Buy;drkxQi
zKs$r{T>J`I+Y8x(3fUw0fdVFa1_<C_P{`q}&|b(HRLIp{$nEQi?Ai?G42TvBG%Y+J
zExbX6eC>t&z8YAyq@!sO0BI2nDimrj6!vAqs>KjRi(#P%NQ-Dtp;&vNxbG8oY+8)a
Xv`B!oNCp*3wHHdK7V7~32RUCAvYBVE

diff --git a/144.sobj b/144.sobj
index 3f9659048ffc304b66d4c396c5088ce1ca721950..fb6e7438688424398cd2fd161b77ec10b9cdaed9 100644
GIT binary patch
literal 710
zcmV;%0y+J7oMqHYNK|1I2k_DHF^<~!7;}6yny>zvnUC?UHEB6!9mrh^+Z0JefrmZ_
ziolJ_C?bel1Yv7eK~fP^1VN9jYZpOa6a)tCy4OC>cP{r^UARB~=X~eh?_18l!;$mR
zNF>si$#C8U&If2Jp39z#?5<q4V(;N%!DnxMF&qUw(jp=vFSnk&wPm;fl+q&UGO+XR
z-h$ym&^0Y$A_~3t_+z*T^q@qEW)ZRZ?UnR~;bPEFEm9&%z4!A!497rMv}h4g>^C}V
zxCHcCi$*6F{8kOeK|@-!i74_Sa_fdmL1kKWxQzJZ(%PosGSJ<a65Vbdenir6IcQ4@
zgsSWVUDBdQM0C?D^UQDp^g@d+H&bsM+bf1EK;Md$=oeA)*juZHD?y_=qu0%Jz+Z-|
zK(BPhfcq|MUL$O{8kEo(eIj<p5jUI!-PakJ(9~-{i&_l2dH7ptGQ1!3y-0}>H&gqM
z)q*B;#*mwb{l`+EH#%c9wA(sRmChJ;RqSb~2R+moW1-zPfU;UlxQW?6xe;_#i*ff|
z?1?%6s?lOHG><fByHJT^q1`rt-fD4NM48=7GiX|i6QMp1dS_pYtecoUb1k5{K*sW(
zsIa?j1zithh=_ZQ?z}hL2KrT?#FSJ?*b~(bTGe9O^<hs#2k1i}L#mY9c^m>Q1u{Z?
zcz5B97AK`jrJYA7s4*ZUBVlitF3^*x5;KxfZU3>upx;`Y60vX5UxvFuCXgXj>TDlJ
zKpz7cB9ivo_JHQJ$Vru2+v!ozPQDVeBI^B1>bBut(5HZqDk*#R`#?>BDxp65K~HtY
zX{nO7yBz@C3<$|+u-`TVYSm&+MB3h#gCGhBsnYCU4xNUFK!5X;I3uFPp4(y2*MJD^
sWd!tGi?fpP|H1Gm=w(1i#)v%)W1tN!NHW^}HYN>^U%t`v4?}dGeB{wu#sB~S

literal 839
zcmV-N1GxNnoQ==vZ<JLO$MK;pODkAF5m1yJS%;aYPuph%q-+H#r^sO|n?otnr-iok
zH&a$Yb`JX{TJ{~4Rg`@ZMHUhM3SO9)m}p|+dwU{@%;hFC=iNQYC+B|GWUNA<EHe-Y
zgk2ZS<{+alHRf#14!oFV6^U{`7K~Td`H5gWR$ddWt*?ydM57f=kA_$@%1yh{#kKQd
z@#vCRJW;)<E|i1JbX0M5tY-d8D61rYOIcRaO)ec>isphAjFx4&O$#>|`hSW-XjRfp
zkj=;uyhb%I|F$Z#>ObNcq_vVZjMoLZG}20ZgS1uBj?rH526eKMa1sgQO(h)|ZwWfm
zpV>Cz7^IVu&WyJO@6cT<aShT%$-9jA1YK#bm3Ri}rldQghoC1_S&46uUP^j1`Uu{q
z0xL<*chFZ!KSqDS0BW5^zJq~E1~Gzy!SuXU>U;+wC1Hjm$fFxp;u*wMlFuj*6w(eW
z@eSfBi7-A84511uNzTv1P$k0{9}0$3#7Z246e$_O7%3P<xoPC*VYHGljAFr9`mJT^
z{5*_P@)2XapoH#NiEoezN{CS^m`J;=Bst&3$4VwKSTLC?t;8|N6eUv`(*)CLsFk<|
zDN{0oF;g&$+NY84Vz!bwj86nn`n^T!d>3<-lr!cDD(Ie-B<JU2zLFTDQsC1*D{%}`
zrKFm%K(LS&Scz+p8YQ)iI>90;vJ%fA^-92q3lh{Jjr@ExC|S%{B3Md)G*6vhfMrUS
zGgb&brTbRm7-XfARgBLBtEtgST!XApvX-$<u%2qI#52eSB^w!=1VW>%#5c%hC0iI<
z1>2}|8u^9Tu4D&er(hTTm6bZb5WAJ^VeA!rPLHg_HOM|CUogHDG}1vU@eHzG$pOYe
z!6B-*65k+)l^kIl6&#~tD@o4xa9qg=#!0~`>XJsjhto>VFuoFeO@C*m&iC+*lCz9+
zg7fsmN<4#HP;!xRN$@QlwG!VTmz8|S_+D^@8muHaKZ2`Dt}(6)ZqRruaSU=($t}ih
z!5!+FMt%f$mHfcCC-{;6$w-|a!B0x=Gkz94pl4R%8|0yqM~ugUU+Baur0pyD;Sipv
R`IYfh@GO=H{tFGULZHiRh>rjO

diff --git a/160.sobj b/160.sobj
index be9e64790eb602e4b638a521cb73b00cfa710c49..005181dd19b8e9006bb9819bc629ef6f904c4d7c 100644
GIT binary patch
literal 721
zcmV;?0xtb{oMqHKOjA)52k=KJPzp$af>f~O+dma+`Ti2Aq7*+)B09)`iGwCCCY*R(
zG$zCZ2bYdU9UNqGAPx>B#s%YGB8!Wg2`(mLjM1Qji?7Y?dFQ2Xddd6cf9^f!-nSaK
z$Ieo@<2Zw3X)e3M0f6RfvY87`;mKwq#g}V=o$N;RuHkaf3oRTG_2HS7=bsD*L9JRu
zMN~g_pC^VZKt_v@h~NkJ**07W`W9BARYZfkj5|Aqt3Yd7bcm>Qzh^fLhd{5jXcrM#
z++B-r8m<Oi)}l*9ox79pjNve-Q;VLGe$;?|S1ZvcqBg&bsNq`B4J`&l6dD#bTnBom
z1w_=it5{h#ybm;`Mat``?MFT6krqiWV>tg9j(}c<lo%3GWhd7Fs?`~35utoL*l;80
zzRno-y1wZ)HDS03^jV8RFQf2cI10L?#fXTCcs|5%GpJXK(UP9FfSy(<G2!(iKiZ3i
z_k;dwG3NEd1&iMew}NhJG3l*zZ!5RlZ#V{euf@1Gx!f}L-Womtn$==TMDdKZfxc8K
zaZE&=TLga$w}T=&W4dH62SKlN#*Ehwdtc(92U;BWc56>i0<@&XtS9XG=m2e3C~-nW
z@n&~|k~$+JqQQ2(3-rvFv04=S?5*qu{nH{NqS&z>5NmN#sx;g4(F<zUVopS(ol75R
z&X*xonruG~fxZTHhKQKGQSQHRQ;SnxKk{I~a6jmwPe?|K-E9)&XfZDtG5aq(3|iLW
zw1}uZ>jR*V<vK&EbQE3;9|5I&86w*3Y*V0hospF)al6u^psW@PB0B9#)1ceF46lm4
zQG=kEFGEDa9m`hE@DOM>pu`!e(rafs40_`el99B3+!4@KEzXMQw(A%L<$OY_z;<j5
z6x8Be$zH}mLp~uH2|N7>(2p`D&X@Fb67<t2q)OWUPp3e?v>?ftv+J0?ek=7K`1X}O
DskB#(

literal 415
zcmV;Q0bu@koQ==RP7`qy$MGper3D2Q5$_a5i^wp&I)WF}S}*0)<ZSGQOlldXO}O}*
zqB|2~Vou}*cn4SRUHck7fLmXHo@gTd=bymY{ZI1A`F}qRe1y|TI*yYodq}KeAWPqd
zcT>*4Nwm7nD0Jh_R@8Olu(=UzzFUveLD1?wcETXw-md<B^KBRhAHulX+1~QfNFGI1
zJK@IK0W?@EeQgZ(ZgRa+$1%Zi#)-ygZ&7r;|Fi62s5T`?G17uz+Bx{!cC!7K_y!qK
za*}aMFiKS`i3~EP<TT@q;4DpANv@CNFs|erV?uDAey43DZ;(kP7Z?`>m*|I;6b*7&
z$rZ*`!8Q6~CB8wXlw=swg6s6gN+N^YP%^`~DY!)$E9uYABdcVVaa%A)e^Q6%=W$2L
zJi`?%&`&EV8pKnQW8?(|+OrbhAVno5Mp<x|+Ex-7#8+~Uu_#!gMJwsgFW|nC2aJb;
zM>KMT`~sGhJZ3x*Jf&YlhvyeiQSyvY6+EZ!R^l7vg_4(ySArUSwvxyoD@uq_7rYL;
J?ml}Y;s$=z$58+P

diff --git a/176.sobj b/176.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..8e96eed3bc99a8ab8f0a93b085a5918bad16ad55
GIT binary patch
literal 714
zcmV;*0yX`3oMqHIXjDNI2H>0B#O!X~$>wDq=CMis&122`X>@&MqwzpuA%d~6FpW)y
zj3ALfKm;2}VWWao6v09(L2LxYMik35HnFiVm7q2j&efB1&t<2&#m9eU&YU}&kqzTr
zjC!6oG%;=pE}IBIbEUcLqW5p*vX%QEE5*zB`F6{iDCn6Mo`{0)w_9JGx26!3)FLUO
zA~CzVy<<%g=!O<C5wY!^#H_LA0BE;Fi3SnnEB>;k7<65WHW4K*V)d~#G0;;jnngt2
zMwj-iiGyae=n&!YJ`$j~7OA|QmVkB=N_2~eb3aN!SuOg5o<2{m@6KCO2700ef{dI`
ztSJYTYmv$8X$5Fai{4<T?%tNu)>OK#$CVfsQM$hC>R3|+`l7{P(DkHGtf_YMp~XmE
z*K6E-XfY(BY}Id>HAy!gT8su6BmT0c7W6fy#F&WcEjNbmtf>PnXfYY|gXgp!^g@gA
zyq-3I8nu`TPRlda2-?tMLPX_~f4SBi1br)3VmdgjYdU^e(*(Mu#SsxT+_7fROD$$Z
zBtN?K$(k0>q877x{b&WXYH?IV)dRO4T5|}rcR-0_d1q+@UC`pVh+4k6cF=1rvO(8*
zk~=`DP{yX5g=ef2bSIP{qK><s0{tjb;)GOb;`!(T-PPixi2v_|HQk^$p$w_g$hY4E
zx)jO~QO|#rdkfQAoRTUne79-P??NpkquC$AWovptSG1Uu4De3-K<~9UEuzD3*iCEt
zL77m7RB7RR835f2Wr%3!(`G<_qDthXN+-XChe7wXm>1E*cRL9B5XuOu@JlxYS_x%{
z7~qZ#gGRMDBUSqNZbv|okdTZ)e#b^Zk0MH(6_Msy9|L_338|9eKWZFwO^XE)UEI?N
w&{RlBl{S9)CqX@0oRf@U{wt?IT_F)<@a<27I<+9l*ncf&uC8VN0-YR^$ZX<VcmMzZ

literal 0
HcmV?d00001

diff --git a/96.sobj b/96.sobj
index ccd378d8b20cffaf97cd6f514eddff5bfb1f661d..aa776fb427106c3aa424f775f03bf23309de3195 100644
GIT binary patch
literal 716
zcmV;-0yF)1oMqKLOjA)52k=Mvv?3rBMZP}@{DD$|LZQV<L8YLc2qZ>KFix;(IPoSX
zDhY{U(SgJbHlu?RIvExnG;X?SOmre{;-ZPhP2Ypt!+GhQn)H|ddH3A&?pqD4urnWU
z948UyylWf)sJu9no^ke8CS8&JF`t*&3f<W;oDcd{q(n%B^W<|d#fA$&b2`HjQM==Y
z+%;SX`lK^zM3lKTGFyg=K)pJnL`1$@WcjJ#V$chnQ7@vviwGGm0c~p0ETVh?zu&AI
zJ_MTABAk;E1g&V%da#$&vb$fyhe1g#Iz$B4-7;?tmx8_(DiIM8wpEUR8gvFkRN9O(
z&^w(G713%%Impo&-6C3c*BZCy3|D}j>5RSuVbAs`=%y9}A{w`6ch{N>SArgD(Jx}Z
zyN0VkGg`z%)W3Jv2g4yyOp8Ggb?$@C{xDn(D$`;pr>Dn2uM3nI5z!X&mf_=|zgoma
zbS!zxa1H3O7KxmWodA8+Vpv4`UPBDmg6?aP6wzd7tPV7-#VHXzcDMDQB`rpCy50ba
zXps`pwc)N!!;Nmov^XuIGw2Pf;U>_}d?m(m_R<X6&|+Lf)V`H1ppROlMZ|2^TS51H
z8LL?l@!GLqxDE8ummy+*9u0><*R`0CDha#Wc2HQ0Ga?4<8`S|S_6eynU?->(H14Y+
zB5voyy$inwlsGF@#_ZX4f!_OsWQ^Lg?FJbwCM9FSK1UDexfbU{B<&3o0bTKBNR><W
zIeI~ld>JAp?OvkpEu}?9s*qPCW%wlMU!D?EA}-tc=yPu=Uxrk<YR{z~^u?DUBK!3i
z0KL*;TB?-V`G~o<lut;;qWeGo7#;-O(Biy^sC{3CKo5LEs-*2VDh`^`;(~~fouFY*
yw@*lwp#6%CfU32)C>giC%}yCkfGT`KGO}NfB&bRYl8jk<2aPV?iv9<le3)hyhf+NN

literal 939
zcmV;c162HYoQ>93aMV>4$MH>pNYn%oyHQlsh_LSd^WW@$V+)Ezh$rH)uohfH*!&Yr
z0>9k=ibSG-M}ieASiy!3uwex&R_tH_8)BL9O`m+zoRJyH<<9KAZ}-l8=HBmly1m6c
zh@^`nkw~f*MN?2*O<dMDB(ifAwd9+_Y&6&273QP4Y;#AZb7pI<Jd<hZ-*jg)8SX!8
zn$<Zqo6F43=JM?`x?<%haZ%&jvmMiRL8Xm}#p%-iJGp6G69x$eGs@DH{Re(D_W!Dn
zVUNZUf+37@!Jaf`*Vnd{wEaf{gY2bbZ$^cnk}9nvG{{gT`!I$H_NBiD+emx>iDS5u
z{TTZT4xlYo;u+*XB?mDM792urt;9FTp-QS4hY1d+<yI0HWQ39<7)J_@q8=*=4Kh;6
z(TrmR$5PrM-$S*M;~1j^$5Wj{zK79D#xSCS6R64|-$P7EoZ$&-DB_Us!B>)C)C!Wc
zV^HCI4}p>tqfT%lZM2es`87C6$;pgU1gFv}EAb3cuVgIaG{Nb##7caFj8k$3W4xe&
zx~wEH$eBteFeVBbX_7;J4bD<Rj3&X^RO68EW0I0{7%VuKDjf2CoTub`#sz}O^ml3D
zd>?5g7cwpqTuj@nBrwP&N~SO_6=Z0Gm4pVlOi43is-T5dSjoWr1g0s;GFk;8EwB>L
zAZ<$88Pf%qQ>#OM0v$>^8C`-IG{GT1ftgCc$O-Z^+95xIZY8rAvjuag!XdvFS17rX
zF;{RE{aI2tzZUb9^f0a#%%{y(;v1w_$u*2?1q*1Ml>`P^sALi2I)TtKD+vv9y^_U@
zKEV>2XC(vklej_2jf|TFH&ezTKZ#qE+{#!gxQ)g-<R@{vk~<i83httj4*5yktz;Qv
zx!@iubI4EPUM2T2?iV~je-sza5AdLp6^xaFhiH?Pcm{b`$s>$M1&`4hEAb7oO3CAl
zCj?K@QY#4z@|2RN8LI_rsM|_HgRE8Z4C7hBb2Ql@KZWO&yuer|c#-NH@>6(8$;*sa
z1g}z+Lw*XcDOu0hAb6erDJq<w!W&B7WV|JKo3>g>Xpnc5Y-GGEc#qcaMuzT|ACKXE
zH6JiO6nsQ0t;RFWCN&>3J`sFMeOBX}<})>)GrkafNz<(+FwJH)TNqynzNU#*6Po55
zHQzF}3bxTGml?$Iotp0%KL~!LVJ<U><0m!S89xhlR6BmMeo^x)<F|(Tbm`pf4XcND
N<M(Vn`Y$K>oU@ZEwf+DA


From 04bd8cae5f59e3cc38220ac3c2a5de2040646322 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 11:04:37 +0100
Subject: [PATCH 26/42] update

---
 176.sobj | Bin 714 -> 697 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/176.sobj b/176.sobj
index 8e96eed3bc99a8ab8f0a93b085a5918bad16ad55..cfc0d59717c40672795f51eb20df0c2299662bab 100644
GIT binary patch
literal 697
zcmV;q0!ICKoMqHGXjD-Y2H=;OEHjfmnQUe;%Ov?H%b0yJ#*AAg8V@8EA{Yw`)7a#a
zD@Y^|5Wz-L*r;F?MX=CH5F0_U5ydi%O>8VoC8&*s_v!Jx^O#$`;^Ulq|9jruifkJ1
zLe%rT;mHY8aLGgfnlH;`m%P6#m#zB$v0Ac%A8)p;iGrSL;fW~tcB}2>Ico|*NiC8h
zDigD7JG<5tfv#&26A|0lP0Si=ia~p&N;Hb7SoN1RC7^3sw2LTpCDtBU69YZbqD4g1
zZFG6xnmA}ii%t<9?;`<<Ymv&^X(?zop+t{}IOkCY%4#tXWcn<*vA1ANIq0z#2x{bf
zVoe38LW@jZrj?*|E&76;x_etmTT|syk1H`EqHJT&^|7WJ^jV9cAoZkAtf_JHp~Yxk
z>a}h@v=|mqzUD_}P14PW7Gpt;QGZ!e2l^6IVq8Scwj0B@*3^R*wU`R>;5lsoJ=bC)
zFVjX)lNQs#X?ez)K$}`jil|!lFV~s_psyuL91c$FLdQ>Qnn5?UI3l8!6Kesz&|*eJ
z@`GC+t!V`<X)&9ZM;oY3i=!f{@4NNDnuDPIVkPGC&e9G#uf;JDb$oLjpjTRCgVcGF
zJ3*;XjV(C~&sZ1ecBqDkdQLqB`d*~Oap}^`^U)2uqs0jk|K15}dO)v3HKa=u-+nLX
zVyK3Q2L7YmTbS13q;zTJyG?_B6>1?hTKpkgv8E4nS&Mn80p4jp=$#g)M0EOr-LPf=
zlnK?4F0FhogP^;i8X`LQv>DLvs1iBp(#3D#A<#W77DV*&-421?hiU{}_@x^Lt%hod
z805r8Kx0~*mM;B#x1*p)NJxz#e#gc@4<kyP5s~Iu9|wI33F(sJKWYMWRf|Ot-JIzp
fXgVaMOFO^(Q=ncg&Pt6D{wt@itY`iJd*O#h1GP#F

literal 714
zcmV;*0yX`3oMqHIXjDNI2H>0B#O!X~$>wDq=CMis&122`X>@&MqwzpuA%d~6FpW)y
zj3ALfKm;2}VWWao6v09(L2LxYMik35HnFiVm7q2j&efB1&t<2&#m9eU&YU}&kqzTr
zjC!6oG%;=pE}IBIbEUcLqW5p*vX%QEE5*zB`F6{iDCn6Mo`{0)w_9JGx26!3)FLUO
zA~CzVy<<%g=!O<C5wY!^#H_LA0BE;Fi3SnnEB>;k7<65WHW4K*V)d~#G0;;jnngt2
zMwj-iiGyae=n&!YJ`$j~7OA|QmVkB=N_2~eb3aN!SuOg5o<2{m@6KCO2700ef{dI`
ztSJYTYmv$8X$5Fai{4<T?%tNu)>OK#$CVfsQM$hC>R3|+`l7{P(DkHGtf_YMp~XmE
z*K6E-XfY(BY}Id>HAy!gT8su6BmT0c7W6fy#F&WcEjNbmtf>PnXfYY|gXgp!^g@gA
zyq-3I8nu`TPRlda2-?tMLPX_~f4SBi1br)3VmdgjYdU^e(*(Mu#SsxT+_7fROD$$Z
zBtN?K$(k0>q877x{b&WXYH?IV)dRO4T5|}rcR-0_d1q+@UC`pVh+4k6cF=1rvO(8*
zk~=`DP{yX5g=ef2bSIP{qK><s0{tjb;)GOb;`!(T-PPixi2v_|HQk^$p$w_g$hY4E
zx)jO~QO|#rdkfQAoRTUne79-P??NpkquC$AWovptSG1Uu4De3-K<~9UEuzD3*iCEt
zL77m7RB7RR835f2Wr%3!(`G<_qDthXN+-XChe7wXm>1E*cRL9B5XuOu@JlxYS_x%{
z7~qZ#gGRMDBUSqNZbv|okdTZ)e#b^Zk0MH(6_Msy9|L_338|9eKWZFwO^XE)UEI?N
w&{RlBl{S9)CqX@0oRf@U{wt?IT_F)<@a<27I<+9l*ncf&uC8VN0-YR^$ZX<VcmMzZ


From ce55771efa31268ceb6c11054afc9124371c2171 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 11:07:59 +0100
Subject: [PATCH 27/42] Update README.rst

---
 README.rst | 28 +++++++++-------------------
 1 file changed, 9 insertions(+), 19 deletions(-)

diff --git a/README.rst b/README.rst
index b05d44c55..a20735c63 100644
--- a/README.rst
+++ b/README.rst
@@ -29,25 +29,15 @@ This is an example of how to generate the parameter curves, and save them to fil
 We can load results files, and find the interpolants.
 
 ::
-
-    sage: load("scripts.py")
-    sage: interps = []
-    sage: results = load("v0.sobj")
-    sage: for result in results:
-    sage:     interps.append(interpolate_result(result, log_q = 64))
-    sage: interps
-    [(-0.040476778656126484, 1.143346508563902),
-     (-0.03417207792207793, 1.4805194805194737),
-     (-0.029681716023268107, 1.752723426758335),
-     (-0.0263748887657055, 2.0121439233304894),
-     (-0.023730136557783763, 2.1537066948924095),
-     (-0.021604493958972515, 2.2696862472846204),
-     (-0.019897520946588438, 2.4423829771964796),
-     (-0.018504919354426233, 2.6634073426215745),
-     (-0.017254242957361113, 2.7353702447139026),
-     (-0.016178309410530816, 2.8493969373734758),
-     (-0.01541034709414119, 3.1982749283836283),
-     (-0.014327640360322604, 2.899270827311096)]
+[(-0.04042633119364589, 1.6609788641436722, 80, 'PASS', 450),
+ (-0.03414780360867051, 2.017310258660345, 96, 'PASS', 450),
+ (-0.029670137081135885, 2.162463714083856, 112, 'PASS', 450),
+ (-0.02640502876522622, 2.4826422691043177, 128, 'PASS', 450),
+ (-0.023821437305989134, 2.7177789440636673, 144, 'PASS', 450),
+ (-0.02174358218716036, 2.938810548493322, 160, 'PASS', 498),
+ (-0.019904056582117684, 2.8161252801542247, 176, 'PASS', 551),
+ (-0.018610403247590085, 3.2996236848399008, 192, 'PASS', 606),
+ (-0.014606812351714953, 3.8493629234693003, 256, 'PASS', 826)]
 ::
 
 Finding the value of n_{alpha} is done manually. We can also verify the interpolants which are generated at the same time:

From 803d64064c453ffe3f4b955e1b1be614515bfca8 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 11:08:19 +0100
Subject: [PATCH 28/42] Update README.rst

---
 README.rst | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README.rst b/README.rst
index a20735c63..9e51f56f9 100644
--- a/README.rst
+++ b/README.rst
@@ -29,6 +29,7 @@ This is an example of how to generate the parameter curves, and save them to fil
 We can load results files, and find the interpolants.
 
 ::
+
 [(-0.04042633119364589, 1.6609788641436722, 80, 'PASS', 450),
  (-0.03414780360867051, 2.017310258660345, 96, 'PASS', 450),
  (-0.029670137081135885, 2.162463714083856, 112, 'PASS', 450),
@@ -38,6 +39,7 @@ We can load results files, and find the interpolants.
  (-0.019904056582117684, 2.8161252801542247, 176, 'PASS', 551),
  (-0.018610403247590085, 3.2996236848399008, 192, 'PASS', 606),
  (-0.014606812351714953, 3.8493629234693003, 256, 'PASS', 826)]
+ 
 ::
 
 Finding the value of n_{alpha} is done manually. We can also verify the interpolants which are generated at the same time:

From 33a64b63b2aadffe474a5317226f01fb7a146cbe Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 11:09:05 +0100
Subject: [PATCH 29/42] Update README.rst

---
 README.rst | 19 +++++++++----------
 1 file changed, 9 insertions(+), 10 deletions(-)

diff --git a/README.rst b/README.rst
index 9e51f56f9..b194a4561 100644
--- a/README.rst
+++ b/README.rst
@@ -30,16 +30,15 @@ We can load results files, and find the interpolants.
 
 ::
 
-[(-0.04042633119364589, 1.6609788641436722, 80, 'PASS', 450),
- (-0.03414780360867051, 2.017310258660345, 96, 'PASS', 450),
- (-0.029670137081135885, 2.162463714083856, 112, 'PASS', 450),
- (-0.02640502876522622, 2.4826422691043177, 128, 'PASS', 450),
- (-0.023821437305989134, 2.7177789440636673, 144, 'PASS', 450),
- (-0.02174358218716036, 2.938810548493322, 160, 'PASS', 498),
- (-0.019904056582117684, 2.8161252801542247, 176, 'PASS', 551),
- (-0.018610403247590085, 3.2996236848399008, 192, 'PASS', 606),
- (-0.014606812351714953, 3.8493629234693003, 256, 'PASS', 826)]
- 
+   [(-0.04042633119364589, 1.6609788641436722, 80, 'PASS', 450),
+    (-0.03414780360867051, 2.017310258660345, 96, 'PASS', 450),
+    (-0.029670137081135885, 2.162463714083856, 112, 'PASS', 450),
+    (-0.02640502876522622, 2.4826422691043177, 128, 'PASS', 450),
+    (-0.023821437305989134, 2.7177789440636673, 144, 'PASS', 450),
+    (-0.02174358218716036, 2.938810548493322, 160, 'PASS', 498),
+    (-0.019904056582117684, 2.8161252801542247, 176, 'PASS', 551),
+    (-0.018610403247590085, 3.2996236848399008, 192, 'PASS', 606),
+    (-0.014606812351714953, 3.8493629234693003, 256, 'PASS', 826)]
 ::
 
 Finding the value of n_{alpha} is done manually. We can also verify the interpolants which are generated at the same time:

From 5d26dc23cee011ace1c61e1726b5b87939b6a07f Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 11:28:16 +0100
Subject: [PATCH 30/42] mv data

---
 112.sobj => data/v1/112.sobj | Bin
 128.sobj => data/v1/128.sobj | Bin
 144.sobj => data/v1/144.sobj | Bin
 160.sobj => data/v1/160.sobj | Bin
 176.sobj => data/v1/176.sobj | Bin
 192.sobj => data/v1/192.sobj | Bin
 256.sobj => data/v1/256.sobj | Bin
 80.sobj => data/v1/80.sobj   | Bin
 96.sobj => data/v1/96.sobj   | Bin
 9 files changed, 0 insertions(+), 0 deletions(-)
 rename 112.sobj => data/v1/112.sobj (100%)
 rename 128.sobj => data/v1/128.sobj (100%)
 rename 144.sobj => data/v1/144.sobj (100%)
 rename 160.sobj => data/v1/160.sobj (100%)
 rename 176.sobj => data/v1/176.sobj (100%)
 rename 192.sobj => data/v1/192.sobj (100%)
 rename 256.sobj => data/v1/256.sobj (100%)
 rename 80.sobj => data/v1/80.sobj (100%)
 rename 96.sobj => data/v1/96.sobj (100%)

diff --git a/112.sobj b/data/v1/112.sobj
similarity index 100%
rename from 112.sobj
rename to data/v1/112.sobj
diff --git a/128.sobj b/data/v1/128.sobj
similarity index 100%
rename from 128.sobj
rename to data/v1/128.sobj
diff --git a/144.sobj b/data/v1/144.sobj
similarity index 100%
rename from 144.sobj
rename to data/v1/144.sobj
diff --git a/160.sobj b/data/v1/160.sobj
similarity index 100%
rename from 160.sobj
rename to data/v1/160.sobj
diff --git a/176.sobj b/data/v1/176.sobj
similarity index 100%
rename from 176.sobj
rename to data/v1/176.sobj
diff --git a/192.sobj b/data/v1/192.sobj
similarity index 100%
rename from 192.sobj
rename to data/v1/192.sobj
diff --git a/256.sobj b/data/v1/256.sobj
similarity index 100%
rename from 256.sobj
rename to data/v1/256.sobj
diff --git a/80.sobj b/data/v1/80.sobj
similarity index 100%
rename from 80.sobj
rename to data/v1/80.sobj
diff --git a/96.sobj b/data/v1/96.sobj
similarity index 100%
rename from 96.sobj
rename to data/v1/96.sobj

From fb65d080d2375b32a40ddf4852e9203f8b4bb852 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 11:32:39 +0100
Subject: [PATCH 31/42] add verification stuff

---
 new_scripts.py | 281 +++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 281 insertions(+)

diff --git a/new_scripts.py b/new_scripts.py
index 38dd212ce..20e7fc265 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -186,5 +186,286 @@ c = int(sys.argv[3])
 # run the code
 generate_zama_curves64(sd_range= (b,c), target_security_levels=[a], name="{}".format(a))
 
+from estimator_new import *
+from sage.all import oo, save, load
+from math import log2
+import multiprocessing
 
 
+def old_models(security_level, sd, logq=32):
+    """
+    Use the old model as a starting point for the data gathering step
+    :param security_level: the security level under consideration
+    :param sd            : the standard deviation of the LWE error distribution Xe
+    :param logq          : the (base 2 log) value of the LWE modulus q
+    """
+
+    def evaluate_model(a, b, stddev=sd):
+        return (stddev - b)/a
+
+    models = dict()
+
+    models["80"] = (-0.04049295502947623, 1.1288318226557081 + logq)
+    models["96"] = (-0.03416314056943681, 1.4704806061716345 + logq)
+    models["112"] = (-0.02970984362676178, 1.7848907787798667 + logq)
+    models["128"] = (-0.026361288425133814, 2.0014671315214696 + logq)
+    models["144"] = (-0.023744534465622812, 2.1710601038230712 + logq)
+    models["160"] = (-0.021667220727651954, 2.3565507936475476 + logq)
+    models["176"] = (-0.019947662046189942, 2.5109588704235803 + logq)
+    models["192"] = (-0.018552804646747204, 2.7168913723130816 + logq)
+    models["208"] = (-0.017291091126923574, 2.7956961446214326 + logq)
+    models["224"] = (-0.016257546811508806, 2.9582401000615226 + logq)
+    models["240"] = (-0.015329741032015766, 3.0744579055889782 + logq)
+    models["256"] = (-0.014530554319171845, 3.2094375376751745 + logq)
+
+    (a, b) = models["{}".format(security_level)]
+    n_est = evaluate_model(a, b, sd)
+
+    return round(n_est)
+
+
+def estimate(params, red_cost_model=RC.BDGL16, skip=("arora-gb", "bkw")):
+    """
+    Retrieve an estimate using the Lattice Estimator, for a given set of input parameters
+    :param params: the input LWE parameters
+    :param red_cost_model: the lattice reduction cost model
+    :param skip: attacks to skip
+    """
+
+    est = LWE.estimate(params, red_cost_model=red_cost_model, deny_list=skip)
+
+    return est
+
+
+def get_security_level(est, dp=2):
+    """
+    Get the security level lambda from a Lattice Estimator output
+    :param est: the Lattice Estimator output
+    :param dp: the number of decimal places to consider
+    """
+    attack_costs = []
+    # note: key does not need to be specified est vs est.keys()
+    for key in est:
+        attack_costs.append(est[key]["rop"])
+    # get the security level correct to 'dp' decimal places
+    security_level = round(log2(min(attack_costs)), dp)
+
+    return security_level
+
+
+def inequality(x, y):
+    """ A utility function which compresses the conditions x < y and x > y into a single condition via a multiplier
+    :param x: the LHS of the inequality
+    :param y: the RHS of the inequality
+    """
+    if x <= y:
+        return 1
+
+    if x > y:
+        return -1
+
+
+def automated_param_select_n(params, target_security=128):
+    """ A function used to generate the smallest value of n which allows for
+    target_security bits of security, for the input values of (params.Xe.stddev,params.q)
+    :param params: the standard deviation of the error
+    :param target_security: the target number of bits of security, 128 is default
+
+    EXAMPLE:
+    sage: X = automated_param_select_n(Kyber512, target_security = 128)
+    sage: X
+    456
+    """
+
+    # get an estimate based on the prev. model
+    print("n = {}".format(params.n))
+    n_start = old_models(target_security, log2(params.Xe.stddev), log2(params.q))
+    # n_start = max(n_start, 450)
+    # TODO: think about throwing an error if the required n < 450
+
+    params = params.updated(n=n_start)
+    costs2 = estimate(params)
+    security_level = get_security_level(costs2, 2)
+    z = inequality(security_level, target_security)
+
+    # we keep n > 2 * target_security as a rough baseline for mitm security (on binary key guessing)
+    while z * security_level < z * target_security:
+        # TODO: fill in this case! For n > 1024 we only need to consider every 256 (optimization)
+        params = params.updated(n = params.n + z * 8)
+        costs = estimate(params)
+        security_level = get_security_level(costs, 2)
+
+        if -1 * params.Xe.stddev > 0:
+            print("target security level is unattainable")
+            break
+
+    # final estimate (we went too far in the above loop)
+    if security_level < target_security:
+        # we make n larger
+        print("we make n larger")
+        params = params.updated(n=params.n + 8)
+        costs = estimate(params)
+        security_level = get_security_level(costs, 2)
+
+    print("the finalised parameters are n = {}, log2(sd) = {}, log2(q) = {}, with a security level of {}-bits".format(params.n,
+                                                                                                                      log2(params.Xe.stddev),
+                                                                                                                      log2(params.q),
+                                                                                                                      security_level))
+
+    if security_level < target_security:
+        params.updated(n=None)
+
+    return params, security_level
+
+
+def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128], name="default_name"):
+    """
+    :param params_in: a initial set of LWE parameters
+    :param sd_range: a tuple (sd_min, sd_max) giving the values of sd for which to generate parameters
+    :param target_security_levels: a list of the target number of bits of security, 128 is default
+    :param name: a name to save the file
+    """
+
+    (sd_min, sd_max) = sd_range
+    for lam in target_security_levels:
+        for sd in range(sd_min, sd_max + 1):
+            print("run for {}".format(lam, sd))
+            Xe_new = nd.NoiseDistribution.DiscreteGaussian(2**sd)
+            (params_out, sec) = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
+
+            try:
+                results = load("{}.sobj".format(name))
+            except:
+                results = dict()
+                results["{}".format(lam)] = []
+
+            results["{}".format(lam)].append((params_out.n, log2(params_out.q), log2(params_out.Xe.stddev), sec))
+            save(results, "{}.sobj".format(name))
+
+    return results
+
+
+def generate_zama_curves64(sd_range=[2, 58], target_security_levels=[128], name="default_name"):
+    """
+    The top level function which we use to run the experiment
+
+    :param sd_range: a tuple (sd_min, sd_max) giving the values of sd for which to generate parameters
+    :param target_security_levels: a list of the target number of bits of security, 128 is default
+    :param name: a name to save the file
+    """
+    if __name__ == '__main__':
+
+        D = ND.DiscreteGaussian
+        vals = range(sd_range[0], sd_range[1])
+        pool = multiprocessing.Pool(2)
+        init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2 ** 55), m=oo, tag='params')
+        inputs = [(init_params, (val, val), target_security_levels, name) for val in vals]
+        res = pool.starmap(generate_parameter_matrix, inputs)
+
+    return "done"
+
+
+# The script runs the following commands
+import sys
+# grab values of the command-line input arguments
+a = int(sys.argv[1])
+b = int(sys.argv[2])
+c = int(sys.argv[3])
+# run the code
+generate_zama_curves64(sd_range= (b,c), target_security_levels=[a], name="{}".format(a))
+
+import numpy as np
+from sage.all import save, load
+
+def sort_data(security_level):
+    from operator import itemgetter
+
+    # step 1. load the data
+    X = load("{}.sobj".format(security_level))
+
+    # step 2. sort by SD
+    x = sorted(X["{}".format(security_level)], key = itemgetter(2))
+
+    # step3. replace the sorted value
+    X["{}".format(security_level)] = x
+
+    return X
+
+def generate_curve(security_level):
+
+    # step 1. get the data
+    X = sort_data(security_level)
+
+    # step 2. group the n and sigma data into lists
+    N = []
+    SD = []
+    for x in X["{}".format(security_level)]:
+        N.append(x[0])
+        SD.append(x[2] + 0.5)
+    
+    # step 3. perform interpolation and return coefficients
+    (a,b) = np.polyfit(N, SD, 1)
+
+    return a, b
+    
+
+def verify_curve(security_level, a = None, b = None):
+
+    # step 1. get the table and max values of n, sd
+    X = sort_data(security_level)
+    n_max = X["{}".format(security_level)][0][0]
+    sd_max = X["{}".format(security_level)][-1][2]
+
+    # step 2. a function to get model values
+    def f_model(a, b, n):
+        return ceil(a * n + b)
+
+    # step 3. a function to get table values
+    def f_table(table, n):
+        for i in range(len(table)):
+            n_val = table[i][0]
+            if n < n_val:
+                pass
+            else:
+                j = i 
+                break
+        
+        # now j is the correct index, we return the corresponding sd
+        return table[j][2]
+
+    # step 3. for each n, check whether we satisfy the table
+    n_min = max(2 * security_level, 450, X["{}".format(security_level)][-1][0])
+    print(n_min)
+    print(n_max)
+
+    for n in range(n_max, n_min, - 1):
+        model_sd = f_model(a, b, n)
+        table_sd = f_table(X["{}".format(security_level)], n)
+        print(n , table_sd, model_sd, model_sd >= table_sd)
+
+        if table_sd > model_sd:
+            print("MODEL FAILS at n = {}".format(n))
+            return "FAIL"
+
+    return "PASS", n_min
+
+
+def generate_and_verify(security_levels, log_q, name = "verified_curves"):
+
+    data = []
+
+    for sec in security_levels:
+        print("WE GO FOR {}".format(sec))
+        # generate the model for security level sec
+        (a_sec, b_sec) = generate_curve(sec)
+        # verify the model for security level sec
+        res = verify_curve(sec, a_sec, b_sec)
+        # append the information into a list
+        data.append((a_sec, b_sec - log_q, sec, res[0], res[1]))
+        save(data, "{}.sobj".format(name))
+    
+    return data
+
+# To verify the curves we use
+generate_and_verify([80, 96, 112, 128, 144, 160, 176, 192, 256], log_q = 64)
+

From 3ba8b788a8d6c71922d85306a755930ff28a77f9 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 11:36:20 +0100
Subject: [PATCH 32/42] start to split code

---
 verify_curves.py | 95 ++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 95 insertions(+)
 create mode 100644 verify_curves.py

diff --git a/verify_curves.py b/verify_curves.py
new file mode 100644
index 000000000..7773591a4
--- /dev/null
+++ b/verify_curves.py
@@ -0,0 +1,95 @@
+import numpy as np
+from sage.all import save, load
+
+def sort_data(security_level):
+    from operator import itemgetter
+
+    # step 1. load the data
+    X = load("{}.sobj".format(security_level))
+
+    # step 2. sort by SD
+    x = sorted(X["{}".format(security_level)], key = itemgetter(2))
+
+    # step3. replace the sorted value
+    X["{}".format(security_level)] = x
+
+    return X
+
+def generate_curve(security_level):
+
+    # step 1. get the data
+    X = sort_data(security_level)
+
+    # step 2. group the n and sigma data into lists
+    N = []
+    SD = []
+    for x in X["{}".format(security_level)]:
+        N.append(x[0])
+        SD.append(x[2] + 0.5)
+    
+    # step 3. perform interpolation and return coefficients
+    (a,b) = np.polyfit(N, SD, 1)
+
+    return a, b
+    
+
+def verify_curve(security_level, a = None, b = None):
+
+    # step 1. get the table and max values of n, sd
+    X = sort_data(security_level)
+    n_max = X["{}".format(security_level)][0][0]
+    sd_max = X["{}".format(security_level)][-1][2]
+
+    # step 2. a function to get model values
+    def f_model(a, b, n):
+        return ceil(a * n + b)
+
+    # step 3. a function to get table values
+    def f_table(table, n):
+        for i in range(len(table)):
+            n_val = table[i][0]
+            if n < n_val:
+                pass
+            else:
+                j = i 
+                break
+        
+        # now j is the correct index, we return the corresponding sd
+        return table[j][2]
+
+    # step 3. for each n, check whether we satisfy the table
+    n_min = max(2 * security_level, 450, X["{}".format(security_level)][-1][0])
+    print(n_min)
+    print(n_max)
+
+    for n in range(n_max, n_min, - 1):
+        model_sd = f_model(a, b, n)
+        table_sd = f_table(X["{}".format(security_level)], n)
+        print(n , table_sd, model_sd, model_sd >= table_sd)
+
+        if table_sd > model_sd:
+            print("MODEL FAILS at n = {}".format(n))
+            return "FAIL"
+
+    return "PASS", n_min
+
+
+def generate_and_verify(security_levels, log_q, name = "verified_curves"):
+
+    data = []
+
+    for sec in security_levels:
+        print("WE GO FOR {}".format(sec))
+        # generate the model for security level sec
+        (a_sec, b_sec) = generate_curve(sec)
+        # verify the model for security level sec
+        res = verify_curve(sec, a_sec, b_sec)
+        # append the information into a list
+        data.append((a_sec, b_sec - log_q, sec, res[0], res[1]))
+        save(data, "{}.sobj".format(name))
+    
+    return data
+
+# To verify the curves we use
+generate_and_verify([80, 96, 112, 128, 144, 160, 176, 192, 256], log_q = 64)
+

From 0da9a44dbd8e931a3fc4f3006ce1c5da1ae27ac4 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 11:53:24 +0100
Subject: [PATCH 33/42] copy data

---
 112.sobj | Bin 0 -> 708 bytes
 128.sobj | Bin 0 -> 703 bytes
 144.sobj | Bin 0 -> 710 bytes
 160.sobj | Bin 0 -> 721 bytes
 176.sobj | Bin 0 -> 697 bytes
 192.sobj | Bin 0 -> 699 bytes
 256.sobj | Bin 0 -> 726 bytes
 80.sobj  | Bin 0 -> 715 bytes
 96.sobj  | Bin 0 -> 716 bytes
 9 files changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 112.sobj
 create mode 100644 128.sobj
 create mode 100644 144.sobj
 create mode 100644 160.sobj
 create mode 100644 176.sobj
 create mode 100644 192.sobj
 create mode 100644 256.sobj
 create mode 100644 80.sobj
 create mode 100644 96.sobj

diff --git a/112.sobj b/112.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..a50b2f74cb6a1101814de0686621aa684bfb6383
GIT binary patch
literal 708
zcmV;#0z3V9oMqKJOp{R*2k^dVO96Qm<P9R!KM0jlo<+2XP*6{NBpQdhXmsX;o0yPj
z7-TllNf$L5CuMRlI;o3;kI6VV5nU7q7j!c5`|y5;^QCwChF|`t_uO-DS3}o0a6TLe
z1TvXn4qo68K!_LervlrnkgxGRiowmbj^}3#he69)1Vpq<FFpL6FdP9zwMdHi|6#Zc
zw5UZ~MCfJ_TW<_ULEmCZG>NEu=dAaJW1yE>w3SqegC1znC8E{Y%ITkm%R%R~=n>KI
z+W8^B4JSZXwdfX6=0t3+8Lj}0Xps_8pLLhvN>H5^5YcUSTLt<URboIy&&oz&J!yCs
z=&2Uzl8kE5cP;vN`r(|)G#jn~-Oyr4M1}1~Ehw+Wu!z`ta%E$|a2@EP78w!ccbs+C
za6PC~i>!#~6?Yj<g8r5%F(M*jciRB^qQ$5PZ$279*R_}s(QD6TH|T{HV<LhDcQb~Y
zKxeg>Ea^ux=)M-?B2soQEugFxIT7(KXN39;w}O5}lsG8Do1ivOt<IP#=~z4HgU*;P
z=|>0Xi57=;PJeqD?gZV|;;@J@Tcr!cTI5A!odH^UWOxrKrNxYhSi-&hhPy!vzKm5*
zc=NFr6!B$<@J_!6^fj!+5vdZkH>wwOPm5U*m2lf`I0bs;%aAJ7MVA=f=S+|<Lqx*9
zW6oPx)Z%E#Zu>wvpOB2O?N~qPQ%H$<$?*EIAJnWf=0w!kdpiJn=F5;OjrQaQL4UNE
z6H(=EW!i8WbW4kZRH?HQbO3Zxiv<zhYdHj3@?}Vsc3UL_8uVp|@NVTWs6vZHsnWIm
zVK@u=5!6C52JG36fF5gcOhno((rI`U^wuY&N=MQiGQ(q_OIjS4j2ZhnjDyyELNao8
qJ|>)hF)dDrn6+~{>D&gNkSas=Y;&M_El4uFH)!hea{3=EpN(6?#!q<w

literal 0
HcmV?d00001

diff --git a/128.sobj b/128.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..79a6242f3cf14f5d10a8ac6c3f8e5c527aac6717
GIT binary patch
literal 703
zcmV;w0zmzEoMqHKOjJP-2k>_v9LJ$}o(JLq2O^#W;>q!Ofas~{Au>j6v_PYU7FLXI
zg(0~_(Gp9c#ZoN|oe3r;CfaCWV?$vDi4{gW_sB3iFK???{PLgO*_~GjFOqjF;(1=7
zzeu6m6b8U&b>-4^Z+DeT-rmPuZ|z57f(%6fi&`WDA_{m%i@1o;)>3x;hM^k3lon|b
zH5<!w@W)UL@Ks!ijzC5&;I<acE+e}>yR~E}4){omPPfw?Tc+Dk9pEP|T1BMnHg-N5
zN&wDi(Iq0zr>zIfX^|6=WU&wMZLJc$B4Q7!%g}zne_DX6vio7E0q}(ud3W0RY8gWZ
z0KaR|Bce7jVU3|AV51iOBEp;Hcj+gF4g%iOqEAHhi(Ow0r2v1&lo)Us)glQ)hXBWQ
zMnOcx?sNXNp)}xUoiXU{)^1~A(@-PenifOu=D4R#fCVjzfqonYT-0LN^}}B6#<HPi
zz<Mo4-Dwx94KZ{C@TL|cft$+!{;E-8%$?Rg)7fo9Er6?9oDosSFS!-aXffe#pHJHc
z_(6;DK-aT?*R(hrIBh#1XmKuZmJY!8Q6<icNbvhO3K-TICD(PHxlX{BzKn{TcEzq$
zL&pGrYEcpqt!{MAP#54sEiSlz?0y(J4w%*AV&L|3fRnxqsS>MhwB67Nz`qflA)=n&
zsr?sz(_+%~gS*}h_{JwBBhG)A9y<+MT$YS9zp;~m&$YM|xVc_Cx4sOiviFxdW#`tH
zA)<lrHgD%PtVCI=BzdQ&?aXO0<#x)m-)HC6mmyV}xTgg>bG{4_8SYrWohU7?NR?*3
z+W|Y-J|P)x{Kf|D%!QPg7SYasx*<E+I%8U@WVmC)cA|8~RS_*bw<CZnKH;kHy%YhT
lYB3`j!`$^zz$KrMj4AH=7+^&UbUWpajo*Kq{|_K}lklAjQS<-+

literal 0
HcmV?d00001

diff --git a/144.sobj b/144.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..fb6e7438688424398cd2fd161b77ec10b9cdaed9
GIT binary patch
literal 710
zcmV;%0y+J7oMqHYNK|1I2k_DHF^<~!7;}6yny>zvnUC?UHEB6!9mrh^+Z0JefrmZ_
ziolJ_C?bel1Yv7eK~fP^1VN9jYZpOa6a)tCy4OC>cP{r^UARB~=X~eh?_18l!;$mR
zNF>si$#C8U&If2Jp39z#?5<q4V(;N%!DnxMF&qUw(jp=vFSnk&wPm;fl+q&UGO+XR
z-h$ym&^0Y$A_~3t_+z*T^q@qEW)ZRZ?UnR~;bPEFEm9&%z4!A!497rMv}h4g>^C}V
zxCHcCi$*6F{8kOeK|@-!i74_Sa_fdmL1kKWxQzJZ(%PosGSJ<a65Vbdenir6IcQ4@
zgsSWVUDBdQM0C?D^UQDp^g@d+H&bsM+bf1EK;Md$=oeA)*juZHD?y_=qu0%Jz+Z-|
zK(BPhfcq|MUL$O{8kEo(eIj<p5jUI!-PakJ(9~-{i&_l2dH7ptGQ1!3y-0}>H&gqM
z)q*B;#*mwb{l`+EH#%c9wA(sRmChJ;RqSb~2R+moW1-zPfU;UlxQW?6xe;_#i*ff|
z?1?%6s?lOHG><fByHJT^q1`rt-fD4NM48=7GiX|i6QMp1dS_pYtecoUb1k5{K*sW(
zsIa?j1zithh=_ZQ?z}hL2KrT?#FSJ?*b~(bTGe9O^<hs#2k1i}L#mY9c^m>Q1u{Z?
zcz5B97AK`jrJYA7s4*ZUBVlitF3^*x5;KxfZU3>upx;`Y60vX5UxvFuCXgXj>TDlJ
zKpz7cB9ivo_JHQJ$Vru2+v!ozPQDVeBI^B1>bBut(5HZqDk*#R`#?>BDxp65K~HtY
zX{nO7yBz@C3<$|+u-`TVYSm&+MB3h#gCGhBsnYCU4xNUFK!5X;I3uFPp4(y2*MJD^
sWd!tGi?fpP|H1Gm=w(1i#)v%)W1tN!NHW^}HYN>^U%t`v4?}dGeB{wu#sB~S

literal 0
HcmV?d00001

diff --git a/160.sobj b/160.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..005181dd19b8e9006bb9819bc629ef6f904c4d7c
GIT binary patch
literal 721
zcmV;?0xtb{oMqHKOjA)52k=KJPzp$af>f~O+dma+`Ti2Aq7*+)B09)`iGwCCCY*R(
zG$zCZ2bYdU9UNqGAPx>B#s%YGB8!Wg2`(mLjM1Qji?7Y?dFQ2Xddd6cf9^f!-nSaK
z$Ieo@<2Zw3X)e3M0f6RfvY87`;mKwq#g}V=o$N;RuHkaf3oRTG_2HS7=bsD*L9JRu
zMN~g_pC^VZKt_v@h~NkJ**07W`W9BARYZfkj5|Aqt3Yd7bcm>Qzh^fLhd{5jXcrM#
z++B-r8m<Oi)}l*9ox79pjNve-Q;VLGe$;?|S1ZvcqBg&bsNq`B4J`&l6dD#bTnBom
z1w_=it5{h#ybm;`Mat``?MFT6krqiWV>tg9j(}c<lo%3GWhd7Fs?`~35utoL*l;80
zzRno-y1wZ)HDS03^jV8RFQf2cI10L?#fXTCcs|5%GpJXK(UP9FfSy(<G2!(iKiZ3i
z_k;dwG3NEd1&iMew}NhJG3l*zZ!5RlZ#V{euf@1Gx!f}L-Womtn$==TMDdKZfxc8K
zaZE&=TLga$w}T=&W4dH62SKlN#*Ehwdtc(92U;BWc56>i0<@&XtS9XG=m2e3C~-nW
z@n&~|k~$+JqQQ2(3-rvFv04=S?5*qu{nH{NqS&z>5NmN#sx;g4(F<zUVopS(ol75R
z&X*xonruG~fxZTHhKQKGQSQHRQ;SnxKk{I~a6jmwPe?|K-E9)&XfZDtG5aq(3|iLW
zw1}uZ>jR*V<vK&EbQE3;9|5I&86w*3Y*V0hospF)al6u^psW@PB0B9#)1ceF46lm4
zQG=kEFGEDa9m`hE@DOM>pu`!e(rafs40_`el99B3+!4@KEzXMQw(A%L<$OY_z;<j5
z6x8Be$zH}mLp~uH2|N7>(2p`D&X@Fb67<t2q)OWUPp3e?v>?ftv+J0?ek=7K`1X}O
DskB#(

literal 0
HcmV?d00001

diff --git a/176.sobj b/176.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..cfc0d59717c40672795f51eb20df0c2299662bab
GIT binary patch
literal 697
zcmV;q0!ICKoMqHGXjD-Y2H=;OEHjfmnQUe;%Ov?H%b0yJ#*AAg8V@8EA{Yw`)7a#a
zD@Y^|5Wz-L*r;F?MX=CH5F0_U5ydi%O>8VoC8&*s_v!Jx^O#$`;^Ulq|9jruifkJ1
zLe%rT;mHY8aLGgfnlH;`m%P6#m#zB$v0Ac%A8)p;iGrSL;fW~tcB}2>Ico|*NiC8h
zDigD7JG<5tfv#&26A|0lP0Si=ia~p&N;Hb7SoN1RC7^3sw2LTpCDtBU69YZbqD4g1
zZFG6xnmA}ii%t<9?;`<<Ymv&^X(?zop+t{}IOkCY%4#tXWcn<*vA1ANIq0z#2x{bf
zVoe38LW@jZrj?*|E&76;x_etmTT|syk1H`EqHJT&^|7WJ^jV9cAoZkAtf_JHp~Yxk
z>a}h@v=|mqzUD_}P14PW7Gpt;QGZ!e2l^6IVq8Scwj0B@*3^R*wU`R>;5lsoJ=bC)
zFVjX)lNQs#X?ez)K$}`jil|!lFV~s_psyuL91c$FLdQ>Qnn5?UI3l8!6Kesz&|*eJ
z@`GC+t!V`<X)&9ZM;oY3i=!f{@4NNDnuDPIVkPGC&e9G#uf;JDb$oLjpjTRCgVcGF
zJ3*;XjV(C~&sZ1ecBqDkdQLqB`d*~Oap}^`^U)2uqs0jk|K15}dO)v3HKa=u-+nLX
zVyK3Q2L7YmTbS13q;zTJyG?_B6>1?hTKpkgv8E4nS&Mn80p4jp=$#g)M0EOr-LPf=
zlnK?4F0FhogP^;i8X`LQv>DLvs1iBp(#3D#A<#W77DV*&-421?hiU{}_@x^Lt%hod
z805r8Kx0~*mM;B#x1*p)NJxz#e#gc@4<kyP5s~Iu9|wI33F(sJKWYMWRf|Ot-JIzp
fXgVaMOFO^(Q=ncg&Pt6D{wt@itY`iJd*O#h1GP#F

literal 0
HcmV?d00001

diff --git a/192.sobj b/192.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..213644ddea97cd5351598d9f041b577a8b161df7
GIT binary patch
literal 699
zcmV;s0!00IoMqHKOjA)52k?G>L4iUMP@sHsz*>P83IzletfD6o6BA>KgNeqG8?Q?f
z5)$L&z=}E=T}+IL3!^ftiIamaj7C?PJ&&AsdS2d}I{flKx99!u+YRlQz@2a)5SU(=
zF~Kbp0>HI&b@gW8<f*Q<xj!DIw_pEAEn5=?{GdfZL}K&Lv;G5XB7ku%vLZsuPKY&8
zz`7O*5iJK4lCvfT_`O+)ZV@TYhy!kEF(4vdgMWv6)+7L5Y0)bp;~eysHA%p6Ervw2
zaz+a9cast$B4Q7n$C@U<k6Mh0h#v0M;MkgGz#T0>MC1!SU#&?4X0*tQ2-86~|60=m
z_$#GEK}1v0d8}y#tm=%(#uVqT)U0U(tmurH#+!3qt+6Hp_*RQ4-`3j!BU%(287Dui
z=>Xi;Vp>G<1wAjV$pU^$Dp6{@xsx&0bOP>cG3(p<DZt}|67!9H@W#3T@9T^?5pI*a
z0YB@E1>a740P{MdETXx7RDGYd<}~1Qolz0d&Ko-enA2iOL>u3iUg}s}iDeOP3;O_X
z>x@Ma89GJ%$eMm?q0YD<qJ=k>qZVqhBBGP`F#z~8ro=_xe;K5X>5NqoS?<^nHOP~(
z>xv$J`@__APlkvN-uehNNM~G<Dc!uWQEH(UmqqmPog1UBdopB7jypC^EsW|65xsmX
z>07w3#hOeR=95lP$2>wZ2Kfs!3HT|Z#1+XH<*lEkj_Hhb5y1a8PhHm;>oR4Gzn13!
zpL(W<aKAwX>R4Ebt1@MdGtL8|&ZvrTzd=)g?>reYCBnC18nDZgAtJ~<odJBJGp@;$
zAort49rFmuDD!P7QBOlkY>1e5N;qN7EOkt0Y{--)KIt6b8=Y}oM2SV2TIdnJDf57L
hwYVV}?!8?Ata*g59~HoRTA=S7iw_<b{sW?;nQ%}#MVtTt

literal 0
HcmV?d00001

diff --git a/256.sobj b/256.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..168914b0ae6e225d39fbbbeef0ee801bf272896b
GIT binary patch
literal 726
zcmV;{0xA7?oMqHaNK{c22k<w}r*B4Qtf|aww8`wRsi~vmS5spjj$a2VS`-*<`q+Bw
zLSO_ExC*LewrG=^Al&96h-?=HL4>Oo(k3W^7Pe~9dvfR8^Xje!=Ewisd+xb!vF5IF
zE`}Y)=^rer&}CHvP^_U+KI?3+N;y;gF&|ogIEUX_g+Y&{a9G5ba%<;)XcYmy$q12U
z5ncAy6Ro148JUr=RlJDrOIpQ1T4pq|aJ>I>Yg)xYU(-UgvIwtc7d9ugN`QK0Ml*}Z
z!e(VPt5q%Nsm#b*fi3U6TDhQ0QncAB8*XWSMXMwzD@D5%rXMNLM7<DQEMi_ux87=1
z2l^-lY)|L>jc8R53Q5spGfMN%He9XJp!-sE+6>nxT4g}5>V)XE_u{woyjBgMf)xEM
zYAb$Iwb}u?Ek&Od=5BX_ex`&dut@kV?a(R<dM?F)72ZioN~>L<t5OWINSWK;4Qi31
z$RcU(We?~<Qix#|A-`cItr|g}q!_Zo^kXk*N{SH{jyX#c=$<RYF&1^E%05s;W{lbl
zGlk8d*D_<witVM<eo#@05{q!bUs~lrziNdz&Z5SDP%T=ufL=&(!U{7%t)MRnA;wu$
z-^&5e4Vh79QGMBY&~hMSk?+>LsDq$<AcIBJy!|%N1(|V@t5m-*hd}S*LY!jZUiX()
z?VxlZgR8{+qukNzFlZ@|!J<0J-nVdEiqrOP&1>iY{fSAz87b4TPEfZL6E?%l*b&f6
zDbBD+n$vcHzC~q*tzxFI8+0>}!NN7S-ve5a85ORQF)!*Us7Z>+|9097x)R9XDrqx?
zeW1?~nPGQoUUom|krY$*wB{>S0L=!(;=lVC0Ii3Gm}XI(!a-16W=wOH)b<apir($Z
zj2RYfW=@Ad<$&NSjqknnL91cVm=v>|kvB6o0vZYk&d8W5qo7eKh%<6oe}uFeyLPMR
IFS(kTRoJFu0RR91

literal 0
HcmV?d00001

diff --git a/80.sobj b/80.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..14697f236394e52974d679fb352c69ec2bccc243
GIT binary patch
literal 715
zcmV;+0yO=2oMqKJOjJP>2H@QV7FZDxmiKE}0e=vX_tQlLagp^TVkp#LW6;io15=?U
zG&E|Yve3dpv89!m*r>76P^rYm(3xm778qmYy)b+3x$acA`0~%pnKN@&Lbo|^F%$>{
z20J-;g+l=S$VrZ!5A2QPSW)_8HkjOqF7Fu50@a6=2#CmD-f@iKY|sat5f!ojVK@gA
z)){%;EZ<h^HZK?sgYN2#n23UR&UkM)7xYGp3K0!9BM-EwMO;M1j7tpXgVwdE5mCH0
zhuznPBcMxKG>Ry@?heBTKtozId%J!5DUx8r1)!hVO0<cni@GH<d=M1V84wY*H7x{v
z)EONjVs@58pj@5NDxz@H*>1hzBG5gZ(Ji6|yRX*f3?Bx))S}Z{sm&+`EospsqAIcA
zti*5$=$RH>8M}>wE^E=7aW18xaV`2pl)FthWw;FVCrgPz@APe-mV;V!M!$$sXRr8e
zxB~P=XAEWRwh~mNGX_MII7MGrH(UjJt22hZn%X|C20hT?gow(A&Uj?F2DG8Yh=^*Z
z8Z+Mw*Me?ok?`sfam#MF4m7XDsE9_}LG_@N7AHl-ZLh~bK`l;Y?4<$Jt;Lv#*xrZX
zIOuCgXRM?J?AaaxRr)eS)Vd9nFx&{*(i!72OOrjhCeULoCcM+PcfT3*+?OG<r0a1M
zwCc+c(Qen_yoEQkI4!fZ+56H0n)L~9w=QTg+zN_laYiymZI2xTjc73`qSvmp4fHFh
zGh~)w7u+=54vPCSM0DBP&;i=k8A+LCz}~3ipcg(N8TqzPJ3&vhn39b2Ti6A<;}epR
zzH{Bqo2<oI$q3tw9?(^vkc@d-k6zHU7Sob3(c=!oeNLbHgk((Gb@YRZwMa?EqP-0R
xNd477BJSH~Y!Io>3Y?RK{ePz6q5ps+q?=<Hsci*F60+>;GIDLH;~%can2uc3UYY;^

literal 0
HcmV?d00001

diff --git a/96.sobj b/96.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..aa776fb427106c3aa424f775f03bf23309de3195
GIT binary patch
literal 716
zcmV;-0yF)1oMqKLOjA)52k=Mvv?3rBMZP}@{DD$|LZQV<L8YLc2qZ>KFix;(IPoSX
zDhY{U(SgJbHlu?RIvExnG;X?SOmre{;-ZPhP2Ypt!+GhQn)H|ddH3A&?pqD4urnWU
z948UyylWf)sJu9no^ke8CS8&JF`t*&3f<W;oDcd{q(n%B^W<|d#fA$&b2`HjQM==Y
z+%;SX`lK^zM3lKTGFyg=K)pJnL`1$@WcjJ#V$chnQ7@vviwGGm0c~p0ETVh?zu&AI
zJ_MTABAk;E1g&V%da#$&vb$fyhe1g#Iz$B4-7;?tmx8_(DiIM8wpEUR8gvFkRN9O(
z&^w(G713%%Impo&-6C3c*BZCy3|D}j>5RSuVbAs`=%y9}A{w`6ch{N>SArgD(Jx}Z
zyN0VkGg`z%)W3Jv2g4yyOp8Ggb?$@C{xDn(D$`;pr>Dn2uM3nI5z!X&mf_=|zgoma
zbS!zxa1H3O7KxmWodA8+Vpv4`UPBDmg6?aP6wzd7tPV7-#VHXzcDMDQB`rpCy50ba
zXps`pwc)N!!;Nmov^XuIGw2Pf;U>_}d?m(m_R<X6&|+Lf)V`H1ppROlMZ|2^TS51H
z8LL?l@!GLqxDE8ummy+*9u0><*R`0CDha#Wc2HQ0Ga?4<8`S|S_6eynU?->(H14Y+
zB5voyy$inwlsGF@#_ZX4f!_OsWQ^Lg?FJbwCM9FSK1UDexfbU{B<&3o0bTKBNR><W
zIeI~ld>JAp?OvkpEu}?9s*qPCW%wlMU!D?EA}-tc=yPu=Uxrk<YR{z~^u?DUBK!3i
z0KL*;TB?-V`G~o<lut;;qWeGo7#;-O(Biy^sC{3CKo5LEs-*2VDh`^`;(~~fouFY*
yw@*lwp#6%CfU32)C>giC%}yCkfGT`KGO}NfB&bRYl8jk<2aPV?iv9<le3)hyhf+NN

literal 0
HcmV?d00001


From 01523b82ed50cc9b923d4307614a5121832f3a0b Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 11:55:48 +0100
Subject: [PATCH 34/42] organize

---
 concrete_params.py => old_files/concrete_params.py  |   0
 .../estimate_oldparams.py                           |   0
 {figs => old_files/figs}/iso.png                    | Bin
 {figs => old_files/figs}/plot.png                   | Bin
 {figs => old_files/figs}/plot2.png                  | Bin
 {figs => old_files/figs}/sieve.png                  | Bin
 {figs => old_files/figs}/uSVP.png                   | Bin
 hybrid_decoding.py => old_files/hybrid_decoding.py  |   0
 {memory_tests => old_files/memory_tests}/test.py    |   0
 {memory_tests => old_files/memory_tests}/test2.py   |   0
 scripts.py => old_files/scripts.py                  |   0
 11 files changed, 0 insertions(+), 0 deletions(-)
 rename concrete_params.py => old_files/concrete_params.py (100%)
 rename estimate_oldparams.py => old_files/estimate_oldparams.py (100%)
 rename {figs => old_files/figs}/iso.png (100%)
 rename {figs => old_files/figs}/plot.png (100%)
 rename {figs => old_files/figs}/plot2.png (100%)
 rename {figs => old_files/figs}/sieve.png (100%)
 rename {figs => old_files/figs}/uSVP.png (100%)
 rename hybrid_decoding.py => old_files/hybrid_decoding.py (100%)
 rename {memory_tests => old_files/memory_tests}/test.py (100%)
 rename {memory_tests => old_files/memory_tests}/test2.py (100%)
 rename scripts.py => old_files/scripts.py (100%)

diff --git a/concrete_params.py b/old_files/concrete_params.py
similarity index 100%
rename from concrete_params.py
rename to old_files/concrete_params.py
diff --git a/estimate_oldparams.py b/old_files/estimate_oldparams.py
similarity index 100%
rename from estimate_oldparams.py
rename to old_files/estimate_oldparams.py
diff --git a/figs/iso.png b/old_files/figs/iso.png
similarity index 100%
rename from figs/iso.png
rename to old_files/figs/iso.png
diff --git a/figs/plot.png b/old_files/figs/plot.png
similarity index 100%
rename from figs/plot.png
rename to old_files/figs/plot.png
diff --git a/figs/plot2.png b/old_files/figs/plot2.png
similarity index 100%
rename from figs/plot2.png
rename to old_files/figs/plot2.png
diff --git a/figs/sieve.png b/old_files/figs/sieve.png
similarity index 100%
rename from figs/sieve.png
rename to old_files/figs/sieve.png
diff --git a/figs/uSVP.png b/old_files/figs/uSVP.png
similarity index 100%
rename from figs/uSVP.png
rename to old_files/figs/uSVP.png
diff --git a/hybrid_decoding.py b/old_files/hybrid_decoding.py
similarity index 100%
rename from hybrid_decoding.py
rename to old_files/hybrid_decoding.py
diff --git a/memory_tests/test.py b/old_files/memory_tests/test.py
similarity index 100%
rename from memory_tests/test.py
rename to old_files/memory_tests/test.py
diff --git a/memory_tests/test2.py b/old_files/memory_tests/test2.py
similarity index 100%
rename from memory_tests/test2.py
rename to old_files/memory_tests/test2.py
diff --git a/scripts.py b/old_files/scripts.py
similarity index 100%
rename from scripts.py
rename to old_files/scripts.py

From 004c576ad73b22a5bc922f4130a0946eb90b0fe7 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 13:30:13 +0100
Subject: [PATCH 35/42] update files

---
 generate_data.py | 187 +++++++++++++++++++++++++++++++++++++++++++++++
 job.sh           | 108 +++++++++++++--------------
 2 files changed, 241 insertions(+), 54 deletions(-)
 create mode 100644 generate_data.py

diff --git a/generate_data.py b/generate_data.py
new file mode 100644
index 000000000..28a6848b1
--- /dev/null
+++ b/generate_data.py
@@ -0,0 +1,187 @@
+from estimator_new import *
+from sage.all import oo, save, load, ceil
+from math import log2
+import multiprocessing
+
+
+def old_models(security_level, sd, logq=32):
+    """
+    Use the old model as a starting point for the data gathering step
+    :param security_level: the security level under consideration
+    :param sd            : the standard deviation of the LWE error distribution Xe
+    :param logq          : the (base 2 log) value of the LWE modulus q
+    """
+
+    def evaluate_model(a, b, stddev=sd):
+        return (stddev - b)/a
+
+    models = dict()
+
+    models["80"] = (-0.04049295502947623, 1.1288318226557081 + logq)
+    models["96"] = (-0.03416314056943681, 1.4704806061716345 + logq)
+    models["112"] = (-0.02970984362676178, 1.7848907787798667 + logq)
+    models["128"] = (-0.026361288425133814, 2.0014671315214696 + logq)
+    models["144"] = (-0.023744534465622812, 2.1710601038230712 + logq)
+    models["160"] = (-0.021667220727651954, 2.3565507936475476 + logq)
+    models["176"] = (-0.019947662046189942, 2.5109588704235803 + logq)
+    models["192"] = (-0.018552804646747204, 2.7168913723130816 + logq)
+    models["208"] = (-0.017291091126923574, 2.7956961446214326 + logq)
+    models["224"] = (-0.016257546811508806, 2.9582401000615226 + logq)
+    models["240"] = (-0.015329741032015766, 3.0744579055889782 + logq)
+    models["256"] = (-0.014530554319171845, 3.2094375376751745 + logq)
+
+    (a, b) = models["{}".format(security_level)]
+    n_est = evaluate_model(a, b, sd)
+
+    return round(n_est)
+
+
+def estimate(params, red_cost_model=RC.BDGL16, skip=("arora-gb", "bkw")):
+    """
+    Retrieve an estimate using the Lattice Estimator, for a given set of input parameters
+    :param params: the input LWE parameters
+    :param red_cost_model: the lattice reduction cost model
+    :param skip: attacks to skip
+    """
+
+    est = LWE.estimate(params, red_cost_model=red_cost_model, deny_list=skip)
+
+    return est
+
+
+def get_security_level(est, dp=2):
+    """
+    Get the security level lambda from a Lattice Estimator output
+    :param est: the Lattice Estimator output
+    :param dp: the number of decimal places to consider
+    """
+    attack_costs = []
+    # note: key does not need to be specified est vs est.keys()
+    for key in est:
+        attack_costs.append(est[key]["rop"])
+    # get the security level correct to 'dp' decimal places
+    security_level = round(log2(min(attack_costs)), dp)
+
+    return security_level
+
+
+def inequality(x, y):
+    """ A utility function which compresses the conditions x < y and x > y into a single condition via a multiplier
+    :param x: the LHS of the inequality
+    :param y: the RHS of the inequality
+    """
+    if x <= y:
+        return 1
+
+    if x > y:
+        return -1
+
+
+def automated_param_select_n(params, target_security=128):
+    """ A function used to generate the smallest value of n which allows for
+    target_security bits of security, for the input values of (params.Xe.stddev,params.q)
+    :param params: the standard deviation of the error
+    :param target_security: the target number of bits of security, 128 is default
+
+    EXAMPLE:
+    sage: X = automated_param_select_n(Kyber512, target_security = 128)
+    sage: X
+    456
+    """
+
+    # get an estimate based on the prev. model
+    print("n = {}".format(params.n))
+    n_start = old_models(target_security, log2(params.Xe.stddev), log2(params.q))
+    # n_start = max(n_start, 450)
+    # TODO: think about throwing an error if the required n < 450
+
+    params = params.updated(n=n_start)
+    costs2 = estimate(params)
+    security_level = get_security_level(costs2, 2)
+    z = inequality(security_level, target_security)
+
+    # we keep n > 2 * target_security as a rough baseline for mitm security (on binary key guessing)
+    while z * security_level < z * target_security:
+        # TODO: fill in this case! For n > 1024 we only need to consider every 256 (optimization)
+        params = params.updated(n = params.n + z * 8)
+        costs = estimate(params)
+        security_level = get_security_level(costs, 2)
+
+        if -1 * params.Xe.stddev > 0:
+            print("target security level is unattainable")
+            break
+
+    # final estimate (we went too far in the above loop)
+    if security_level < target_security:
+        # we make n larger
+        print("we make n larger")
+        params = params.updated(n=params.n + 8)
+        costs = estimate(params)
+        security_level = get_security_level(costs, 2)
+
+    print("the finalised parameters are n = {}, log2(sd) = {}, log2(q) = {}, with a security level of {}-bits".format(params.n,
+                                                                                                                      log2(params.Xe.stddev),
+                                                                                                                      log2(params.q),
+                                                                                                                      security_level))
+
+    if security_level < target_security:
+        params.updated(n=None)
+
+    return params, security_level
+
+
+def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128], name="default_name"):
+    """
+    :param params_in: a initial set of LWE parameters
+    :param sd_range: a tuple (sd_min, sd_max) giving the values of sd for which to generate parameters
+    :param target_security_levels: a list of the target number of bits of security, 128 is default
+    :param name: a name to save the file
+    """
+
+    (sd_min, sd_max) = sd_range
+    for lam in target_security_levels:
+        for sd in range(sd_min, sd_max + 1):
+            print("run for {}".format(lam, sd))
+            Xe_new = nd.NoiseDistribution.DiscreteGaussian(2**sd)
+            (params_out, sec) = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
+
+            try:
+                results = load("{}.sobj".format(name))
+            except:
+                results = dict()
+                results["{}".format(lam)] = []
+
+            results["{}".format(lam)].append((params_out.n, log2(params_out.q), log2(params_out.Xe.stddev), sec))
+            save(results, "{}.sobj".format(name))
+
+    return results
+
+
+def generate_zama_curves64(sd_range=[2, 58], target_security_levels=[128], name="default_name"):
+    """
+    The top level function which we use to run the experiment
+
+    :param sd_range: a tuple (sd_min, sd_max) giving the values of sd for which to generate parameters
+    :param target_security_levels: a list of the target number of bits of security, 128 is default
+    :param name: a name to save the file
+    """
+    if __name__ == '__main__':
+
+        D = ND.DiscreteGaussian
+        vals = range(sd_range[0], sd_range[1])
+        pool = multiprocessing.Pool(2)
+        init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2 ** 55), m=oo, tag='params')
+        inputs = [(init_params, (val, val), target_security_levels, name) for val in vals]
+        res = pool.starmap(generate_parameter_matrix, inputs)
+
+    return "done"
+
+
+# The script runs the following commands
+import sys
+# grab values of the command-line input arguments
+a = int(sys.argv[1])
+b = int(sys.argv[2])
+c = int(sys.argv[3])
+# run the code
+generate_zama_curves64(sd_range= (b,c), target_security_levels=[a], name="{}".format(a))
\ No newline at end of file
diff --git a/job.sh b/job.sh
index 036d9b610..def3e07a2 100755
--- a/job.sh
+++ b/job.sh
@@ -1,66 +1,66 @@
 #!/bin/sh
 # 80-bits
-#sage new_scripts.py 80 2 12
-#sage new_scripts.py 80 12 22
-#sage new_scripts.py 80 22 32
-#sage new_scripts.py 80 32 42
-#sage new_scripts.py 80 42 52
-#sage new_scripts.py 80 52 59
+sage generate_data.py 80 2 12
+sage generate_data.py 80 12 22
+sage generate_data.py 80 22 32
+sage generate_data.py 80 32 42
+sage generate_data.py 80 42 52
+sage generate_data.py 80 52 59
 # 96-bits
-sage new_scripts.py 96 2 12
-sage new_scripts.py 96 12 22
-sage new_scripts.py 96 22 32
-sage new_scripts.py 96 32 42
-sage new_scripts.py 96 42 52
-sage new_scripts.py 96 52 59
+sage generate_data.py 96 2 12
+sage generate_data.py 96 12 22
+sage generate_data.py 96 22 32
+sage generate_data.py 96 32 42
+sage generate_data.py 96 42 52
+sage generate_data.py 96 52 59
 # 112-bits
-sage new_scripts.py 112 2 12
-sage new_scripts.py 112 12 22
-sage new_scripts.py 112 22 32
-sage new_scripts.py 112 32 42
-sage new_scripts.py 112 42 52
-sage new_scripts.py 112 52 59
+sage generate_data.py 112 2 12
+sage generate_data.py 112 12 22
+sage generate_data.py 112 22 32
+sage generate_data.py 112 32 42
+sage generate_data.py 112 42 52
+sage generate_data.py 112 52 59
 # 128-bits
-#sage new_scripts.py 128 2 12
-#sage new_scripts.py 128 12 22
-#sage new_scripts.py 128 22 32
-#sage new_scripts.py 128 32 42
-#sage new_scripts.py 128 42 52
-#sage new_scripts.py 128 52 59
+sage generate_data.py 128 2 12
+sage generate_data.py 128 12 22
+sage generate_data.py 128 22 32
+sage generate_data.py 128 32 42
+sage generate_data.py 128 42 52
+sage generate_data.py 128 52 59
 # 144-bits
-sage new_scripts.py 144 2 12
-sage new_scripts.py 144 12 22
-sage new_scripts.py 144 22 32
-sage new_scripts.py 144 32 42
-sage new_scripts.py 144 42 52
-sage new_scripts.py 144 52 59
+sage generate_data.py 144 2 12
+sage generate_data.py 144 12 22
+sage generate_data.py 144 22 32
+sage generate_data.py 144 32 42
+sage generate_data.py 144 42 52
+sage generate_data.py 144 52 59
 # 160-bits
-sage new_scripts.py 160 2 12
-sage new_scripts.py 160 12 22
-sage new_scripts.py 160 22 32
-sage new_scripts.py 160 32 42
-sage new_scripts.py 160 42 52
-sage new_scripts.py 160 52 59
+sage generate_data.py 160 2 12
+sage generate_data.py 160 12 22
+sage generate_data.py 160 22 32
+sage generate_data.py 160 32 42
+sage generate_data.py 160 42 52
+sage generate_data.py 160 52 59
 # 176-bits
-sage new_scripts.py 176 2 12
-sage new_scripts.py 176 12 22
-sage new_scripts.py 176 22 32
-sage new_scripts.py 176 32 42
-sage new_scripts.py 176 42 52
-sage new_scripts.py 176 52 59
+sage generate_data.py 176 2 12
+sage generate_data.py 176 12 22
+sage generate_data.py 176 22 32
+sage generate_data.py 176 32 42
+sage generate_data.py 176 42 52
+sage generate_data.py 176 52 59
 # 192-bits
-#sage new_scripts.py 192 2 12
-#sage new_scripts.py 192 12 22
-#sage new_scripts.py 192 22 32
-#sage new_scripts.py 192 32 42
-#sage new_scripts.py 192 42 52
-#sage new_scripts.py 192 52 59
+sage generate_data.py 192 2 12
+sage generate_data.py 192 12 22
+sage generate_data.py 192 22 32
+sage generate_data.py 192 32 42
+sage generate_data.py 192 42 52
+sage generate_data.py 192 52 59
 # 256-bits
-#sage new_scripts.py 256 2 12
-#sage new_scripts.py 256 12 22
-#sage new_scripts.py 256 22 32
-#sage new_scripts.py 256 32 42
-#sage new_scripts.py 256 42 52
-#sage new_scripts.py 256 52 59
+sage generate_data.py 256 2 12
+sage generate_data.py 256 12 22
+sage generate_data.py 256 22 32
+sage generate_data.py 256 32 42
+sage generate_data.py 256 42 52
+sage generate_data.py 256 52 59
 
 

From 6d68bd8d6a23f1e813e1eef30e8c99f196255b0f Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 13:31:09 +0100
Subject: [PATCH 36/42] updates

---
 new_scripts.py   | 2 +-
 verify_curves.py | 8 +++++---
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/new_scripts.py b/new_scripts.py
index 20e7fc265..db1543550 100644
--- a/new_scripts.py
+++ b/new_scripts.py
@@ -1,5 +1,5 @@
 from estimator_new import *
-from sage.all import oo, save, load
+from sage.all import oo, save, load, ceil
 from math import log2
 import multiprocessing
 
diff --git a/verify_curves.py b/verify_curves.py
index 7773591a4..bad73c93c 100644
--- a/verify_curves.py
+++ b/verify_curves.py
@@ -1,5 +1,6 @@
 import numpy as np
-from sage.all import save, load
+from sage.all import save, load, ceil
+
 
 def sort_data(security_level):
     from operator import itemgetter
@@ -15,6 +16,7 @@ def sort_data(security_level):
 
     return X
 
+
 def generate_curve(security_level):
 
     # step 1. get the data
@@ -90,6 +92,6 @@ def generate_and_verify(security_levels, log_q, name = "verified_curves"):
     
     return data
 
-# To verify the curves we use
-generate_and_verify([80, 96, 112, 128, 144, 160, 176, 192, 256], log_q = 64)
 
+data = generate_and_verify([80, 96, 112, 128, 144, 160, 176, 192, 256], log_q = 64)
+print(data)

From 301caec2e85bc58195cf1bab1b63ea27c6619223 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 13:33:13 +0100
Subject: [PATCH 37/42] move old file

---
 new_scripts.py => old_files/new_scripts.py | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename new_scripts.py => old_files/new_scripts.py (100%)

diff --git a/new_scripts.py b/old_files/new_scripts.py
similarity index 100%
rename from new_scripts.py
rename to old_files/new_scripts.py

From fd1c577bcf9da18346b19b852eb730f753a889f2 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 13:34:04 +0100
Subject: [PATCH 38/42] add verified curves

---
 verified_curves.sobj | Bin 0 -> 670 bytes
 verified_curves.txt  |   9 +++++++++
 2 files changed, 9 insertions(+)
 create mode 100644 verified_curves.sobj
 create mode 100644 verified_curves.txt

diff --git a/verified_curves.sobj b/verified_curves.sobj
new file mode 100644
index 0000000000000000000000000000000000000000..546a32e51814a52cf0cb7db3b53badd39bc666ce
GIT binary patch
literal 670
zcmV;P0%84loK=$9Pg6k@hr0mE1?q;Vh$|>np^6&_C>M9RQ1IYVH>9@3qGkD&@<337
zm<%Es6>tlP;P#*o;_{*~)|~l|{0DSKYI3~~lbbW&@0&9xGvK-ahu0hG?Ct38^M$(N
z5no4dEYTi}$Af)FPbe4*#tk^<_Kk3&uRCJE6>vEmj<yQ8hi?xdjgaoO+ySSmRU^ai
z_t*Va-`~Y@Brxw%=whfV90~Opkxu<%V1B@(;A?%H<Z(I3pZGN=kr~KP#aJ-W-dP4i
zAd8SKkVEi9oze8@{6LP{HhECq<Ixr#lizBvAgZ{9ghc|22}`V|K$>EjYMYyp+rZ8Q
zmU>g!ELAVL-dik3`*}tkmZy`;2+IXl5b{%0wxZ-Tzvah#zo*b)Vx`6k2&)8E6V_O*
z(K+whe_nkLImGYyYngl&<SC_Ir!(sbg#tx{4Ymdx<@{I*{#x%eu~AdS1h2p*!e*;G
zW!~bo-PXl7<@bL1K9eVuxI{-v2|j_Xgl)E-*UDRRgzxsqNw<kIjcq6F5ZFoBWeudv
zyX`&mSRQ}mr~D?YmL$q`rh>3XppsCP0u4Rzyj=Op#Xr(bRBLE2VV^(^!L%Nv#I^R8
z<((paxI%tDpk|oFejPbLI4E$4aM(7B)-&=+K7ZiBc_xl%>L}ruKpnxdrj_`Y64(FN
z@szyV$kY5S$m7b~pfi3#qd*hkxP2HrDWCIfjE6Ezkj9z`Cj?FsPFb@`UF=HWwEbZO
z8fw#d!oy?A8_<C>gtG$Y2<L4S56CZ7`8*RbOkB`Z3*n+bD<Nq8RN5A$y<{In0l$zV
zn@i<8zNf??9SIX60&RrLHcp9O%13heh8*#jh-$8#a7ExMA=cn<DtDzjfsTmp54-6{
E(^7g+X#fBK

literal 0
HcmV?d00001

diff --git a/verified_curves.txt b/verified_curves.txt
new file mode 100644
index 000000000..87b387304
--- /dev/null
+++ b/verified_curves.txt
@@ -0,0 +1,9 @@
+[(-0.04042633119364589, 1.6609788641436722, 80, 'PASS', 450),
+ (-0.03414780360867051, 2.017310258660345, 96, 'PASS', 450),
+ (-0.029670137081135885, 2.162463714083856, 112, 'PASS', 450),
+ (-0.02640502876522622, 2.4826422691043177, 128, 'PASS', 450),
+ (-0.023821437305989134, 2.7177789440636673, 144, 'PASS', 450),
+ (-0.02174358218716036, 2.938810548493322, 160, 'PASS', 498),
+ (-0.019904056582117684, 2.8161252801542247, 176, 'PASS', 551),
+ (-0.018610403247590085, 3.2996236848399008, 192, 'PASS', 606),
+ (-0.014606812351714953, 3.8493629234693003, 256, 'PASS', 826)]

From c8082f1e657af6a680b2d2093c7452e77745a8a5 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 13:43:51 +0100
Subject: [PATCH 39/42] tidy repo

---
 README.rst                 |  45 +++++++++++++++++--------------------
 data/{v1 => v0.2}/112.sobj | Bin
 data/{v1 => v0.2}/128.sobj | Bin
 data/{v1 => v0.2}/144.sobj | Bin
 data/{v1 => v0.2}/160.sobj | Bin
 data/{v1 => v0.2}/176.sobj | Bin
 data/{v1 => v0.2}/192.sobj | Bin
 data/{v1 => v0.2}/256.sobj | Bin
 data/{v1 => v0.2}/80.sobj  | Bin
 data/{v1 => v0.2}/96.sobj  | Bin
 10 files changed, 21 insertions(+), 24 deletions(-)
 rename data/{v1 => v0.2}/112.sobj (100%)
 rename data/{v1 => v0.2}/128.sobj (100%)
 rename data/{v1 => v0.2}/144.sobj (100%)
 rename data/{v1 => v0.2}/160.sobj (100%)
 rename data/{v1 => v0.2}/176.sobj (100%)
 rename data/{v1 => v0.2}/192.sobj (100%)
 rename data/{v1 => v0.2}/256.sobj (100%)
 rename data/{v1 => v0.2}/80.sobj (100%)
 rename data/{v1 => v0.2}/96.sobj (100%)

diff --git a/README.rst b/README.rst
index b194a4561..017ab8e77 100644
--- a/README.rst
+++ b/README.rst
@@ -3,12 +3,12 @@ Parameter curves for Concrete
 
 This Github repository contains the code needed to generate the Parameter curves used inside Zama. The repository contains the following files:
 
-- cpp/, Python scripts to generate a cpp file containing the parameter curves
+- cpp/, Python scripts to generate a cpp file containing the parameter curves (needs updating)
 - data/, a folder containing the data generated for previous curves. 
-- estimator/, Zama's internal version of the LWE Estimator
-- figs/, a folder containing various figures related to the parameter curves
-- scripts.py, a copy of all scripts required to generate the parameter curves
-- a variety of other python files, used for estimating the security of previous Concrete parameter sets
+- estimator_new/, the Lattice estimator (TODO: add as a submodule and use dependabot to alert for new commits)
+- old_files/, legacy files used for previous versions
+- generate_data.py, functions to gather raw data from the lattice estimator
+- verifiy_curves.py, functions to generate and verify curves from raw data
 
 .. image:: logo.svg
    :align: center
@@ -20,13 +20,16 @@ Example
 This is an example of how to generate the parameter curves, and save them to file.
 
 ::
-
-    sage: load("scripts.py")
-    sage: results = get_zama_curves()
-    sage: save(results, "v0.sobj")
+    ./job.sh
 ::
 
-We can load results files, and find the interpolants.
+This will generate several data files, {80, 96, 112, 128, 144, 160, 176, 192, 256}.sobj
+
+To generate the parameter curves from the data files, we run 
+
+`sage verify_curves.py`
+
+this will generate a list of the form:
 
 ::
 
@@ -41,22 +44,15 @@ We can load results files, and find the interpolants.
     (-0.014606812351714953, 3.8493629234693003, 256, 'PASS', 826)]
 ::
 
-Finding the value of n_{alpha} is done manually. We can also verify the interpolants which are generated at the same time:
+each element is a tuple (a, b, security, P, n_min), where (a,b) are the model 
+parameters, security is the security level, P is a boolean value denoting PASS or 
+FAIL of the verification, and n_min is the smallest reccomended value of `n` to be used.
 
-::
+Each model outputs a value of sigma, and is of the form:
 
-    # verify the interpolant used for lambda = 256 (which is interps[-1])
-    sage: z = verify_interpolants(interps[-1], (128,2048), 64)
-    [... code runs, can take ~10 mins ...]
-    # find the index corresponding to n_alpha, which is where security drops below the target security level (256 here)
-    sage: n_alpha = find_nalpha(z, 256)
-    653
-    
-    # so the model in this case is 
-    (-0.014327640360322604, 2.899270827311096, 653)
-    # which corresponds to
-    # sd(n) = max(-0.014327640360322604 * n +  2.899270827311096, -logq + 2), n >= 653
-::
+`f(a, b, n) = max(ceil(a * n + b), -log2(q) + 2)`
+
+where the -log2(q) + 2 term ensures that we are always using at least two bits of noise.
 
 Version History
 -------------------
@@ -67,6 +63,7 @@ Data for the curves are kept in /data. The following files are present:
 
     v0: generated using the {usvp, dual, decoding} attacks
     v0.1: generated using the {mitm, usvp, dual, decoding} attacks
+    v0.2: generated using the lattice estimator
 ::
 
 TODO List
diff --git a/data/v1/112.sobj b/data/v0.2/112.sobj
similarity index 100%
rename from data/v1/112.sobj
rename to data/v0.2/112.sobj
diff --git a/data/v1/128.sobj b/data/v0.2/128.sobj
similarity index 100%
rename from data/v1/128.sobj
rename to data/v0.2/128.sobj
diff --git a/data/v1/144.sobj b/data/v0.2/144.sobj
similarity index 100%
rename from data/v1/144.sobj
rename to data/v0.2/144.sobj
diff --git a/data/v1/160.sobj b/data/v0.2/160.sobj
similarity index 100%
rename from data/v1/160.sobj
rename to data/v0.2/160.sobj
diff --git a/data/v1/176.sobj b/data/v0.2/176.sobj
similarity index 100%
rename from data/v1/176.sobj
rename to data/v0.2/176.sobj
diff --git a/data/v1/192.sobj b/data/v0.2/192.sobj
similarity index 100%
rename from data/v1/192.sobj
rename to data/v0.2/192.sobj
diff --git a/data/v1/256.sobj b/data/v0.2/256.sobj
similarity index 100%
rename from data/v1/256.sobj
rename to data/v0.2/256.sobj
diff --git a/data/v1/80.sobj b/data/v0.2/80.sobj
similarity index 100%
rename from data/v1/80.sobj
rename to data/v0.2/80.sobj
diff --git a/data/v1/96.sobj b/data/v0.2/96.sobj
similarity index 100%
rename from data/v1/96.sobj
rename to data/v0.2/96.sobj

From 1169d029991bfa973741c5f1ebef4a0107373f79 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 13:48:44 +0100
Subject: [PATCH 40/42] remove todos which have been completed, update README

---
 README.rst | 14 +++++---------
 1 file changed, 5 insertions(+), 9 deletions(-)

diff --git a/README.rst b/README.rst
index 017ab8e77..4f94197b2 100644
--- a/README.rst
+++ b/README.rst
@@ -20,6 +20,7 @@ Example
 This is an example of how to generate the parameter curves, and save them to file.
 
 ::
+
     ./job.sh
 ::
 
@@ -50,7 +51,10 @@ FAIL of the verification, and n_min is the smallest reccomended value of `n` to
 
 Each model outputs a value of sigma, and is of the form:
 
-`f(a, b, n) = max(ceil(a * n + b), -log2(q) + 2)`
+::
+
+   f(a, b, n) = max(ceil(a * n + b), -log2(q) + 2)
+::
 
 where the -log2(q) + 2 term ensures that we are always using at least two bits of noise.
 
@@ -66,12 +70,4 @@ Data for the curves are kept in /data. The following files are present:
     v0.2: generated using the lattice estimator
 ::
 
-TODO List
--------------------
 
-There are several updates which are still required.
-    1. Consider Hybrid attacks (WIP, Michael + Ben are coding up hybrid-dual/hybrid-decoding estimates)
-    2. CI/CD stuff for new pushes to the external LWE Estimator.
-    3. Fully automate the process of finding n_{alpha} for each curve.
-    4. Functionality for q =! 64? This is covered by the curve, but we currently don't account for it in the models, and it needs to be done manually.
-    5. cpp file generation

From c37a16512a290a4cc65630175062c60ba1496c71 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 13:52:27 +0100
Subject: [PATCH 41/42] pep8

---
 generate_data.py | 28 ++++++++++++++++++----------
 verify_curves.py | 23 ++++++++++++-----------
 2 files changed, 30 insertions(+), 21 deletions(-)

diff --git a/generate_data.py b/generate_data.py
index 28a6848b1..26a0e933e 100644
--- a/generate_data.py
+++ b/generate_data.py
@@ -1,3 +1,4 @@
+import sys
 from estimator_new import *
 from sage.all import oo, save, load, ceil
 from math import log2
@@ -91,7 +92,8 @@ def automated_param_select_n(params, target_security=128):
 
     # get an estimate based on the prev. model
     print("n = {}".format(params.n))
-    n_start = old_models(target_security, log2(params.Xe.stddev), log2(params.q))
+    n_start = old_models(target_security, log2(
+        params.Xe.stddev), log2(params.q))
     # n_start = max(n_start, 450)
     # TODO: think about throwing an error if the required n < 450
 
@@ -103,7 +105,7 @@ def automated_param_select_n(params, target_security=128):
     # we keep n > 2 * target_security as a rough baseline for mitm security (on binary key guessing)
     while z * security_level < z * target_security:
         # TODO: fill in this case! For n > 1024 we only need to consider every 256 (optimization)
-        params = params.updated(n = params.n + z * 8)
+        params = params.updated(n=params.n + z * 8)
         costs = estimate(params)
         security_level = get_security_level(costs, 2)
 
@@ -120,8 +122,10 @@ def automated_param_select_n(params, target_security=128):
         security_level = get_security_level(costs, 2)
 
     print("the finalised parameters are n = {}, log2(sd) = {}, log2(q) = {}, with a security level of {}-bits".format(params.n,
-                                                                                                                      log2(params.Xe.stddev),
-                                                                                                                      log2(params.q),
+                                                                                                                      log2(
+                                                                                                                          params.Xe.stddev),
+                                                                                                                      log2(
+                                                                                                                          params.q),
                                                                                                                       security_level))
 
     if security_level < target_security:
@@ -143,7 +147,8 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128],
         for sd in range(sd_min, sd_max + 1):
             print("run for {}".format(lam, sd))
             Xe_new = nd.NoiseDistribution.DiscreteGaussian(2**sd)
-            (params_out, sec) = automated_param_select_n(params_in.updated(Xe=Xe_new), target_security=lam)
+            (params_out, sec) = automated_param_select_n(
+                params_in.updated(Xe=Xe_new), target_security=lam)
 
             try:
                 results = load("{}.sobj".format(name))
@@ -151,7 +156,8 @@ def generate_parameter_matrix(params_in, sd_range, target_security_levels=[128],
                 results = dict()
                 results["{}".format(lam)] = []
 
-            results["{}".format(lam)].append((params_out.n, log2(params_out.q), log2(params_out.Xe.stddev), sec))
+            results["{}".format(lam)].append(
+                (params_out.n, log2(params_out.q), log2(params_out.Xe.stddev), sec))
             save(results, "{}.sobj".format(name))
 
     return results
@@ -170,18 +176,20 @@ def generate_zama_curves64(sd_range=[2, 58], target_security_levels=[128], name=
         D = ND.DiscreteGaussian
         vals = range(sd_range[0], sd_range[1])
         pool = multiprocessing.Pool(2)
-        init_params = LWE.Parameters(n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2 ** 55), m=oo, tag='params')
-        inputs = [(init_params, (val, val), target_security_levels, name) for val in vals]
+        init_params = LWE.Parameters(
+            n=1024, q=2 ** 64, Xs=D(0.50, -0.50), Xe=D(2 ** 55), m=oo, tag='params')
+        inputs = [(init_params, (val, val), target_security_levels, name)
+                  for val in vals]
         res = pool.starmap(generate_parameter_matrix, inputs)
 
     return "done"
 
 
 # The script runs the following commands
-import sys
 # grab values of the command-line input arguments
 a = int(sys.argv[1])
 b = int(sys.argv[2])
 c = int(sys.argv[3])
 # run the code
-generate_zama_curves64(sd_range= (b,c), target_security_levels=[a], name="{}".format(a))
\ No newline at end of file
+generate_zama_curves64(sd_range=(b, c), target_security_levels=[
+                       a], name="{}".format(a))
diff --git a/verify_curves.py b/verify_curves.py
index bad73c93c..9dfe15ab1 100644
--- a/verify_curves.py
+++ b/verify_curves.py
@@ -9,7 +9,7 @@ def sort_data(security_level):
     X = load("{}.sobj".format(security_level))
 
     # step 2. sort by SD
-    x = sorted(X["{}".format(security_level)], key = itemgetter(2))
+    x = sorted(X["{}".format(security_level)], key=itemgetter(2))
 
     # step3. replace the sorted value
     X["{}".format(security_level)] = x
@@ -28,14 +28,14 @@ def generate_curve(security_level):
     for x in X["{}".format(security_level)]:
         N.append(x[0])
         SD.append(x[2] + 0.5)
-    
+
     # step 3. perform interpolation and return coefficients
-    (a,b) = np.polyfit(N, SD, 1)
+    (a, b) = np.polyfit(N, SD, 1)
 
     return a, b
-    
 
-def verify_curve(security_level, a = None, b = None):
+
+def verify_curve(security_level, a=None, b=None):
 
     # step 1. get the table and max values of n, sd
     X = sort_data(security_level)
@@ -53,9 +53,9 @@ def verify_curve(security_level, a = None, b = None):
             if n < n_val:
                 pass
             else:
-                j = i 
+                j = i
                 break
-        
+
         # now j is the correct index, we return the corresponding sd
         return table[j][2]
 
@@ -67,7 +67,7 @@ def verify_curve(security_level, a = None, b = None):
     for n in range(n_max, n_min, - 1):
         model_sd = f_model(a, b, n)
         table_sd = f_table(X["{}".format(security_level)], n)
-        print(n , table_sd, model_sd, model_sd >= table_sd)
+        print(n, table_sd, model_sd, model_sd >= table_sd)
 
         if table_sd > model_sd:
             print("MODEL FAILS at n = {}".format(n))
@@ -76,7 +76,7 @@ def verify_curve(security_level, a = None, b = None):
     return "PASS", n_min
 
 
-def generate_and_verify(security_levels, log_q, name = "verified_curves"):
+def generate_and_verify(security_levels, log_q, name="verified_curves"):
 
     data = []
 
@@ -89,9 +89,10 @@ def generate_and_verify(security_levels, log_q, name = "verified_curves"):
         # append the information into a list
         data.append((a_sec, b_sec - log_q, sec, res[0], res[1]))
         save(data, "{}.sobj".format(name))
-    
+
     return data
 
 
-data = generate_and_verify([80, 96, 112, 128, 144, 160, 176, 192, 256], log_q = 64)
+data = generate_and_verify(
+    [80, 96, 112, 128, 144, 160, 176, 192, 256], log_q=64)
 print(data)

From fc02c989993dd48fc4711508182b5e41d263b471 Mon Sep 17 00:00:00 2001
From: Ben <ben.curtis@zama.ai>
Date: Fri, 24 Jun 2022 13:55:41 +0100
Subject: [PATCH 42/42] Update pep8.yml

---
 .github/workflows/pep8.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/pep8.yml b/.github/workflows/pep8.yml
index f4656a9a2..d5d0aea9e 100644
--- a/.github/workflows/pep8.yml
+++ b/.github/workflows/pep8.yml
@@ -19,4 +19,5 @@ jobs:
       - name: PEP8
         run: |
           pip install --upgrade pyproject-flake8
-          flake8 new_scripts.py
+          flake8 generate_data.py
+          flake8 verify_curves.py