github/concrete
1
1
Fork 0
mirror of https://github.com/zama-ai/concrete.git synced 2026-02-15 15:15:06 -05:00
Code Issues Packages Projects Releases Wiki Activity
56 Commits 185 Branches 425 Tags
f0b6703d5abc59e8ac7745267b9da04fe02d9585
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Ben f0b6703d5a add pic
2021-08-13 10:24:19 +01:00
.github/workflows
Create dependabot.yml
2021-08-11 15:51:26 +01:00
cpp
typo
2021-08-11 11:38:56 +01:00
data
data w/ mitm
2021-08-13 09:57:03 +01:00
estimator @ 8d4c633d0d
update estimator
2021-08-12 11:35:52 +01:00
figs
organise figs
2021-06-03 10:07:56 +01:00
.gitmodules
python import error
2021-08-11 14:45:35 +01:00
concrete_params.py
missing ,
2021-05-20 10:10:09 +01:00
estimate_oldparams.py
store bug here instead
2021-08-12 14:17:38 +01:00
hybrid_decoding.py
sd values for n \in [256, 2048]
2021-05-27 13:18:16 +01:00
logo.svg
add pic
2021-08-13 10:24:19 +01:00
README.rst
add another todo
2021-08-13 10:00:01 +01:00
scripts.py
rm unused fn
2021-08-12 14:54:34 +01:00

README.rst 

Parameter curves for Concrete
=============

This Github repository contains the code needed to generate the Parameter curves used inside Zama. The repository contains the following files:

- estimator.py, a copy of the LWE Estimator 
- scripts.py, a copy of all scripts required to generate the parameter curves
- data/, a folder containing the data generated for previous curves. This folder currently contains "v0.sobj", i.e. the data used for the v0 curves

Example
-------------------
This is an example of how to generate the parameter curves, and save them to file.

::

sage: load("scripts.py")
sage: results = get_zama_curves()
sage: save(results, "v0.sobj")
::

We can load results files, and find the interpolants.

::

    sage: load("scripts.py")
    sage: interps = []
    sage: results = load("v0.sobj")
    sage: for result in results:
    sage:     interps.append(interpolate_result(result, log_q = 64))
    sage: interps
    [(-0.040476778656126484, 1.143346508563902),
     (-0.03417207792207793, 1.4805194805194737),
     (-0.029681716023268107, 1.752723426758335),
     (-0.0263748887657055, 2.0121439233304894),
     (-0.023730136557783763, 2.1537066948924095),
     (-0.021604493958972515, 2.2696862472846204),
     (-0.019897520946588438, 2.4423829771964796),
     (-0.018504919354426233, 2.6634073426215745),
     (-0.017254242957361113, 2.7353702447139026),
     (-0.016178309410530816, 2.8493969373734758),
     (-0.01541034709414119, 3.1982749283836283),
     (-0.014327640360322604, 2.899270827311096)]
::

Finding the value of n_{alpha} is done manually. We can also verify the interpolants which are generated at the same time:

::

    # verify the interpolant used for lambda = 256 (which is interps[-1])
    sage: z = verify_interpolants(interps[-1], (128,2048), 64)
    [... code runs, can take ~10 mins ...]
    # find the index corresponding to n_alpha, which is where security drops below the target security level (256 here)
    sage: n_alpha = find_nalpha(z, 256)
    653
    
    # so the model in this case is 
    (-0.014327640360322604, 2.899270827311096, 653)
    # which corresponds to
    # sd(n) = max(-0.014327640360322604 * n +  2.899270827311096, -logq + 2), n >= 653
::

TODO List
-------------------

There are several updates which are still required.
    1. Consider Hybrid attacks (WIP, Michael + Ben are coding up hybrid-dual/hybrid-decoding estimates)
    2. CI/CD stuff for new pushes to the external LWE Estimator.
    3. Fully automate the process of finding n_{alpha} for each curve.
    4. Functionality for q =! 64? This is covered by the curve, but we currently don't account for it in the models, and it needs to be done manually.
    5. cpp file generation
Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 148 MiB
Languages
C++ 34.3%
Python 23.1%
MLIR 22.9%
Rust 14.6%
C 2.2%
Other 2.8%