Minimizing the number of bootstrappings in fully homomorphic encryption - LIRMM - Laboratoire d’Informatique, de Robotique et de Microélectronique de Montpellier Access content directly
Conference Papers Year : 2015

Minimizing the number of bootstrappings in fully homomorphic encryption

Bastien Vialla
  • Function : Author
  • PersonId : 968653


There has been great progress regarding efficient implementations of fully homomorphic encryption schemes since the first construction by Gentry. However, evaluating complex circuits is still undermined by the necessary resort to the bootstrapping procedure. Minimizing the number of times such procedure is called is a simple yet very efficient way to critically improve performances of homomorphic evaluations. To tackle this problem, a first solution has been proposed in 2013 by Lepoint and Paillier, using boolean satisfiability. But their method cannot handle the versatility of fully homomorphic encryption schemes. In this paper, we go one step forward providing two main contributions. First, we prove that the problem of minimizing bootstrapping is NP-complete with a reduction from a graph problem. Second, we propose a flexible technique that permits to determine both such minimal number of bootstrappings and where to place them in the circuit. Our method is mainly based on linear programming. Our result can advantageously be applied to existing constructions. As an example, we show that for the Smart-Tillich AES circuit, published on the Internet in 2012, we find about 70% less bootstrappings than naive methods.

Dates and versions

lirmm-01371764 , version 1 (26-09-2016)



Marie Paindavoine, Bastien Vialla. Minimizing the number of bootstrappings in fully homomorphic encryption. SAC: Selected Areas in Cryptography, Aug 2015, Sackville, NB, Canada. pp.25-43, ⟨10.1007/978-3-319-31301-6_2⟩. ⟨lirmm-01371764⟩


114 View
0 Download



Gmail Mastodon Facebook X LinkedIn More