Possible suggestion regarding security level feedback

narger · November 17, 2023, 9:13am

Hello everyone,

In the context of CKKS, I think it would be useful that, when OpenFHE says that the current parameters do not comply with the security standards, it would output:

the upper bound for the ciphertext modulus for the given security setting,
the current ciphertext modulus

For instance, something like:

"The upper bound for [security_level] is [upper_bound], your parameters have a value of logq equal to [logq], you need to reduce the moduli chain by [logq - upper_bound] "

I am saying that because finding the right parameters is already challenging, taking into consideration the security standards is even harder without having a good feedback.

Thank you

ypolyakov · November 17, 2023, 2:34pm

Thanks. It is a little bit trickier than this. In the case of hybrid key switching, it is actually logq + logp, and logp can be controlled using the number of digits in hybrid key switching. I agree it would be nice to provide guidelines for this, but the guidelines are a little bit more involved (and cannot be captured with simple output messages).

Topic		Replies	Views
Why do my parameters not comply with 128 bit security? FHE Questions	1	253	March 27, 2023
OpenFHE CKKS chooses modulus chain that doesn't guarantee 128 bits of security Library Questions	6	487	March 13, 2023
How to set Q, K and log(pq) Library Questions	3	97	December 19, 2023
CKKS modulus switching and scaling Library Questions	2	255	February 3, 2023
How can i achieve 80-bit classic security in CKKS FHE Questions	1	92	December 22, 2023

Possible suggestion regarding security level feedback

Related Topics