A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2022; you can also visit the original URL.
The file type is application/pdf
.
Fractional LWE: a nonlinear variant of LWE
[article]
2019
IACR Cryptology ePrint Archive
Many cryptographic constructions are based on the famous problem LWE [Reg05] . In particular, this cryptographic problem is currently the most relevant to build FHE [GSW13], [BV11] . In [BV11], encrypting x consists of randomly choosing a vector c satisfying ⟨s, c⟩ = x + noise (mod q) where s is a secret size-n vector. While the vector sum is a homomorphic operator, such a scheme is intrinsically vulnerable to lattice-based attacks. To overcome this, we propose to define c as a pair of vectors
dblp:journals/iacr/GavinB19
fatcat:l5al3anaive6vc62ri22dgoxwq