CORE
🇺🇦
make metadata, not war
Services
Services overview
Explore all CORE services
Access to raw data
API
Dataset
FastSync
Content discovery
Recommender
Discovery
OAI identifiers
OAI Resolver
Managing content
Dashboard
Bespoke contracts
Consultancy services
Support us
Support us
Membership
Sponsorship
Community governance
Advisory Board
Board of supporters
Research network
About
About us
Our mission
Team
Blog
FAQs
Contact us
Constant-time discrete Gaussian sampling
Authors
Angshuman Karmakar
Oscar Reparaz
+3 more
Sujoy Sinha Roy
Ingrid Verbauwhede
Frederik Vercauteren
Publication date
12 March 2018
Publisher
Doi
Cite
Abstract
© 2018 IEEE. Sampling from a discrete Gaussian distribution is an indispensable part of lattice-based cryptography. Several recent works have shown that the timing leakage from a non-constant-time implementation of the discrete Gaussian sampling algorithm could be exploited to recover the secret. In this paper, we propose a constant-time implementation of the Knuth-Yao random walk algorithm for performing constant-time discrete Gaussian sampling. Since the random walk is dictated by a set of input random bits, we can express the generated sample as a function of the input random bits. Hence, our constant-time implementation expresses the unique mapping of the input random-bits to the output sample-bits as a Boolean expression of the random-bits. We use bit-slicing to generate multiple samples in batches and thus increase the throughput of our constant-time sampling manifold. Our experiments on an Intel i7-Broadwell processor show that our method can be as much as 2.4 times faster than the constant-time implementation of cumulative distribution table based sampling and consumes exponentially less memory than the Knuth-Yao algorithm with shuffling for a similar level of security
Similar works
Full text
Open in the Core reader
Download PDF
Available Versions
ZENODO
See this paper in CORE
Go to the repository landing page
Download from data provider
oai:zenodo.org:2643424
Last time updated on 09/07/2019
NEUROSURGERY ENTHUSIASTIC WOMEN SOCIETY
See this paper in CORE
Go to the repository landing page
Download from data provider
oai:zenodo.org:2643424
Last time updated on 02/12/2022
University of Birmingham Research Portal
See this paper in CORE
Go to the repository landing page
Download from data provider
oai:pure.atira.dk:openaire_cri...
Last time updated on 14/12/2019
University of Birmingham Research Portal
See this paper in CORE
Go to the repository landing page
Download from data provider
oai:pure.atira.dk:publications...
Last time updated on 08/09/2019