Skip to content

lorenzorovida/Lightweight-Sorting-In-Approximate-Homomorphic-Encryption

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

50 Commits
.github/workflows
.github/workflows
 
 
experiments
experiments
 
 
imgs
imgs
 
 
inputs
inputs
 
 
notebooks
notebooks
 
 
src
src
 
 
.gitignore
.gitignore
 
 
CMakeLists.txt
CMakeLists.txt
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Lightweight Sorting in Approximate Homomorphic Encryption

CMake on multiple platforms
Console presentation image Console presentation image

This repository contains the source code for the preprint paper Lightweight Sorting in Approximate Homomorphic Encryption. With this code it is possible to sort a vector of encrypted values in "reasonable" time (e.g., few seconds for 128 elements in $[0, 1]$, with precision up to $10^{-2}$).

The proposal (and the code) is split in two parts:

  • We propose a concrete improvement in terms of runtime and memory from [MEHP25], although we use precisely the same framework.
  • We propose an implementation of a bitonic sorting network based on compare-and-swap operations approximated with the ReLU function

Both algorithms have been implemented in the OpenFHE implementation of the RNS-CKKS scheme

Requirements

It is pretty straightforward to use this source code, first of all be sure that all requirements are satisfied.

How to use it

First of all clone the repository:

git clone https://github.com/lorenzorovida/Lightweight-Sorting-In-Approximate-Homomorphic-Encryption

Then, make a build folder and build the project with cmake

mkdir build
cmake -B "build" -S Sort

Before launching the program, go to the just created folder:

cd build

A sample usage to test if everything is setup might be:

./Sort --random 16 --delta 0.01 --toy --permutation

That sort 16 random elements using permutation-based approach, with toy parameters.

Now it is possible to launch the program! Notice that, before doing that, some arguments are mandatory

Required arguments:

In order to work properly, we must define some required arguments:

Input values:

One of the following three arguments are required in order to correctly give the input to the circuit.

  • Random: To use as input a vector of values from 0 to n randomly shuffled, use --random n where n is a power of two. Also, set the delta value --delta d where d represents the $\delta$ term used in the paper. For example:
--random 8 --delta 0.01
  • Input file: To use as input a file, use --file FILENAME where FILENAME is the selected file. Notice that the file must contain a power-of-two number of values. For example:
 --file "../inputs/sample.txt"
  • Input inline: Alternatively, you can provide a vector directly by enclosing it in square brackets, for example: "[0.5, 0.12, 0.71, 0.42]". Notice that, also in this case, the length of the vector $|v|$ must be a power of two.
"[0.5, 0.12, 0.71, 0.42]"

Sorting method

Moreover, you have to pick the sorting algorithm, that can be either the permutation-based (light and fast, requires $\Theta(n^2$ slots) or the network-based (heavier and requires bootstrapping, but uses $\Theta(n)$ slots).

  • Permutation-based: simply use:
--permutation
  • Network-based: simply use:
--network

As an example, if we want to sort 64 random values at maximum distance 0.001 with permutation-based, we can execute:

./Sort --random 64 --delta 0.001 --permutation

Optional arguments:

Be sure to check the paper in order to fully understand the impact of each argument!

It is possible to change the behavior of the program by using some optional argument:

  • --tieoffset: use this argument in the permutation-based approach if the inputs contain repeated elements.
./Sort --random 32 --delta 0.1 --permutation --tieoffset --toy_parameters

Important

If the input contains repeated elements and this flag is not on, sorting will not work properly.

  • --toy: with this argument the cryptosystem will not have the minimum requirement of $\lambda \geq 128$ security bits against classical computers. Suggested in case you want to play around with the algorithm. For example:
./Sort --random 32 --delta 0.01 --permutation --toy_parameters
  • --verbose: prints some (hopefully) useful stuff. For example:
./Sort --random 32 --delta 0.01 --toy_parameters --network --verbose

Suggestions

As this work is still partially WIP, Feel free to open issues or to send us messages with suggestions/comments/critics!

Presentation

You can find a presentation of this work clicking here:

IMAGE ALT TEXT HERE

Authors

  • Lorenzo Rovida (lorenzo.rovida@unimib.it)
  • Alberto Leporati (alberto.leporati@unimib.it)
  • Simone Basile (s.basile@campus.unimib.it)

Made with <3 at Bicocca Security Lab, at University of Milan-Bicocca.

BisLab logo

Declaration

This is a proof of concept and, even though parameters are created with $\lambda \geq 128$ security bits (according to Homomorphic Encryption Standards), this circuit is intended for educational purposes only.

References

[MEHP25] Federico Mazzone, Maarten Everts, Florian Hahn and Andreas Peter, Efficient Ranking, Order Statistics, and Sorting under CKKS in: USENIX Security '25

About

Source code for the paper "Lightweight Sorting in Approximate Homomorphic Encryption"

ia.cr/2025/1150

Topics

cryptography sorting-algorithms homomorphic-encryption ckks fully-homomorphic-encryption

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages