SEAL參數設置
文件原位置SEAL/context.h
// Copyright (c) Microsoft Corporation. All rights reserved.
// Licensed under the MIT license.
#pragma once
#include <unordered_map>
#include <functional>
#include <memory>
#include "seal/encryptionparams.h"
#include "seal/memorymanager.h"
#include "seal/util/smallntt.h"
#include "seal/util/baseconverter.h"
#include "seal/util/pointer.h"
namespace seal
{
/**
Stores a set of attributes (qualifiers) of a set of encryption parameters.
These parameters are mainly used internally in various parts of the library, e.g.
to determine which algorithmic optimizations the current support. The qualifiers
are automatically created by the SEALContext class, silently passed on to classes
such as Encryptor, Evaluator, and Decryptor, and the only way to change them is by
changing the encryption parameters themselves. In other words, a user will never
have to create their own instance of EncryptionParameterQualifiers, and in most
cases never have to worry about them at all.
@see EncryptionParameters::GetQualifiers for obtaining the EncryptionParameterQualifiers
corresponding to the current parameter set.
*/
/**
存儲一組加密參數的一組屬性(限定符)。 這些參數主要在庫的各個部分內部使用,例如, 確定當前支持的算法優化。 限定
符由SEALContext類自動創建,以靜默方式傳遞給Encryptor,Evaluator和Decryptor等類,更改它們的唯一方法是更改加密
參數本身。 換句話說,用戶永遠不必創建自己的EncryptionParameterQualifiers實例,並且在大多數情況下根本不必擔心
它們。
@see EncryptionParameters :: GetQualifiers,用於獲取與當前參數集對應的EncryptionParameterQualifiers。
*/
struct EncryptionParameterQualifiers
{
/**
If the encryption parameters are set in a way that is considered valid by SEAL, the
variable parameters_set is set to true.
*/
/**
如果加密參數以SEAL認爲有效的方式設置,則變量parameters_set設置爲true。
*/
bool parameters_set;
/**
Tells whether FFT can be used for polynomial multiplication. If the polynomial modulus
is of the form X^N+1, where N is a power of two, then FFT can be used for fast
multiplication of polynomials modulo the polynomial modulus. In this case the
variable using_fft will be set to true. However, currently SEAL requires this
to be the case for the parameters to be valid. Therefore, parameters_set can only
be true if using_fft is true.
*/
/**
判斷FFT是否可用於多項式乘法。 如果多項式模數具有X ^ N + 1的形式,其中N是2的冪,則FFT可以用於以多項式模數
爲模的多項式的快速乘法。 在這種情況下,變量using_fft將設置爲true。 但是,目前SEAL要求這是參數有效的情況。
因此,如果using_fft爲true,則parameters_set只能爲true。
*/
bool using_fft;
/**
Tells whether NTT can be used for polynomial multiplication. If the primes in the
coefficient modulus are congruent to 1 modulo 2N, where X^N+1 is the polynomial
modulus and N is a power of two, then the number-theoretic transform (NTT) can be
used for fast multiplications of polynomials modulo the polynomial modulus and
coefficient modulus. In this case the variable using_ntt will be set to true. However,
currently SEAL requires this to be the case for the parameters to be valid. Therefore,
parameters_set can only be true if using_ntt is true.
*/
/**
告知NTT是否可用於多項式乘法。 如果係數模數中的素數與1模2N一致,其中X ^ N + 1是多項式模數,N是2的冪,那麼
數論變換(NTT)可用於多項式模的快速乘法 多項式模數和係數模數。 在這種情況下,變量using_ntt將設置爲true。
但是,目前SEAL要求這是參數有效的情況。 因此,如果using_ntt爲true,則parameters_set只能爲true。
*/
bool using_ntt;
/**
Tells whether batching is supported by the encryption parameters. If the plaintext
modulus is congruent to 1 modulo 2N, where X^N+1 is the polynomial modulus and N is
a power of two, then it is possible to use the BatchEncoder class to view plaintext
elements as 2-by-(N/2) matrices of integers modulo the plaintext modulus. This is
called batching, and allows the user to operate on the matrix elements (slots) in
a SIMD fashion, and rotate the matrix rows and columns. When the computation is
easily vectorizable, using batching can yield a huge performance boost. If the
encryption parameters support batching, the variable using_batching is set to true.
*/
bool using_batching;
/**
Tells whether fast plain lift is supported by the encryption parameters. A certain
performance optimization in multiplication of a ciphertext by a plaintext
(Evaluator::multiply_plain) and in transforming a plaintext element to NTT domain
(Evaluator::transform_to_ntt) can be used when the plaintext modulus is smaller than
each prime in the coefficient modulus. In this case the variable using_fast_plain_lift
is set to true.
*/
/**
告知加密參數是否支持批處理。 如果明文模數與1模2N一致,其中X ^ N + 1是多項式模數而N是2的冪,則可以使用
BatchEncoder類將明文元素視爲2-by-(N / 2)整數矩陣以明文模數爲模。 這稱爲批處理,允許用戶以SIMD方式操作
矩陣元素(插槽),並旋轉矩陣行和列。 當計算易於矢量化時,使用批處理可以產生巨大的性能提升。 如果加密參數支
持批處理,則變量using_batching將設置爲true。
*/
bool using_fast_plain_lift;
/**
Tells whether the encryption parameters are secure based on the standard parameters
from HomomorphicEncryption.org security standard.
*/
/**
根據HomomorphicEncryption.org安全標準中的標準參數,判斷加密參數是否安全。
*/
bool using_he_std_security;
private:
EncryptionParameterQualifiers() :
parameters_set(false),
using_fft(false),
using_ntt(false),
using_batching(false),
using_fast_plain_lift(false),
using_he_std_security(false)
{
}
friend class SEALContext;
};
/**
Performs sanity checks (validation) and pre-computations for a given set of encryption
parameters. While the EncryptionParameters class is intended to be a light-weight class
to store the encryption parameters, the SEALContext class is a heavy-weight class that
is constructed from a given set of encryption parameters. It validates the parameters
for correctness, evaluates their properties, and performs and stores the results of
several costly pre-computations.
After the user has set at least the poly_modulus, coeff_modulus, and plain_modulus
parameters in a given EncryptionParameters instance, the parameters can be validated
for correctness and functionality by constructing an instance of SEALContext. The
constructor of SEALContext does all of its work automatically, and concludes by
constructing and storing an instance of the EncryptionParameterQualifiers class, with
its flags set according to the properties of the given parameters. If the created
instance of EncryptionParameterQualifiers has the parameters_set flag set to true, the
given parameter set has been deemed valid and is ready to be used. If the parameters
were for some reason not appropriately set, the parameters_set flag will be false,
and a new SEALContext will have to be created after the parameters are corrected.
@see EncryptionParameters for more details on the parameters.
@see EncryptionParameterQualifiers for more details on the qualifiers.
*/
/ **
對給定的一組加密參數執行完整性檢查(驗證)和預計算。雖然EncryptionParameters類旨在用於存儲加密參數的輕量級類,
但SEALContext類是一個重量級類,它是根據給定的一組加密參數構造的。它驗證參數的正確性,評估其屬性,並執行和存儲幾
個昂貴的預計算的結果。
在用戶在給定的EncryptionParameters實例中至少設置了poly_modulus,coeff_modulus和plain_modulus參數之後,可以
通過構造SEALContext的實例來驗證參數的正確性和功能性。 SEALContext的構造函數自動完成所有工作,最後通過構造和存
儲EncryptionParameterQualifiers類的實例來結束,其標誌根據給定參數的屬性設置。如果創建的
EncryptionParameterQualifiers實例將parameters_set標誌設置爲true,則認爲給定的參數集有效並且可以使用。如果參
數由於某種原因未正確設置,則parameters_set標誌將爲false,並且必須在更正參數後創建新的SEALContext。
@see EncryptionParameters瞭解有關參數的更多詳細信息。
@see EncryptionParameterQualifiers瞭解有關限定符的更多詳細信息。
* /
class SEALContext
{
public:
class ContextData
{
friend class SEALContext;
public:
ContextData() = delete;
ContextData(const ContextData ©) = delete;
ContextData(ContextData &&move) = default;
ContextData &operator =(ContextData &&move) = default;
/**
Returns a const reference to the underlying encryption parameters.
*/
/**
返回對基礎加密參數的const引用。
*/
inline auto &parms() const
{
return parms_;
}
/**
Returns a copy of EncryptionParameterQualifiers corresponding to the
current encryption parameters. Note that to change the qualifiers it is
necessary to create a new instance of SEALContext once appropriate changes
to the encryption parameters have been made.
*/
/**
返回與當前加密參數對應的EncryptionParameterQualifiers的副本。 請注意,要更改限定符,必須在對加密參數
進行適當更改後創建SEALContext的新實例。
*/
inline auto qualifiers() const
{
return qualifiers_;
}
/**
Returns a pointer to a pre-computed product of all primes in the coefficient
modulus. The security of the encryption parameters largely depends on the
bit-length of this product, and on the degree of the polynomial modulus.
*/
/**
返回指向係數模數中所有素數的預先計算乘積的指針。 加密參數的安全性很大程度上取決於該產品的位長以及多項式
模數的程度。
*/
inline const std::uint64_t *total_coeff_modulus() const
{
return total_coeff_modulus_.get();
}
/**
Returns the significant bit count of the total coefficient modulus.
*/
/**
返回總係數模數的有效位數。
*/
inline auto total_coeff_modulus_bit_count() const
{
return total_coeff_modulus_bit_count_;
}
/**
Returns a const reference to the base converter.
*/
/**
返回對基本轉換器的const引用。
*/
inline auto &base_converter() const
{
return base_converter_;
}
/**
Returns a const reference to the NTT tables.返回對NTT表的const引用
*/
inline auto &small_ntt_tables() const
{
return small_ntt_tables_;
}
/**
Returns a const reference to the NTT tables.返回對NTT表的const引用
*/
inline auto &plain_ntt_tables() const
{
return plain_ntt_tables_;
}
/**
Return a pointer to BFV "Delta", i.e. coefficient modulus divided by
plaintext modulus.返回指向BFV“Delta”的指針,即係數模數除以明文模數。
*/
inline const std::uint64_t *coeff_div_plain_modulus() const
{
return coeff_div_plain_modulus_.get();
}
/**
Return the threshold for the upper half of integers modulo plain_modulus.
This is simply (plain_modulus + 1) / 2.
返回整數modulo plain_modulus的上半部分的閾值。(plain_modulus + 1)/ 2
*/
inline std::uint64_t plain_upper_half_threshold() const
{
return plain_upper_half_threshold_;
}
/**
Return a pointer to the plaintext upper half increment, i.e. coeff_modulus
minus plain_modulus. The upper half increment is represented as an integer
for the full product coeff_modulus if using_fast_plain_lift is false and is
otherwise represented modulo each of the coeff_modulus primes in order.
返回指向明文上半部增量的指針,即coeff_modulus減去plain_modulus。 如果using_fast_plain_lift爲假,則
上半部分增量表示爲完整乘積coeff_modulus的整數,否則按順序以每個coeff_modulus素數爲模。
*/
inline const std::uint64_t *plain_upper_half_increment() const
{
return plain_upper_half_increment_.get();
}
/**
Return a pointer to the upper half threshold with respect to the total
coefficient modulus. This is needed in CKKS decryption.
返回指向相對於總係數模數的上半閾值的指針。 這在CKKS解密中是必需的。
*/
inline const std::uint64_t *upper_half_threshold() const
{
return upper_half_threshold_.get();
}
/**
Return a pointer to the upper half increment used for computing Delta*m
and converting the coefficients to modulo coeff_modulus. For example,
t-1 in plaintext should change into
q - Delta = Delta*t + r_t(q) - Delta
= Delta*(t-1) + r_t(q)
so multiplying the message by Delta is not enough and requires also an
addition of r_t(q). This is precisely the upper_half_increment. Note that
this operation is only done for negative message coefficients, i.e. those
that exceed plain_upper_half_threshold.
返回指向用於計算Delta * m的上半部增量並將係數轉換爲模數coeff_modulus的指針。 例如,明文中的t-1應該變
爲q - Delta = Delta * t + r_t(q) - Delta = Delta *(t-1)+ r_t(q)因此將消息乘以Delta是不夠
的並且還需要 添加r_t(q)。 這正是upper_half_increment。 注意,該操作僅針對負消息係數,即超過
plain_upper_half_threshold的消息係數。
*/
inline const std::uint64_t *upper_half_increment() const
{
return upper_half_increment_.get();
}
/**
Returns a shared_ptr to the context data corresponding to the next parameters
in the modulus switching chain. If the current data is the last one in the
chain, then the result is nullptr.
將shared_ptr返回到與模數轉換鏈中的下一個參數對應的上下文數據。 如果當前數據是鏈中的最後一個數據,
則結果爲nullptr。
*/
inline auto next_context_data() const
{
return next_context_data_;
}
/**
Returns the index of the parameter set in a chain. The initial parameters
have index 0 and the index increases sequentially in the parameter chain.
返回鏈中參數集的索引。 初始參數具有索引0並且索引在參數鏈中順序增加。
*/
inline std::size_t chain_index() const
{
return chain_index_;
}
private:
ContextData(EncryptionParameters parms, MemoryPoolHandle pool) :
pool_(std::move(pool)), parms_(parms)
{
if (!pool_)
{
throw std::invalid_argument("pool is uninitialized");
}
}
MemoryPoolHandle pool_;
EncryptionParameters parms_;
EncryptionParameterQualifiers qualifiers_;
util::Pointer<util::BaseConverter> base_converter_;
util::Pointer<util::SmallNTTTables> small_ntt_tables_;
util::Pointer<util::SmallNTTTables> plain_ntt_tables_;
util::Pointer<std::uint64_t> total_coeff_modulus_;
int total_coeff_modulus_bit_count_;
util::Pointer<std::uint64_t> coeff_div_plain_modulus_;
std::uint64_t plain_upper_half_threshold_;
util::Pointer<std::uint64_t> plain_upper_half_increment_;
util::Pointer<std::uint64_t> upper_half_threshold_;
util::Pointer<std::uint64_t> upper_half_increment_;
std::shared_ptr<const ContextData> next_context_data_{ nullptr };
std::size_t chain_index_ = 0;
};
SEALContext() = delete;
/**
Creates an instance of SEALContext, and performs several pre-computations
on the given EncryptionParameters.
@param[in] parms The encryption parameters
@param[in] expand_mod_chain Determines whether the modulus switching chain
should be created
*/
static auto Create(const EncryptionParameters &parms,
bool expand_mod_chain = true)
{
return std::shared_ptr<SEALContext>(
new SEALContext(parms, expand_mod_chain,
MemoryManager::GetPool()));
}
/**
Returns a const reference to ContextData class corresponding to the
encryption parameters. This is the first set of parameters in a chain
of parameters when modulus switching is used.
*/
inline auto context_data() const
{
return context_data_map_.at(first_parms_id_);
}
/**
Returns an optional const reference to ContextData class corresponding to
the parameters with a given parms_id. If parameters with the given parms_id
are not found then the function returns nullptr.
@param[in] parms_id The parms_id of the encryption parameters
*/
inline auto context_data(parms_id_type parms_id) const
{
auto data = context_data_map_.find(parms_id);
return (data != context_data_map_.end()) ?
data->second : std::shared_ptr<ContextData>{ nullptr };
}
/**
Returns whether the encryption parameters are valid.
*/
inline auto parameters_set() const
{
return context_data()->qualifiers_.parameters_set;
}
/**
Returns a parms_id_type corresponding to the first set
of encryption parameters.
*/
inline auto &first_parms_id() const
{
return first_parms_id_;
}
/**
Returns a parms_id_type corresponding to the last set
of encryption parameters.
*/
inline auto &last_parms_id() const
{
return last_parms_id_;
}
private:
SEALContext(const SEALContext ©) = delete;
SEALContext(SEALContext &&source) = delete;
SEALContext &operator =(const SEALContext &assign) = delete;
SEALContext &operator =(SEALContext &&assign) = delete;
/**
Creates an instance of SEALContext, and performs several pre-computations
on the given EncryptionParameters.
@param[in] parms The encryption parameters
@param[in] expand_mod_chain Determines whether the modulus switching chain
should be created
@param[in] pool The MemoryPoolHandle pointing to a valid memory pool
@throws std::invalid_argument if pool is uninitialized
*/
SEALContext(EncryptionParameters parms, bool expand_mod_chain,
MemoryPoolHandle pool);
ContextData validate(EncryptionParameters parms);
MemoryPoolHandle pool_;
parms_id_type first_parms_id_;
parms_id_type last_parms_id_;
std::unordered_map<
parms_id_type, std::shared_ptr<const ContextData>> context_data_map_{};
};
}