TREBUCHET: Fully Homomorphic Encryption Accelerator for Deep Computation

David Bruce Cousins,Yuriy Polyakov,Ahmad Al Badawi,Matthew French,Andrew Schmidt,Ajey Jacob,Benedict Reynwar,Kellie Canida,Akhilesh Jaiswal,Clynn Mathew,Homer Gamil,Negar Neda,Deepraj Soni,Michail Maniatakos,Brandon Reagen,Naifeng Zhang,Franz Franchetti,Patrick Brinich,Jeremy Johnson,Patrick Broderick,Mike Franusich,Bo Zhang,Zeming Cheng,Massoud Pedram

from arxiv, 6 pages, 5 figures and 2 tables

Secure computation is of critical importance to not only the DoD, but across financial institutions, healthcare, and anywhere personally identifiable information (PII) is accessed. Traditional security techniques require data to be decrypted before performing any computation. When processed on untrusted systems the decrypted data is vulnerable to attacks to extract the sensitive information. To address these vulnerabilities Fully Homomorphic Encryption (FHE) keeps the data encrypted during computation and secures the results, even in these untrusted environments. However, FHE requires a significant amount of computation to perform equivalent unencrypted operations. To be useful, FHE must significantly close the computation gap (within 10x) to make encrypted processing practical. To accomplish this ambitious goal the TREBUCHET project is leading research and development in FHE processing hardware to accelerate deep computations on encrypted data, as part of the DARPA MTO Data Privacy for Virtual Environments (DPRIVE) program. We accelerate the major secure standardized FHE schemes (BGV, BFV, CKKS, FHEW, etc.) at >=128-bit security while integrating with the open-source PALISADE and OpenFHE libraries currently used in the DoD and in industry. We utilize a novel tile-based chip design with highly parallel ALUs optimized for vectorized 128b modulo arithmetic. The TREBUCHET coprocessor design provides a highly modular, flexible, and extensible FHE accelerator for easy reconfiguration, deployment, integration and application on other hardware form factors, such as System-on-Chip or alternate chip areas.

翻译：摘要：安全计算对于国防部、金融机构、医疗保健以及任何涉及个人身份信息访问的场景都至关重要。传统安全技术要求在进行任何计算前对数据解密，当在不可信系统上处理时，解密后的数据易受攻击导致敏感信息泄露。全同态加密通过保持数据在计算过程中处于加密状态，即使在不可信环境中也能确保结果安全。然而，全同态加密需要巨大的计算量来实现等效的非加密操作。为使其具备实用性，必须大幅缩小计算差距（10倍以内）以实现加密处理的实际部署。为实现这一宏伟目标，TREBUCHET项目作为DARPA MTO虚拟环境数据隐私计划的一部分，正主导研发全同态加密处理硬件以加速加密数据上的深度计算。我们支持≥128位安全强度的主流标准化全同态加密方案（BGV、BFV、CKKS、FHEW等），并与国防部和工业界当前使用的开源PALISADE和OpenFHE库集成。我们采用新型分片式芯片设计，配备针对矢量化128位模运算优化的高度并行ALU。TREBUCHET协处理器设计提供了高度模块化、灵活且可扩展的全同态加密加速器，便于在片上系统或其他替代芯片面积等硬件形态上的重配置、部署、集成与应用。