improved information set decoding
play

Improved Information Set Decoding Alexander Meurer , Ruhr-Universitt - PowerPoint PPT Presentation

Dec 27, 2022 •198 likes •1.13k views

Improved Information Set Decoding Alexander Meurer , Ruhr-Universitt Bochum CBC Workshop 2012, Lyngby The Asymptotic Playground The Asymptotic Playground We are interested in asymptotically fastest algorithms Prominent example: Matrix

  1. Improved Information Set Decoding Alexander Meurer , Ruhr-Universität Bochum CBC Workshop 2012, Lyngby

  2. The Asymptotic Playground The Asymptotic Playground ● We are interested in asymptotically fastest algorithms ● Prominent example: Matrix multiplication ● Measure runtime as for n x n - matrices

  3. The Asymptotic Playground The Asymptotic Playground ● We are interested in asymptotically fastest algorithms ● Prominent example: Matrix multiplication ● Measure runtime as for n x n - matrices naive 2 3

  4. The Asymptotic Playground The Asymptotic Playground ● We are interested in asymptotically fastest algorithms ● Prominent example: Matrix multiplication ● Measure runtime as for n x n - matrices Strassen naive 2 2,808 3

  5. The Asymptotic Playground The Asymptotic Playground ● We are interested in asymptotically fastest algorithms ● Prominent example: Matrix multiplication ● Measure runtime as for n x n - matrices CW Strassen naive 2 2,376 2,808 3

  6. The Asymptotic Playground The Asymptotic Playground ● We are interested in asymptotically fastest algorithms ● Prominent example: Matrix multiplication ● Measure runtime as for n x n - matrices Williams CW Strassen naive 2 2,3727 2,376 2,808 3

  7. The Asymptotic Playground The Asymptotic Playground ● We are interested in asymptotically fastest algorithms ● Prominent example: Matrix multiplication ● Measure runtime as for n x n - matrices Williams CW Strassen naive 2 2,3727 2,376 2,808 3 ● Strassen still performs best in practice (for reasonable n)

  8. The Asymptotic Playground The Asymptotic Playground ● We are interested in asymptotically fastest algorithms ● Prominent example: Matrix multiplication ● Measure runtime as for n x n - matrices Williams CW Strassen naive 2 2,3727 2,376 2,808 3 ● Strassen still performs best in practice (for reasonable n) This talk: recent (asymptotic) progress in ISD .

  9. Recap Binary Linear Codes Recap Binary Linear Codes ● C = random binary [n,k,d] code ● n = length / k = dimension / d = minimum distance Bounded Distance Decoding (BDD) Bounded Distance Decoding (BDD) ● Given x = c + e with c C · · 2 4 5 d-1 and w := wt( e ) = 4 5 d-1 2 2 x · c ● Find e and thus c = x + e · ·

  10. Comparing Running Times Comparing Running Times How to compare performance of decoding algorithms ● Running time T(n,k,d) ● Fixed code rate R = k/n ● For n→∞, k and d are related via Gilbert-Varshamov bound, thus T(n,k,d) = T(n,k) ● Compare algorithms by complexity coeffcient F(k), i.e. T(n,k) = 2 F(k) • n + o(n)

  11. Comparing Running Times Comparing Running Times How to compare performance of decoding algorithms Minimize F(k)! Minimize F(k)! ● Running time T(n,k,d) ● Fixed code rate R = k/n ● For n→∞, k and d are related via Gilbert-Varshamov bound, thus T(n,k,d) = T(n,k) ● Compare algorithms by complexity coeffcient F(k), i.e. T(n,k) = 2 F(k) • n + o(n)

  12. Syndrome Decoding Syndrome Decoding (BDD) Given x = c + e with c C and wt( e )=w, fnd e ! 2 ● H = parity check matrix ● Consider syndrome s := s( x ) = H · x = H ·( c + e ) = H · e → Find linear combination of w columns of H matching s weight w n H s n-k = + + =

  13. Syndrome Decoding Syndrome Decoding (BDD) Given x = c + e with c C and wt( e )=w, fnd e ! 2 ● H = parity check matrix ● Consider syndrome s := s( x ) = H · x = H ·( c + e ) = H · e → Find linear combination of w columns of H matching s weight w n Brute-Force complexity Brute-Force complexity H s n-k = + + = T(n,k,d) = T(n,k,d) =

  14. Complexity Coeffcients (BDD) Complexity Coeffcients (BDD) Brute-Force F(k) 0,05 0,06 0,3868

  15. Complexity Coeffcients (BDD) Complexity Coeffcients (BDD) Prange Brute-Force F(k) 0,05 0,0576 0,06 0,3868

  16. Complexity Coeffcients (BDD) Complexity Coeffcients (BDD) Stern Prange Brute-Force F(k) 0,05 0,0557 0,0576 0,06 0,3868

  17. Some Basic Observations for BDD Some Basic Observations for BDD Allowed (linear algebra) transformations ● Permuting the columns of H does not change the problem

  18. Some Basic Observations for BDD Some Basic Observations for BDD Allowed (linear algebra) transformations ● Permuting the columns of H does not change the problem weight w n H s = n-k

  19. Some Basic Observations for BDD Some Basic Observations for BDD Allowed (linear algebra) transformations ● Permuting the columns of H does not change the problem weight w weight w n n H H s s = = n-k n-k

  20. Some Basic Observations for BDD Some Basic Observations for BDD Allowed (linear algebra) transformations ● Permuting the columns of H does not change the problem ● Elementary row operations on H do not change the problem

  21. Some Basic Observations for BDD Some Basic Observations for BDD Allowed (linear algebra) transformations ● Permuting the columns of H does not change the problem ● Elementary row operations on H do not change the problem weight w n H = s n-k

  22. Some Basic Observations for BDD Some Basic Observations for BDD Allowed (linear algebra) transformations ● Permuting the columns of H does not change the problem ● Elementary row operations on H do not change the problem weight w n U G U G H s = n-k Invertible (n-k)x(n-k) matrix

  23. Randomized quasi-systematic form Randomized quasi-systematic form ● Work on randomly column-permuted version of H ● Transform H into quasi-systematic form k+l n-k-l q 1 , ..., q k+l 0 l rows H = I n-k-l I n-k-l Q ' First used in generalized ISD framework of [FS09]

  24. Information Set Decoding Information Set Decoding ''Reducing the brute-force search space by linear algebra.''

  25. The ISD Principle The ISD Principle k+l n-k-l ● Structure of H allows to divide e = e 1 e 2 e 1 e 2 q 1 , ..., q k+l 0 I n-k-l I n-k-l Q '

  26. The ISD Principle The ISD Principle ● Structure of H allows to divide e = e 1 e 2 e 1 e 2 e 1 e 2 q 1 , ..., q k+l q 1 , ..., q k+l 0 0 = + I n-k-l I n-k-l I n-k-l I n-k-l Q ' Q '

  27. The ISD Principle The ISD Principle ● Structure of H allows to divide e = e 1 e 2 e 1 e 2 e 1 e 2 q 1 , ..., q k+l q 1 , ..., q k+l 0 0 = + I n-k-l I n-k-l I n-k-l I n-k-l Q ' Q ' ! * 0 l coordinates = = + s * * * *

  28. The ISD Principle The ISD Principle ● Structure of H allows to divide e = e 1 e 2 e 1 e 2 e 1 e 2 q 1 , ..., q k+l q 1 , ..., q k+l 0 0 = + I n-k-l I n-k-l I n-k-l I n-k-l Q ' Q ' ! Focus on e 1 matching Focus on e 1 matching * 0 l coordinates = = + s s on frst l coordinates * * s on frst l coordinates * *

  29. The ISD Principle The ISD Principle ● Structure of H allows to divide e = Find all e 1 of weight p matching s on frst l coordinates e 1 e 2 e 1 e 2 e 1 e 2 q 1 , ..., q k+l q 1 , ..., q k+l 0 0 = + I n-k-l I n-k-l I n-k-l I n-k-l Q ' Q ' ! * 0 l coordinates = = + s * * * *

  30. The ISD Principle The ISD Principle ● Structure of H allows to divide e = Find all e 1 of weight p matching s on frst l coordinates e 1 e 2 e 1 e 1 e 2 e 2 e 1 e 2 q 1 , ..., q k+l q 1 , ..., q k+l q 1 , ..., q k+l 0 0 0 = = + ● Method only recovers I n-k-l I n-k-l I n-k-l I n-k-l I n-k-l I n-k-l Q ' Q ' Q ' particular error patterns k+l n-k-l e 1 e 2 p w-p ! * 0 l coordinates = = = ● If no solution found: + s * * → Rerandomize H * *

  31. The ISD Principle The ISD Principle ● 1 st step (randomization): Compute „fresh“ random quasi- systematic form of H 0 H ● 2 nd step (search): Try to fnd a solution e amongst all n-k-l k+l with e 1 e 2 e 1 w-p p = q 1 , ..., q k+l s

  32. The ISD Principle The ISD Principle ● 1 st step (randomization): Compute „fresh“ random quasi- systematic form of H 0 H T = Pr[„good rand.“] -1 * T[search] ● 2 nd step (search): Try to fnd a solution e amongst all n-k-l k+l with e 1 e 2 e 1 w-p p = q 1 , ..., q k+l s

  33. The ISD Search Step (Notation) The ISD Search Step (Notation) ● Find vector e 1 of weight p with e 1 = q 1 , ..., q k+l s

  34. The ISD Search Step (Notation) The ISD Search Step (Notation) ● Find vector e 1 of weight p with e 1 = q 1 , ..., q k+l s ● Find selection with

  35. The ISD Search Step (Notation) The ISD Search Step (Notation) ● Find vector e 1 of weight p with e 1 = q 1 , ..., q k+l s ● Find selection with We exploit 1+1=0 to fnd e 1 more effciently!

  36. A Meet-in-the-Middle Approach A Meet-in-the-Middle Approach Find a selection with ● Disjoint partition into left and right half (k+l) p (k+l) / 2 p / 2 p / 2 (k+l) / 2

  37. A Meet-in-the-Middle Approach A Meet-in-the-Middle Approach Find a selection with ● To fnd run a Meet-in-the-Middle algorithm based on ● Same F(k) as recent Ball-Collision decoding [BLP11] as shown in [MMT11]

  38. Complexity Coeffcients (BDD) Complexity Coeffcients (BDD) Ball-Collision Stern Prange Brute-Force F(k) 0,05 0,0557 0,0576 0,06 0,3868 0,0556

  39. The Representation Technique [HGJ10] The Representation Technique [HGJ10] How to fnd a needle N in a haystack H... ● Expand H into larger stack H' ● Expanding H' introduces r many representations N 1 , … , N r ● Examine a 1/r – fraction of H' to fnd one N i

Recommend

Successive Cancellation Decoding of Single Parity-Check Product Codes: Analysis and Improved

Successive Cancellation Decoding of Single Parity-Check Product Codes: Analysis and Improved

Institute for Communications Engineering Technische Universit at M unchen Successive Cancellation Decoding of Single Parity-Check Product Codes: Analysis and Improved Decoding Algorithms skun 1 , 2 Mustafa Cemil Co Joint work with

299 views • 17 slides
Why decoding? Understanding the neural code. Neural Decoding Given spikes, what was the

Why decoding? Understanding the neural code. Neural Decoding Given spikes, what was the

Why decoding? Understanding the neural code. Neural Decoding Given spikes, what was the stimulus? What aspects of the stimulus does the system encode? (capacity is limited) Mark van Rossum What information can be extracted from spike trains:

779 views • 16 slides
List Decoding of Concatenated Codes: Improved Performance Estimates Alexander Barg Andrew

List Decoding of Concatenated Codes: Improved Performance Estimates Alexander Barg Andrew

List Decoding of Concatenated Codes: Improved Performance Estimates Alexander Barg Andrew McGregor ISIT 2004 1/73 List Decoding of Concatenated Codes: Improved Performance Estimates Alexander Barg Andrew McGregor ISIT 2004 1/73 Important

680 views • 52 slides
Improved Reduction from BDD to uSVP Shi Bai; Damien Stehl; Weiqiang Wen ENS de Lyon Improved

Improved Reduction from BDD to uSVP Shi Bai; Damien Stehl; Weiqiang Wen ENS de Lyon Improved

Rump Session 2016 Improved Reduction from BDD to uSVP Shi Bai; Damien Stehl; Weiqiang Wen ENS de Lyon Improved reduction from BDD to U SVP Shi Bai, Damien Stehl e and Weiqiang Wen Bounded Distance Decoding (BDD ) Let > 0. Given

322 views • 7 slides
Information Management Demonstrating Improved Project Performance Michael Gaunt Information

Information Management Demonstrating Improved Project Performance Michael Gaunt Information

Changing Behaviours through Information Management Demonstrating Improved Project Performance Michael Gaunt Information Manager @MikeGaunt 1 Technology is the most promising lever for productivity improvements 2 Key Themes Improved

666 views • 20 slides
Observation Decoding with Sensor Models: Recognition Tasks via Classical Planning Diego Aineto,

Observation Decoding with Sensor Models: Recognition Tasks via Classical Planning Diego Aineto,

Observation Decoding with Sensor Models: Recognition Tasks via Classical Planning Diego Aineto, Sergio Jimenez, Eva Onaindia October 16, 2020 Universitat Polit` ecnica de Val` encia 1 What is decoding? What is decoding? Decoding : finding

848 views • 26 slides
Chapter 6 Decoding Statistical Machine Translation Decoding We have a mathematical model for

Chapter 6 Decoding Statistical Machine Translation Decoding We have a mathematical model for

Chapter 6 Decoding Statistical Machine Translation Decoding We have a mathematical model for translation p ( e | f ) Task of decoding: find the translation e best with highest probability e best = argmax e p ( e | f ) Two types of

571 views • 34 slides
Information Theory Lecture 8 BCH codes BCH codes: R8.45 (R5.6) Decoding BCH (and

Information Theory Lecture 8 BCH codes BCH codes: R8.45 (R5.6) Decoding BCH (and

Information Theory Lecture 8 BCH codes BCH codes: R8.45 (R5.6) Decoding BCH (and RS) codes: R6 Reed-Solomon codes RS codes: R5.13 Mikael Skoglund, Information Theory 1/15 The BCH Bound Theorem : Let C be cyclic of

276 views • 8 slides
By et al Siegfried Engelmann Decoding Strategies: Decoding B1- Teacher's Presentation Book

By et al Siegfried Engelmann Decoding Strategies: Decoding B1- Teacher's Presentation Book

By et al Siegfried Engelmann Decoding Strategies: Decoding B1- Teacher's Presentation Book (Corrective Reading) (3rd Revised edition) From McGraw-Hill Inc.,US By et al Siegfried Engelmann Decoding Strategies: Decoding B1- Teacher's Presentation

233 views • 5 slides
Quantum algorithms for Information Set Decoding Elena Kirshanova ENS Lyon April 11, 2018 Quantum

Quantum algorithms for Information Set Decoding Elena Kirshanova ENS Lyon April 11, 2018 Quantum

Quantum algorithms for Information Set Decoding Elena Kirshanova ENS Lyon April 11, 2018 Quantum ISD | E.Kirshanova Information Set Decoding (ISD) The ISD Problem Given H P F p n k q n , s P F n k , find e P F n 2 s.t. He s 2 2 e

669 views • 38 slides
Wireless Notification without Packet Decoding International Conference on Autonomic Computing

Wireless Notification without Packet Decoding International Conference on Autonomic Computing

Wireless Notification without Packet Decoding International Conference on Autonomic Computing (USENIX : ICAC ), June 2013 Kevin Chen and H.T. Kung May 3, 2013 Receiver 1 Sensor Packet Decoding Speculative Packet Reception No information is

106 views • 6 slides
Beyond Sequential decoding toward parallel decoding In the context of neural sequence modelling

Beyond Sequential decoding toward parallel decoding In the context of neural sequence modelling

Beyond Sequential decoding toward parallel decoding In the context of neural sequence modelling Kyunghyun Cho New York University & Facebook AI Research Joint work with Jason Lee and Elman Mansimov Neural sequence modeling An arbitrary

461 views • 25 slides
Decoding challenge Assessing the practical hardness of syndrome decoding for code-based

Decoding challenge Assessing the practical hardness of syndrome decoding for code-based

Decoding challenge Assessing the practical hardness of syndrome decoding for code-based cryptography Matthieu Lequesne Sorbonne Universit Inria Paris, team Cosmiq February 27, 2020 All you ever wanted to know about code-based crypto

1.53k views • 132 slides
Decoding in SMT Nitin Madnani February 8, 2006 The Decoding Problem Search Inputs:

Decoding in SMT Nitin Madnani February 8, 2006 The Decoding Problem Search Inputs:

Decoding in SMT Nitin Madnani February 8, 2006 The Decoding Problem Search Inputs: Input string Bunch of statistical models A function to assign score to any translation Output: Best scoring translation

660 views • 34 slides
Information Set Decoding in the Lee Metric Violetta Weger joint work with Franco Chiaraluce,

Information Set Decoding in the Lee Metric Violetta Weger joint work with Franco Chiaraluce,

Information Set Decoding in the Lee Metric Violetta Weger joint work with Franco Chiaraluce, Marco Baldi, Massimo Battaglioni, Anna-Lena Horlemann-Trautmann, Edoardo Persichetti and Paolo Santini University of Zurich CBCrypto 2020 9 May 2020

276 views • 25 slides
Statistical models for neural encoding, decoding, information estimation, and optimal on-line

Statistical models for neural encoding, decoding, information estimation, and optimal on-line

Statistical models for neural encoding, decoding, information estimation, and optimal on-line stimulus design Liam Paninski Department of Statistics and Center for Theoretical Neuroscience Columbia University http://www.stat.columbia.edu/

725 views • 40 slides
Decoding Philipp Koehn 17 September 2020 Philipp Koehn Machine Translation: Decoding 17

Decoding Philipp Koehn 17 September 2020 Philipp Koehn Machine Translation: Decoding 17

Decoding Philipp Koehn 17 September 2020 Philipp Koehn Machine Translation: Decoding 17 September 2020 Decoding 1 We have a mathematical model for translation p ( e | f ) Task of decoding: find the translation e best with highest

1.04k views • 61 slides
Smaller decoding exponents: ball-collision decoding D. J. Bernstein University of Illinois at

Smaller decoding exponents: ball-collision decoding D. J. Bernstein University of Illinois at

Smaller decoding exponents: ball-collision decoding D. J. Bernstein University of Illinois at Chicago Joint work with: Tanja Lange Technische Universiteit Eindhoven Christiane Peters University of Illinois at Chicago Context: speed What is

500 views • 36 slides
Decoding One Out of Many Nicolas Sendrier INRIA Paris-Rocquencourt, equipe-projet SECRET

Decoding One Out of Many Nicolas Sendrier INRIA Paris-Rocquencourt, equipe-projet SECRET

Decoding One Out of Many Nicolas Sendrier INRIA Paris-Rocquencourt, equipe-projet SECRET Code-based Cryptography Workshop 11-12 May 2011, Eindhoven, The Netherlands Computational Syndrome Decoding Problem: Syndrome Decoding H { 0 , 1 }

882 views • 37 slides
Electronic Distribution of Technical Information via Satellite (EDTIS) Improved Access to

Electronic Distribution of Technical Information via Satellite (EDTIS) Improved Access to

Electronic Distribution of Technical Information via Satellite (EDTIS) Improved Access to Technical Information Charles Satterthwaite: AFRL/IFTA Steve Tomashefsky: Raytheon 17 June 1999 JAWSSS 99 Embedded Information System

447 views • 10 slides
Efficient Video Decoding on GPUs Efficient Video Decoding on GPUs by Point Based Rendering by

Efficient Video Decoding on GPUs Efficient Video Decoding on GPUs by Point Based Rendering by

Efficient Video Decoding on GPUs Efficient Video Decoding on GPUs by Point Based Rendering by Point Based Rendering Bo Han, Bingfeng Zhou Peking University Outline Outline Motivation and Goal Previous work Review of video decoding

741 views • 30 slides
Improved bounds on the word error probability of RA(2) codes with linear programming based

Improved bounds on the word error probability of RA(2) codes with linear programming based

Improved bounds on the word error probability of RA(2) codes with linear programming based decoding Nissim Halabi Tel-Aviv University Joint work with Guy Even Outline Turbo-like codes. classic Turbo codes & turbo-like

502 views • 34 slides
Missing-data masks in all-combinations multi-band decoding It is shown that for MAP decoding

Missing-data masks in all-combinations multi-band decoding It is shown that for MAP decoding

morris@idiap.ch http://www.idiap.ch/ Missing-data masks in all-combinations multi-band decoding It is shown that for MAP decoding with all-comb experts multi-band expert weighting can make use of same soft missing-data mask as used with

477 views • 5 slides
6.02 Fall 2012 Lecture #7 Viterbi decoding of convolutional codes Path and branch metrics

6.02 Fall 2012 Lecture #7 Viterbi decoding of convolutional codes Path and branch metrics

6.02 Fall 2012 Lecture #7 Viterbi decoding of convolutional codes Path and branch metrics Hard-decision & soft-decision decoding Performance issues: decoder complexity, post- decoding BER, free distance concept 6.02 Fall 2012

488 views • 20 slides

More recommend