Markov chain Monte Carlo algorithms for lattice Gaussian sampling

To be considered for an IEEE Jack Keil Wolf ISIT Student Paper Award. Sampling from a lattice Gaussian distribution is emerging as an important problem in various areas such as coding and cryptography. The default sampling algorithm - Klein's algorithm yields a distribution close to the lattice Gaussian only if the standard deviation is sufficiently large. In this paper, we propose the Markov chain Monte Carlo (MCMC) method for lattice Gaussian sampling when this condition is not satisfied. In particular, we present a sampling algorithm based on Gibbs sampling, which converges to the target lattice Gaussian distribution for any value of the standard deviation. To improve the convergence rate, a more efficient algorithm referred to as Gibbs-Klein sampling is proposed, which samples block by block using Klein's algorithm. We show that Gibbs-Klein sampling yields a distribution close to the target lattice Gaussian, under a less stringent condition than that of the original Klein algorithm.

[1]  RegevOded On lattices, learning with errors, random linear codes, and cryptography , 2009 .

[2]  Tim Hesterberg,et al.  Monte Carlo Strategies in Scientific Computing , 2002, Technometrics.

[3]  Frank R. Kschischang,et al.  Optimal nonuniform signaling for Gaussian channels , 1993, IEEE Trans. Inf. Theory.

[4]  R. Stephenson A and V , 1962, The British journal of ophthalmology.

[5]  Cong Ling,et al.  Decoding by Sampling — Part II: Derandomization and Soft-Output Decoding , 2013, IEEE Transactions on Communications.

[6]  Philip N. Klein,et al.  Finding the closest lattice vector when it's unusually close , 2000, SODA '00.

[7]  G. Roberts,et al.  Updating Schemes, Correlation Structure, Blocking and Parameterization for the Gibbs Sampler , 1997 .

[8]  Damien Stehlé,et al.  Classical hardness of learning with errors , 2013, STOC '13.

[9]  Oded Regev,et al.  On lattices, learning with errors, random linear codes, and cryptography , 2009, JACM.

[10]  Brent Waters,et al.  Homomorphic Encryption from Learning with Errors: Conceptually-Simpler, Asymptotically-Faster, Attribute-Based , 2013, CRYPTO.

[11]  Daniele Micciancio,et al.  Worst-case to average-case reductions based on Gaussian measures , 2004, 45th Annual IEEE Symposium on Foundations of Computer Science.

[12]  Cong Ling,et al.  Decoding by Sampling: A Randomized Lattice Algorithm for Bounded Distance Decoding , 2010, IEEE Transactions on Information Theory.

[13]  Chris Peikert,et al.  An Efficient and Parallel Gaussian Sampler for Lattices , 2010, CRYPTO.

[14]  W. Banaszczyk New bounds in some transference theorems in the geometry of numbers , 1993 .

[15]  Rong Chen,et al.  Convergence analyses and comparisons of Markov chain Monte Carlo algorithms in digital communications , 2002, IEEE Trans. Signal Process..

[16]  Cong Ling,et al.  Semantically Secure Lattice Codes for the Gaussian Wiretap Channel , 2012, IEEE Transactions on Information Theory.

[17]  Tung-Han Hsieh,et al.  on a lattice , 2004 .

[18]  Cong Ling,et al.  Achieving the AWGN channel capacity with lattice Gaussian coding , 2013, 2013 IEEE International Symposium on Information Theory.

[19]  Gou Hosoya,et al.  国際会議参加報告:2014 IEEE International Symposium on Information Theory , 2014 .

[20]  Haidong Zhu,et al.  Markov chain Monte Carlo algorithms for CDMA and MIMO communication systems , 2006, IEEE Transactions on Signal Processing.

[21]  Alexandros G. Dimakis,et al.  Optimized Markov Chain Monte Carlo for Signal Detection in MIMO Systems: An Analysis of the Stationary Distribution and Mixing Time , 2013, IEEE Transactions on Signal Processing.

[22]  Maurizio Dapor Monte Carlo Strategies , 2020, Transport of Energetic Electrons in Solids.

[23]  Craig Gentry,et al.  Trapdoors for hard lattices and new cryptographic constructions , 2008, IACR Cryptol. ePrint Arch..

[24]  G. David Forney,et al.  Multidimensional constellations. II. Voronoi constellations , 1989, IEEE J. Sel. Areas Commun..