{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,16]],"date-time":"2026-05-16T00:57:06Z","timestamp":1778893026042,"version":"3.51.4"},"publisher-location":"New York, NY, USA","reference-count":63,"publisher":"ACM","funder":[{"name":"Yale CADMY"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2025,11,19]]},"DOI":"10.1145\/3719027.3765170","type":"proceedings-article","created":{"date-parts":[[2025,11,22]],"date-time":"2025-11-22T23:37:25Z","timestamp":1763854645000},"page":"2907-2921","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["IND-CPA-D of Relaxed Functional Bootstrapping: A New Attack, A General Fix, and A Stronger Model"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-7291-3106","authenticated-orcid":false,"given":"Zeyu","family":"Liu","sequence":"first","affiliation":[{"name":"Yale University, New Haven, CT, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0006-8128-2346","authenticated-orcid":false,"given":"Yunhao","family":"Wang","sequence":"additional","affiliation":[{"name":"Yale University, New Haven, CT, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0007-1154-2277","authenticated-orcid":false,"given":"Ben","family":"Fisch","sequence":"additional","affiliation":[{"name":"Yale University, New Haven, CT, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,11,22]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1515\/jmc-2015-0016"},{"key":"e_1_3_2_1_2_1","volume-title":"Paper 2024\/203","author":"Alexandru A.","year":"2024","unstructured":"A. Alexandru, A. A. Badawi, D. Micciancio, and Y. Polyakov. Application-aware approximate homomorphic encryption: Configuring FHE for practical use. Cryptology ePrint Archive, Paper 2024\/203, 2024."},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00062"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"crossref","unstructured":"G. Asharov A. Jain A. L\u00f3pez-Alt E. Tromer V. Vaikuntanathan and D. Wichs. Multiparty computation with low communication computation and interaction via threshold FHE. In D. Pointcheval and T. Johansson editors EUROCRYPT 2012 volume 7237 of LNCS pages 483-501 Cambridge UK Apr. 15-19 2012. Springer Heidelberg Germany.","DOI":"10.1007\/978-3-642-29011-4_29"},{"key":"e_1_3_2_1_5_1","volume-title":"Paper 2022\/915","author":"Badawi A. A.","year":"2022","unstructured":"A. A. Badawi, J. Bates, F. Bergamaschi, D. B. Cousins, S. Erabelli, N. Genise, S. Halevi, H. Hunt, A. Kim, Y. Lee, Z. Liu, D. Micciancio, I. Quah, Y. Polyakov, S. R.V., K. Rohloff, J. Saylor, D. Suponitsky, M. Triplett, V. Vaikuntanathan, and V. Zucca. Openfhe: Open-source fully homomorphic encryption library. Cryptology ePrint Archive, Paper 2022\/915, 2022. https:\/\/eprint.iacr.org\/2022\/915, commit: 122f470e0dbf94688051ab852131ccc5d26be934."},{"key":"e_1_3_2_1_6_1","volume-title":"Eurocrypt'25","author":"Bernard O.","year":"2024","unstructured":"O. Bernard, M. Joye, N. P. Smart, and M. Walter. Drifting towards better error probabilities in fully homomorphic encryption schemes. Eurocrypt'25, 2024."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/3419614.3423258"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-32009-5_50"},{"key":"e_1_3_2_1_9_1","volume-title":"(leveled) fully homomorphic encryption without bootstrapping. ACM Transactions on Computation Theory (TOCT), 6(3):1-36","author":"Brakerski Z.","year":"2014","unstructured":"Z. Brakerski, C. Gentry, and V. Vaikuntanathan. (leveled) fully homomorphic encryption without bootstrapping. ACM Transactions on Computation Theory (TOCT), 6(3):1-36, 2014."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/FOCS.2011.12"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"crossref","unstructured":"Z. Brakerski and V. Vaikuntanathan. Fully homomorphic encryption from ring-LWE and security for key dependent messages. In P. Rogaway editor CRYPTO 2011 volume 6841 of LNCS pages 505-524. Springer Heidelberg Germany Aug. 14-18 2011.","DOI":"10.1007\/978-3-642-22792-9_29"},{"key":"e_1_3_2_1_12_1","volume-title":"Paper 2025\/045","author":"Chaturvedi B.","year":"2025","unstructured":"B. Chaturvedi, A. Chakraborty, N. Mishra, A. Chatterjee, and D. Mukhopadhyay. IND-CPAc,: A new security notion for conditional decryption in fully homomorphic encryption. Cryptology ePrint Archive, Paper 2025\/045, 2025."},{"key":"e_1_3_2_1_13_1","first-page":"33","volume-title":"Advances in Cryptology \u2013 CRYPTO 2024:  44th Annual International Cryptology Conference","author":"Checri M.","year":"2024","unstructured":"M. Checri, R. Sirdey, A. Boudguiga, and J.-P. Bultel. On the practical cpad security of ''exact'' and threshold fhe schemes and libraries. In Advances in Cryptology \u2013 CRYPTO 2024: 44th Annual International Cryptology Conference, Santa Barbara, CA, USA, August 18\u201322, 2024, Proceedings, Part III, page 3\u201333, Berlin, Heidelberg, 2024. Springer-Verlag."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1186\/s12920-018-0397-z"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"crossref","unstructured":"H. Chen and K. Han. Homomorphic lower digits removal and improved FHE bootstrapping. In J. B. Nielsen and V. Rijmen editors EUROCRYPT 2018 Part I volume 10820 of LNCS pages 315-337. Springer Heidelberg Germany Apr. 29 - May 3 2018.","DOI":"10.1007\/978-3-319-78381-9_12"},{"key":"e_1_3_2_1_16_1","volume-title":"CCS","author":"Cheon J. H.","year":"2024","unstructured":"J. H. Cheon, H. Choe, A. Passel\u00e8gue, D. Stehl\u00e9, and E. Suvanto. Attacks against the IND-CPA-d security of exact FHE schemes. CCS 2024."},{"key":"e_1_3_2_1_17_1","volume-title":"Paper 2020\/1581","author":"Cheon J. H.","year":"2020","unstructured":"J. H. Cheon, S. Hong, and D. Kim. Remark on the security of CKKS scheme in practice. Cryptology ePrint Archive, Paper 2020\/1581, 2020."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-70694-8_15"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-53887-6_1"},{"key":"e_1_3_2_1_20_1","first-page":"345","volume-title":"Selected Areas in Cryptography \u2013 SAC 2023: 30th International Conference, Fredericton, Canada, August 14\u201318","author":"Costache A.","year":"2023","unstructured":"A. Costache, B. R. Curtis, E. Hales, S. Murphy, T. Ogilvie, and R. Player. On the precision loss in approximate homomorphic encryption. In Selected Areas in Cryptography \u2013 SAC 2023: 30th International Conference, Fredericton, Canada, August 14\u201318, 2023, Revised Selected Papers, page 325\u2013345, Berlin, Heidelberg, 2023. Springer-Verlag."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"crossref","unstructured":"D. Dachman-Soled L. Ducas H. Gong and M. Rossi. LWE with side information: Attacks and concrete security estimation. In D. Micciancio and T. Ristenpart editors CRYPTO 2020 Part II volume 12171 of LNCS pages 329-358 Santa Barbara CA USA Aug. 17-21 2020. Springer Heidelberg Germany.","DOI":"10.1007\/978-3-030-56880-1_12"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/CONIT51480.2021.9498376"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-46800-5_24"},{"key":"e_1_3_2_1_24_1","unstructured":"J. Fan and F. Vercauteren. Somewhat practical fully homomorphic encryption. Cryptology ePrint Archive Report 2012\/144 2012. https:\/\/ia.cr\/2012\/144."},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/3658644.3690326"},{"key":"e_1_3_2_1_26_1","volume-title":"Paper 2023\/113","author":"Freitas L.","year":"2023","unstructured":"L. Freitas, A. Tonkikh, A.-A. Bendoukha, S. Tucci-Piergiovanni, R. Sirdey, O. Stan, and P. Kuznetsov. Homomorphic sortition \u2013 single secret leader election for PoS blockchains. Cryptology ePrint Archive, Paper 2023\/113, 2023."},{"key":"e_1_3_2_1_27_1","volume-title":"On polynomial functions modulo p^e and faster bootstrapping for homomorphic encryption. Eurocrypt","author":"Geelen R.","year":"2023","unstructured":"R. Geelen, I. Iliashenko, J. Kang, and F. Vercauteren. On polynomial functions modulo p^e and faster bootstrapping for homomorphic encryption. Eurocrypt 2023. https:\/\/eprint.iacr.org\/2022\/1364."},{"key":"e_1_3_2_1_28_1","volume-title":"Bootstrapping for bgv and bfv revisited. J. Cryptol., 36(2), mar","author":"Geelen R.","year":"2023","unstructured":"R. Geelen and F. Vercauteren. Bootstrapping for bgv and bfv revisited. J. Cryptol., 36(2), mar 2023."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"crossref","unstructured":"R. Gennaro C. Gentry and B. Parno. Non-interactive verifiable computing: Outsourcing computation to untrusted workers. In T. Rabin editor CRYPTO 2010 volume 6223 of LNCS pages 465-482 Santa Barbara CA USA Aug. 15-19 2010. Springer Heidelberg Germany.","DOI":"10.1007\/978-3-642-14623-7_25"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/1536414.1536440"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"crossref","unstructured":"C. Gentry A. Sahai and B. Waters. Homomorphic encryption from learning with errors: Conceptually-simpler asymptotically-faster attribute-based. In R. Canetti and J. A. Garay editors CRYPTO 2013 Part I volume 8042 of LNCS pages 75-92. Springer Heidelberg Germany Aug. 18-22 2013.","DOI":"10.1007\/978-3-642-40041-4_5"},{"key":"e_1_3_2_1_32_1","volume-title":"Proceedings of the 33rd USENIX Conference on Security Symposium, SEC '24, USA","author":"Guo Q.","year":"2025","unstructured":"Q. Guo, D. Nabokov, E. Suvanto, and T. Johansson. Key recovery attacks on approximate homomorphic encryption with non-worst-case noise flooding countermeasures. In Proceedings of the 33rd USENIX Conference on Security Symposium, SEC '24, USA, 2025. USENIX Association."},{"key":"e_1_3_2_1_33_1","volume-title":"HElib","author":"Halevi S.","year":"2014","unstructured":"S. Halevi and V. Shoup. HElib, 2014. https:\/\/github.com\/homenc\/HElib."},{"key":"e_1_3_2_1_34_1","unstructured":"S. Halevi and V. Shoup. Design and implementation of HElib: a homomorphic encryption library. Cryptology ePrint Archive Report 2020\/1481 2020. https:\/\/eprint.iacr.org\/2020\/1481."},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1007\/s00145-020-09368-7"},{"key":"e_1_3_2_1_36_1","volume-title":"Paper 2023\/1407","author":"Chen J. HU, J.","year":"2023","unstructured":"J. HU, J. Chen, W. Dai, and H. Wang. Fully homomorphic encryption-based protocols for enhanced private set intersection functionalities. Cryptology ePrint Archive, Paper 2023\/1407, 2023. https:\/\/eprint.iacr.org\/2023\/1407."},{"key":"e_1_3_2_1_37_1","volume-title":"Paper 2024\/1879","author":"Hwang I.","year":"2024","unstructured":"I. Hwang, H. Lee, J. Seo, and Y. Song. Practical zero-knowledge PIOP for public key and ciphertext generation in (multi-group) homomorphic encryption. Cryptology ePrint Archive, Paper 2024\/1879, 2024."},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00043"},{"key":"e_1_3_2_1_39_1","first-page":"1651","volume-title":"GAZELLE: A low latency framework for secure neural network inference","author":"Juvekar C.","year":"2018","unstructured":"C. Juvekar, V. Vaikuntanathan, and A. Chandrakasan. GAZELLE: A low latency framework for secure neural network inference. In W. Enck and A. P. Felt, editors, USENIX Security 2018, pages 1651-1669. USENIX Association, Aug. 15-17, 2018."},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-92078-4_21"},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1145\/3658644.3670302"},{"key":"e_1_3_2_1_42_1","first-page":"2022","article-title":"Evalround algorithm in ckks bootstrapping","author":"Kim S.","year":"2022","unstructured":"S. Kim, M. Park, J. Kim, T. Kim, and C. Min. Evalround algorithm in ckks bootstrapping. Asiacrypt 2022, 2022. https:\/\/eprint.iacr.org\/2022\/1256.","journal-title":"Asiacrypt"},{"key":"e_1_3_2_1_43_1","volume-title":"Functional bootstrapping for packed ciphertexts via homomorphic LUT evaluation","author":"Lee D.","year":"2024","unstructured":"D. Lee, S. Min, and Y. Song. Functional bootstrapping for packed ciphertexts via homomorphic LUT evaluation, 2024."},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2022.3159694"},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-99-8736-8_2"},{"key":"e_1_3_2_1_46_1","volume-title":"Paper 2024\/1814","author":"Lee K.","year":"2024","unstructured":"K. Lee and Y. Yeo. SophOMR: Improved oblivious message retrieval from SIMD-aware homomorphic compression. Cryptology ePrint Archive, Paper 2024\/1814, 2024."},{"key":"e_1_3_2_1_47_1","volume-title":"On the security of homomorphic encryption on approximate numbers. Eurocrypt","author":"Li B.","year":"2021","unstructured":"B. Li and D. Micciancio. On the security of homomorphic encryption on approximate numbers. Eurocrypt 2021."},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-77870-5_23"},{"key":"e_1_3_2_1_49_1","first-page":"589","volume-title":"CRYPTO 2022, Santa Barbara, CA, USA, August 15\u201318, 2022, Proceedings, Part I","author":"Li B.","year":"2022","unstructured":"B. Li, D. Micciancio, M. Schultz-Wu, and J. Sorrell. Securing approximate homomorphic encryption using differential privacy. In Advances in Cryptology \u2013 CRYPTO 2022: 42nd Annual International Cryptology Conference, CRYPTO 2022, Santa Barbara, CA, USA, August 15\u201318, 2022, Proceedings, Part I, page 560\u2013589, Berlin, Heidelberg, 2022. Springer-Verlag."},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-91131-6_5"},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"crossref","unstructured":"Z. Liu and E. Tromer. Oblivious message retrieval. In Y. Dodis and T. Shrimpton editors CRYPTO 2022 Part I volume 13507 of LNCS pages 753-783 Santa Barbara CA USA Aug. 15-18 2022. Springer Heidelberg Germany.","DOI":"10.1007\/978-3-031-15802-5_26"},{"key":"e_1_3_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP54263.2024.00115"},{"key":"e_1_3_2_1_53_1","volume-title":"USENIX Security","author":"Liu Z.","year":"2024","unstructured":"Z. Liu, E. Tromer, and Y. Wang. PerfOMR: Oblivious message retrieval with reduced communication and computation. In USENIX Security 2024. USENIX Association, Aug. 2024."},{"key":"e_1_3_2_1_54_1","volume-title":"Asiacrypt'23","author":"Liu Z.","year":"2024","unstructured":"Z. Liu and Y. Wang. Relaxed functional bootstrapping: A new perspective on BGV\/BFV bootstrapping. Asiacrypt'23, 2024. All the references in our paper are with respect to the full version on eprint."},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1007\/s11424-024-3221-1"},{"key":"e_1_3_2_1_56_1","volume-title":"Accelerating bgv bootstrapping for large","author":"Ma S.","year":"2024","unstructured":"S. Ma, T. Huang, A. Wang, and X. Wang. Accelerating bgv bootstrapping for large p using null polynomials over Z_p^e. Cryptology ePrint Archive, Paper 2024\/115, 2024. https:\/\/eprint.iacr.org\/2024\/115."},{"key":"e_1_3_2_1_57_1","volume-title":"Asiacrypt'24","author":"Ma S.","year":"2024","unstructured":"S. Ma, T. Huang, A. Wang, and X. Wang. Faster BGV bootstrapping for power-of-two cyclotomics through homomorphic NTT. Asiacrypt'24, 2024."},{"key":"e_1_3_2_1_58_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833700"},{"key":"e_1_3_2_1_59_1","volume-title":"Homomorphic polynomial evaluation using galois structure and applications to bfv bootstrapping. Asiacrypt","author":"Okada H.","year":"2023","unstructured":"H. Okada, R. Player, and S. Pohmann. Homomorphic polynomial evaluation using galois structure and applications to bfv bootstrapping. Asiacrypt 2023. https:\/\/eprint.iacr.org\/2023\/1304."},{"key":"e_1_3_2_1_60_1","unstructured":"Microsoft SEAL 2020. https:\/\/github.com\/Microsoft\/SEAL."},{"key":"e_1_3_2_1_61_1","volume-title":"tfhe-rs","year":"2023","unstructured":"Zama-ai, tfhe-rs, 2023. https:\/\/github.com\/zama-ai\/tfhe-rs, commit: 509bf3e2846bc98dd42d0e8eeb7f27852e5b632a."},{"key":"e_1_3_2_1_62_1","first-page":"2025","article-title":"Qelect: Lattice-based single secret leader election made practical","author":"Wang Y.","year":"2025","unstructured":"Y. Wang and F. Zhang. Qelect: Lattice-based single secret leader election made practical. Usenix Security 2025, 2025.","journal-title":"Usenix Security"},{"key":"e_1_3_2_1_63_1","volume-title":"Paper 2025\/302","author":"Zhang X.","year":"2025","unstructured":"X. Zhang, R. Wang, Z. Liu, B. Xiang, Y. Deng, and X. Lu. FHE-SNARK vs. SNARK-FHE: From analysis to practical verifiable computation. Cryptology ePrint Archive, Paper 2025\/302, 2025."}],"event":{"name":"CCS '25: ACM SIGSAC Conference on Computer and Communications Security","location":"Taipei Taiwan","acronym":"CCS '25","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3719027.3765170","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,12,22]],"date-time":"2025-12-22T22:25:15Z","timestamp":1766442315000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3719027.3765170"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,11,19]]},"references-count":63,"alternative-id":["10.1145\/3719027.3765170","10.1145\/3719027"],"URL":"https:\/\/doi.org\/10.1145\/3719027.3765170","relation":{},"subject":[],"published":{"date-parts":[[2025,11,19]]},"assertion":[{"value":"2025-11-22","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}