PRG for Low Degree Polynomials from AG-Codes Gil Cohen Joint work with Amnon Ta-Shma.

Slides:

Advertisements

Similar presentations

Pseudorandom Walks: Looking Random in The Long Run or All The Way? Omer Reingold Weizmann Institute.

Advertisements

Quantum t-designs: t-wise independence in the quantum world Andris Ambainis, Joseph Emerson IQC, University of Waterloo.

Hardness of Reconstructing Multivariate Polynomials. Parikshit Gopalan U. Washington Parikshit Gopalan U. Washington Subhash Khot NYU/Gatech Rishi Saket.

Low-End Uniform Hardness vs. Randomness Tradeoffs for Arthur-Merlin Games. Ronen Shaltiel, University of Haifa Chris Umans, Caltech.

Invertible Zero-Error Dispersers and Defective Memory with Stuck-At Errors Ariel Gabizon Ronen Shaltiel.

An Introduction to Randomness Extractors Ronen Shaltiel University of Haifa Daddy, how do computers get random bits?

Locally correctable codes from lifting Alan Guo MIT CSAIL Joint work with Swastik Kopparty (Rutgers) and Madhu Sudan (Microsoft Research)

Pseudorandomness from Shrinkage David Zuckerman University of Texas at Austin Joint with Russell Impagliazzo and Raghu Meka.

Pseudorandom Generators for Polynomial Threshold Functions 1 Raghu Meka UT Austin (joint work with David Zuckerman)

Linear-Degree Extractors and the Inapproximability of Max Clique and Chromatic Number David Zuckerman University of Texas at Austin.

Randomness Extractors: Motivation, Applications and Constructions Ronen Shaltiel University of Haifa.

Extracting Randomness From Few Independent Sources Boaz Barak, IAS Russell Impagliazzo, UCSD Avi Wigderson, IAS.

Pseudorandomness from Shrinkage David Zuckerman University of Texas at Austin Joint with Russell Impagliazzo and Raghu Meka.

Multiplicity Codes Swastik Kopparty (Rutgers) (based on [K-Saraf-Yekhanin ’11], [K ‘12], [K ‘14])

Approximate List- Decoding and Hardness Amplification Valentine Kabanets (SFU) joint work with Russell Impagliazzo and Ragesh Jaiswal (UCSD)

Talk for Topics course. Pseudo-Random Generators pseudo-random bits PRG seed Use a short “ seed ” of very few truly random bits to generate a long string.

Simple extractors for all min- entropies and a new pseudorandom generator Ronen Shaltiel Chris Umans.

Lower bounds for small depth arithmetic circuits Chandan Saha Joint work with Neeraj Kayal (MSRI) Nutan Limaye (IITB) Srikanth Srinivasan (IITB)

Secure Evaluation of Multivariate Polynomials

Foundations of Cryptography Lecture 10 Lecturer: Moni Naor.

Enumerative Lattice Algorithms in any Norm via M-Ellipsoid Coverings Daniel Dadush (CWI) Joint with Chris Peikert and Santosh Vempala.

15-853:Algorithms in the Real World

List decoding Reed-Muller codes up to minimal distance: Structure and pseudorandomness in coding theory Abhishek Bhowmick (UT Austin) Shachar Lovett.

Foundations of Cryptography Lecture 4 Lecturer: Moni Naor.

Using Nondeterminism to Amplify Hardness Emanuele Viola Joint work with: Alex Healy and Salil Vadhan Harvard University.

Time vs Randomness a GITCS presentation February 13, 2012.

Yi Wu (CMU) Joint work with Parikshit Gopalan (MSR SVC) Ryan O’Donnell (CMU) David Zuckerman (UT Austin) Pseudorandom Generators for Halfspaces TexPoint.

Some Thoughts regarding Unconditional Derandomization Oded Goldreich Weizmann Institute of Science RANDOM 2010.

ACT1 Slides by Vera Asodi & Tomer Naveh. Updated by : Avi Ben-Aroya & Alon Brook Adapted from Oded Goldreich’s course lecture notes by Sergey Benditkis,

The Goldreich-Levin Theorem: List-decoding the Hadamard code

6/20/2015List Decoding Of RS Codes 1 Barak Pinhas ECC Seminar Tel-Aviv University.

CS151 Complexity Theory Lecture 8 April 22, 2015.

CS151 Complexity Theory Lecture 10 April 29, 2004.

Pseudorandom generators with optimal seed length for non-boolean poly-size circuits Sergei Artemenko Ronen Shaltiel University of Haifa.

In a World of BPP=P Oded Goldreich Weizmann Institute of Science.

CS151 Complexity Theory Lecture 9 April 27, 2004.

On the Complexity of Approximating the VC Dimension Chris Umans, Microsoft Research joint work with Elchanan Mossel, Microsoft Research June 2001.

Some 3CNF Properties are Hard to Test Eli Ben-Sasson Harvard & MIT Prahladh Harsha MIT Sofya Raskhodnikova MIT.

Dana Moshkovitz, MIT Joint work with Subhash Khot, NYU.

Correlation testing for affine invariant properties on Shachar Lovett Institute for Advanced Study Joint with Hamed Hatami (McGill)

CS151 Complexity Theory Lecture 9 April 27, 2015.

Pseudorandom Generators for Combinatorial Shapes 1 Parikshit Gopalan, MSR SVC Raghu Meka, UT Austin Omer Reingold, MSR SVC David Zuckerman, UT Austin.

Succinct representation of codes with applications to testing Elena Grigorescu Tali Kaufman Madhu Sudan.

Why Extractors? … Extractors, and the closely related “Dispersers”, exhibit some of the most “random-like” properties of explicitly constructed combinatorial.

Using Nondeterminism to Amplify Hardness Emanuele Viola Joint work with: Alex Healy and Salil Vadhan Harvard University.

Polynomials Emanuele Viola Columbia University work partially done at IAS and Harvard University December 2007.

Pseudo-random generators Talk for Amnon ’ s seminar.

Error-Correcting Codes and Pseudorandom Projections Luca Trevisan U.C. Berkeley.

Umans Complexity Theory Lecturess Lecture 11: Randomness Extractors.

Pseudorandomness: New Results and Applications Emanuele Viola IAS April 2007.

Umans Complexity Theory Lectures Lecture 9b: Pseudo-Random Generators (PRGs) for BPP: - Hardness vs. randomness - Nisan-Wigderson (NW) Pseudo- Random Generator.

Complexity Theory and Explicit Constructions of Ramsey Graphs Rahul Santhanam University of Edinburgh.

Tali Kaufman (Bar-Ilan)

Umans Complexity Theory Lectures

Sublinear-Time Error-Correction and Error-Detection

Modern symmetric-key Encryption

Pseudorandomness when the odds are against you

Pseudorandom bits for polynomials

Algebraic Codes and Invariance

Faster Space-Efficient Algorithms for Subset Sum

Local Error-Detection and Error-correction

Nikhil Bansal, Shashwat Garg, Jesper Nederlof, Nikhil Vyas

Locally Decodable Codes from Lifting

The Curve Merger (Dvir & Widgerson, 2008)

Invariance in Property Testing

Non-Malleable Extractors New tools and improved constructions

Non-Malleable Extractors

CS151 Complexity Theory Lecture 10 May 2, 2019.

On Derandomizing Algorithms that Err Extremely Rarely

Zeev Dvir (Princeton) Shachar Lovett (IAS)

Presentation transcript:

PRG for Low Degree Polynomials from AG-Codes Gil Cohen Joint work with Amnon Ta-Shma

Talk Outline * PRGs. * PRGs for low degree polynomials. * Constructing a PRG for degree d=1 via linear codes. * Where does the idea break for d>1 ? * Algebraic Geometry codes to the rescue ! * Very high level idea of what AG codes are. * Proof idea.

Talk Outline * PRGs. * PRGs for low degree polynomials. * Constructing a PRG for degree d=1 via linear codes. * Where does the idea break for d>1 ? * Algebraic Geometry codes to the rescue ! * Very high level idea of what AG codes are. * Proof idea.

Pseudorandom Generators For (an interesting) class of functions C, find a distribution D such that 2) D can be sampled efficiently. 3) D can be sampled using few random bits. (1) + (2): D = U.

Pseudorandom Generators Interesting classes to fool: P/poly ROBP Linear functions P = BPP L = BPL Low degree polynomials ? Many applications ! Mainly due to Fourier analysis

Talk Outline * PRGs. * PRGs for low degree polynomials. * Constructing a PRG for degree d=1 via linear codes. * Where does the idea break for d>1 ? * Algebraic Geometry codes to the rescue ! * Very high level idea of what AG codes are. * Proof idea.

Fooling Low Degree Polynomials

PRG from AG Codes

Talk Outline * PRGs. * PRGs for low degree polynomials. * Constructing a PRG for degree d=1 via linear codes. * Where does the idea break for d>1 ? * Algebraic Geometry codes to the rescue ! * Very high level idea of what AG codes are. * Proof idea.

Bogdanovs Reduction

Linear Codes C

HSG for d=1 from Linear Codes

Where does the Idea Break for d>1

What is the meaning of multiplying codewords ? Where does the Idea Break for d>1

Evaluation Codes Treat message as a function and evaluate it on wisely chosen places. Example: [ReedSolomon60].

Evaluation Codes Reed-Solomon – univariate polynomials. Reed-Muller – multivariate bounded degree polynomials. AG codes [Goppa81] – polynomials will only get you so far… Treat message as a function and evaluate it on wisely chosen places.

Talk Outline * PRGs. * PRGs for low degree polynomials. * Constructing a PRG for degree d=1 via linear codes. * Where does the idea break for d>1 ? * Algebraic Geometry codes to the rescue ! * Very high level idea of what AG codes are. * Proof idea.

AG Codes [Goppa81] Theorem [Goppa81]. There is a general way of constructing a linear valuation code from any algebraic function field. The distance and rate are determined by the genus of the function field.

AG Codes [Goppa81] AG Codes Reed Solomon Degree Valuation Distinct degrees implies linear independence. Distinct valuations implies linear independence.

The Garcia-Stichtenoth Tower Theorem [GarciaStichtenoth96]. Exponential improvement over the probabilistic construction [GilbertVarshamov57]. Best one can do with AG codes [DrinfeldVladut83].

Talk Outline * PRGs. * PRGs for low degree polynomials. * Constructing a PRG for degree d=1 via linear codes. * Where does the idea break for d>1. * Algebraic Geometry codes to the rescue. * Very high level idea of what AG codes are. * Proof idea.

HSG from AG Codes We want these combinations to be pairwise distinct so to avoid cancelations.

HSG from AG Codes Better understanding of the computational aspect of algebraic function field may lead to running-time logarithmic in the number of monomials.

Open Problems * Obtain a PRG with optimal seed length. Perhaps by bypassing Bogdanovs reduction. * Strongly explicit constructions of Riemann-Roch spaces. * Other applications of our method. * Applications of PRG for low degree polynomials. * Break the log(n) barrier for constant size fields.

Thank you for your attention !