Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Achieving Capacity of PIR with Private Side Information with Low Sub-packetization and without MDS Codes

Leila Erhili, Anoosheh Heidarzadeh

TL;DR

This work resolves capacity-achieving PIR-PSI with low sub-packetization by introducing a scheme that attains the known converse bound for all $N\ge M+1$ under the condition $N-1\mid L$. The scheme partitions each message into exactly $N-1$ sub-packets, and each server returns a single coded sub-packet, enabling recovery of the demand from a distinct server, while preserving privacy of both the demand and the side information. Unlike prior approaches, the construction does not rely on MDS codes and operates over any finite field, including binary, with sub-packetization independent of the number of messages $K$. The main contribution is the combination of a randomized, nonuniform query design with carefully balanced probabilities to ensure privacy, together with a recoverability mechanism that hinges on subspace sums and side-information, yielding a practical capacity-achieving PIR-PSI scheme.

Abstract

This paper revisits the problem of multi-server Private Information Retrieval with Private Side Information (PIR-PSI). In this problem, $N$ non-colluding servers store identical copies of $K$ messages, each comprising $L$ symbols from $\mathbb{F}_q$, and a user, who knows $M$ of these messages, wants to retrieve one of the remaining $K-M$ messages. The user's goal is to retrieve the desired message by downloading the minimum amount of information from the servers while revealing no information about the identities of the desired message and side information messages to any server. The capacity of PIR-PSI, defined as the maximum achievable download rate, was previously characterized for all $N$, $K$, and $M$ when $L$ and $q$ are sufficiently large -- specifically, growing exponentially with $K$, to ensure the divisibility of each message into $N^K$ sub-packets and to guarantee the existence of an MDS code with its length and dimension being exponential in $K$. In this work, we propose a new capacity-achieving PIR-PSI scheme that is applicable to all $N$, $K$, $M$, $L$, and $q$ where $N\geq M+1$ and $N-1\mid L$. The proposed scheme operates with a sub-packetization level of $N-1$, independent of $K$, and works over any finite field without requiring an MDS code.

Achieving Capacity of PIR with Private Side Information with Low Sub-packetization and without MDS Codes

TL;DR

This work resolves capacity-achieving PIR-PSI with low sub-packetization by introducing a scheme that attains the known converse bound for all under the condition . The scheme partitions each message into exactly sub-packets, and each server returns a single coded sub-packet, enabling recovery of the demand from a distinct server, while preserving privacy of both the demand and the side information. Unlike prior approaches, the construction does not rely on MDS codes and operates over any finite field, including binary, with sub-packetization independent of the number of messages . The main contribution is the combination of a randomized, nonuniform query design with carefully balanced probabilities to ensure privacy, together with a recoverability mechanism that hinges on subspace sums and side-information, yielding a practical capacity-achieving PIR-PSI scheme.

Abstract

This paper revisits the problem of multi-server Private Information Retrieval with Private Side Information (PIR-PSI). In this problem, non-colluding servers store identical copies of messages, each comprising symbols from , and a user, who knows of these messages, wants to retrieve one of the remaining messages. The user's goal is to retrieve the desired message by downloading the minimum amount of information from the servers while revealing no information about the identities of the desired message and side information messages to any server. The capacity of PIR-PSI, defined as the maximum achievable download rate, was previously characterized for all , , and when and are sufficiently large -- specifically, growing exponentially with , to ensure the divisibility of each message into sub-packets and to guarantee the existence of an MDS code with its length and dimension being exponential in . In this work, we propose a new capacity-achieving PIR-PSI scheme that is applicable to all , , , , and where and . The proposed scheme operates with a sub-packetization level of , independent of , and works over any finite field without requiring an MDS code.
Paper Structure (15 sections, 7 theorems, 82 equations, 1 table)

This paper contains 15 sections, 7 theorems, 82 equations, 1 table.

Table of Contents

  1. Introduction
  2. Problem Setup
  3. Main Results
  4. A New PIR-PSI Scheme
  5. Proofs of Lemmas \ref{['lem:PC']} and \ref{['lem:RC']}
  6. Proof of Lemma \ref{['lem:PC']}
  7. $s=0$
  8. $s=M+1$
  9. $M+1<s<K$
  10. $s=K$
  11. Proof of Lemma \ref{['lem:RC']}
  12. An Illustrative Example
  13. Proofs of Lemmas \ref{['lem:Pij']} and \ref{['lem:Summij']}
  14. Proof of Lemma \ref{['lem:Pij']}
  15. Proof of Lemma \ref{['lem:Summij']}

Key Result

Theorem 1

The capacity of PIR-PSI with $N$ servers, $K$ messages, and $M$ side information messages, where each message is composed of $L$ symbols from $\mathbbmss{F}_q$, is given by when $N\geq M+1$ and $N-1\mid L$.

Theorems & Definitions (10)

  • Theorem 1
  • Remark 1
  • Remark 2
  • Remark 3
  • Lemma 1
  • Lemma 2
  • Lemma 3
  • Lemma 4
  • Lemma 5
  • Lemma 6