A Direct Key Recovery Attack on SIDH
| hal.structure.identifier | University of Bristol [Bristol] | |
| dc.contributor.author | MAINO, Luciano | |
| hal.structure.identifier | University of Bristol [Bristol] | |
| dc.contributor.author | MARTINDALE, Chloe | |
| hal.structure.identifier | Academia Sinica | |
| dc.contributor.author | PANNY, Lorenz | |
| hal.structure.identifier | NCC Group | |
| hal.structure.identifier | University of Bristol [Bristol] | |
| dc.contributor.author | POPE, Giacomo | |
| hal.structure.identifier | Centre National de la Recherche Scientifique [CNRS] | |
| hal.structure.identifier | Lithe and fast algorithmic number theory [LFANT] | |
| hal.structure.identifier | Unité de Mathématiques Pures et Appliquées [UMPA-ENSL] | |
| hal.structure.identifier | Analyse cryptographique et arithmétique [CANARI] | |
| dc.contributor.author | WESOLOWSKI, Benjamin | |
| dc.date.accessioned | 2024-04-04T02:35:23Z | |
| dc.date.available | 2024-04-04T02:35:23Z | |
| dc.date.issued | 2023-04-16 | |
| dc.date.conference | 2023 | |
| dc.identifier.uri | https://oskar-bordeaux.fr/handle/20.500.12278/190633 | |
| dc.description.abstractEn | We present an attack on SIDH utilising isogenies between polarized products of two supersingular elliptic curves. In the case of arbitrary starting curve, our attack (discovered independently from [8]) has subexponential complexity, thus significantly reducing the security of SIDH and SIKE. When the endomorphism ring of the starting curve is known, our attack (here derived from [8]) has polynomial-time complexity assuming the generalised Riemann hypothesis. Our attack applies to any isogeny-based cryptosystem that publishes the images of points under the secret isogeny, for example Séta and B-SIDH. It does not apply to CSIDH, CSI-FiSh, or SQISign. | |
| dc.description.sponsorship | Méthodes pour les variétés abéliennes de petite dimension - ANR-20-CE40-0013 | |
| dc.description.sponsorship | Post-quantum padlock for web browser - ANR-22-PETQ-0008 | |
| dc.language.iso | en | |
| dc.publisher | Springer Nature Switzerland | |
| dc.publisher | Springer Nature Switzerland | |
| dc.publisher.location | Cham | |
| dc.rights.uri | http://creativecommons.org/licenses/by/ | |
| dc.subject.en | SIDH | |
| dc.subject.en | Elliptic curve | |
| dc.subject.en | Isogeny | |
| dc.subject.en | Cryptanalysis | |
| dc.title.en | A Direct Key Recovery Attack on SIDH | |
| dc.type | Communication dans un congrès | |
| dc.identifier.doi | 10.1007/978-3-031-30589-4_16 | |
| dc.subject.hal | Informatique [cs] | |
| dc.subject.hal | Mathématiques [math] | |
| bordeaux.page | 448-471 | |
| bordeaux.volume | 14008 | |
| bordeaux.hal.laboratories | Institut de Mathématiques de Bordeaux (IMB) - UMR 5251 | * |
| bordeaux.institution | Université de Bordeaux | |
| bordeaux.institution | Bordeaux INP | |
| bordeaux.institution | CNRS | |
| bordeaux.conference.title | Advances in Cryptology – EUROCRYPT 2023 | |
| bordeaux.country | FR | |
| bordeaux.conference.city | Lyon | |
| bordeaux.peerReviewed | oui | |
| hal.identifier | hal-04023441 | |
| hal.version | 1 | |
| hal.invited | non | |
| hal.proceedings | oui | |
| hal.popular | non | |
| hal.audience | Internationale | |
| hal.origin.link | https://hal.archives-ouvertes.fr//hal-04023441v1 | |
| bordeaux.COinS | ctx_ver=Z39.88-2004&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.date=2023-04-16&rft.volume=14008&rft.spage=448-471&rft.epage=448-471&rft.au=MAINO,%20Luciano&MARTINDALE,%20Chloe&PANNY,%20Lorenz&POPE,%20Giacomo&WESOLOWSKI,%20Benjamin&rft.genre=unknown |
Fichier(s) constituant ce document
| Fichiers | Taille | Format | Vue |
|---|---|---|---|
|
Il n'y a pas de fichiers associés à ce document. |
|||