nach oben

Journal of Cryptographic Engineering

Erschienen in:

12.03.2018 | CHES 2017

McBits revisited: toward a fast constant-time code-based KEM

verfasst von: Tung Chou

Erschienen in: Journal of Cryptographic Engineering | Ausgabe 2/2018

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

This paper presents a constant-time fast implementation for a high-security code-based key encapsulation mechanism (KEM). The implementation is based on the “McBits” paper by Bernstein, Chou, and Schwabe in 2013: we use the same FFT algorithms for root finding and syndrome computation, similar algorithms for secret permutation, and bitslicing for low-level operations. As opposed to McBits, where a high decryption throughput is achieved by running many decryption operations in parallel, we take a different approach to exploit the internal parallelism in one decryption operation for the use of more applications. As a result, we manage to achieve a slightly better decryption throughput at a much higher security level than McBits. As a minor contribution, we also present a constant-time implementation for encryption and key-pair generation, with similar techniques used for decryption.

Vorheriger Artikel Introduction to the CHES 2017 special issue

Nächster Artikel A unified masking approach

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Aragon, N., Barreto, P. S. L. M., Bettaieb, S., Bidoux, L., Blazy, O., Deneuville, J. C.., Gaborit, P., Gueron, S., Güneysu, T., Melchor, C. A., Misoczki, R., Persichetti, E., Sendrier, N., Tillich, J. P., Zémor, G.: BIKE: Bit Flipping Key Encapsulation (2017). http://bikesuite.org/files/BIKE.pdf. Accessed 23 Feb 2018

Avanzi, R., Bos, J., Ducas, L., Kiltz, E., Lepoint, T., Lyubashevsky, V., Schanck, J. M., Schwabe, P., Seiler, G., Stehlé, D.: CRYSTALS-KYBER, Algorithm Specifications and Supporting Documentation (2017). https://pq-crystals.org/kyber/data/kyber-specification.pdf. Accessed 23 Feb 2018

Batcher, K. E.: Sorting networks and their applications. In: [7], pp. 307–314 (1968). http://www.cs.kent.edu/~batcher/conf.html. Accessed 23 Feb 2018

Bernstein, D. J.: qhasm software package (2007). http://cr.yp.to/qhasm.html. Accessed 23 Feb 2018

Bernstein, D. J., Chou, T., Lange, T., von Maurich, I., Misoczki, R., Niederhagen, R., Persichetti, E., Peters, C., Schwabe, P., Sendrier, N., Szefer, J., Wang, W.: Classic McEliece: Conservative Code-Based Cryptography (2017). https://classic.mceliece.org/nist/mceliece-20171129.pdf. Accessed 23 Feb 2018

Bernstein, D. J., Chou, T., Schwabe, P.: McBits: fast constant-time code-based cryptography. In CHES 2013 [9], pp. 250–272 (2013)

Bernstein, D. J., Chou, T., Schwabe, P.: AFIPS Conference Proceedings, vol. 32: 1968 Spring Joint Computer Conference, Reston, Virginia, Thompson Book Company (1968). See [3]

Beneš, V.E.: Mathematical Theory of Connecting Networks and Telephone Traffic. Academic Press, London (1965)MATH

Bertoni, G., Coron, J. S. (eds.): Cryptographic Hardware and Embedded Systems–CHES 2013–15th International Workshop, Santa Barbara, CA, USA, Aug. 20–23, Proceedings, Lecture Notes in Computer Science, vol. 8086. Springer, Berlin (2013). ISBN 978-3-642-40348-4. See [6]

10.

Biham, E. (ed.): Fast Software Encryption, 4th International Workshop, FSE ’97, Haifa, Israel, Jan. 20–22, Proceedings, Lecture Notes in Computer Science, vol. 1267. Springer, Berlin (1997). ISBN 3-540-63247-6. See [11]

11.

Biham, E.: A fast new DES implementation in software. In: [10], pp. 260–272 (1997)

12.

Biswas, B., Sendrier, N.: McEliece cryptosystem implementation: theory and practice. In: [13], pp. 47–62 (2008)

13.

Buchmann, J., Ding, J.(eds.): Post-quantum Cryptography, Second International Workshop, PQCrypto 2008, Cincinnati, OH, USA, Oct. 17–19, Proceedings, Lecture Notes in Computer Science, vol. 5299. Springer, Berlin (2008). See [12]

14.

Chou, T.: McBits revisited. In: CHES 2017 [15], pp. 213–231 (2017)

15.

Fischer, W., Homma, N. (eds.): Cryptographic Hardware and Embedded Systems–CHES 2017–19th International Conference, Taipei, Taiwan, Sept. 25–28, Proceedings, Lecture Notes in Computer Science, vol. 10529. Springer, Berlin (2017). ISBN 978-3-319-66786-7. See [14]

16.

Fog, A.: Instruction Tables (2017). http://www.agner.org/optimize/instruction_tables.pdf. Accessed 23 Feb 2018

17.

Gao, S., Mateer, T.: Additive fast Fourier transforms over finite fields. IEEE Trans. Inf. Theory 56, 6265–6272 (2010). http://www.math.clemson.edu/~sgao/pub.html. Accessed 23 Feb 2018

18.

Lev, G. F., Pippenger, N., Valiant, L. G.: A fast parallel algorithm for routing in permutation networks. IEEE Trans. Comput. C-30, 93–100 (1981). http://www.math.clemson.edu/~sgao/pub.html. Accessed 23 Feb 2018

19.

Massey, J.L.: Shift-register synthesis and BCH decoding. IEEE Trans. Inf. Theory 15, 122–127 (1969)MathSciNetCrossRefMATH

20.

McEliece, R. J.: A public-key cryptosystem based on algebraic coding theory. JPL DSN Progress Report, pp. 114–116 (1978). http://ipnpr.jpl.nasa.gov/progress_report2/42-44/44N.PDF. Accessed 23 Feb 2018

21.

Montgomery, P. L.: Speeding the Pollard and elliptic curve methods of factorization. Math. Comput. 48, 243–264 (1987). http://www.jstor.org/stable/pdf/2007888.pdf. Accessed 23 Feb 2018

22.

Niederreiter, H.: Knapsack-type cryptosystems and algebraic coding theory. Probl. Control Inf. Theory 15, 159–166 (1986)MathSciNetMATH

23.

NIST: Submission Requirements and Evaluation Criteria for the Post-Quantum Cryptography Standardization Process (2016). http://csrc.nist.gov/groups/ST/post-quantum-crypto/documents/call-for-proposals-final-dec-2016.pdf. Accessed 23 Feb 2018

24.

Peters, C.: Information-set decoding for linear codes over \({\bf F}_q\). In: PQCrypto 2010 [25], pp. 81–94 (2010). http://eprint.iacr.org/2009/589. Accessed 23 Feb 2018

25.

Sendrier, N. (ed.): Post-quantum Cryptography, Third International Workshop, PQCrypto, Darmstadt, Germany, May 25–28, Lecture Notes in Computer Science, vol. 6061. Springer, Berlin (2010). See [24]

26.

Shoup, V. (ed.): A Computational Introduction to Number Theory and Algebra (Version 2), Cambridge University Press, Cambridge. ISBN 978-0-521-51644-0 (2015). http://www.shoup.net/ntb/ntb-v2.pdf. Accessed 23 Feb 2018

27.

Youzhi, X.: Implementation of Berlekamp–Massey algorithm without inversion. IEE Proc. I Commun. Speech Vis. 138, 138–140 (1991)CrossRef

Titel: McBits revisited: toward a fast constant-time code-based KEM
verfasst von: Tung Chou
Publikationsdatum: 12.03.2018
Verlag: Springer Berlin Heidelberg
Erschienen in: Journal of Cryptographic Engineering / Ausgabe 2/2018
Print ISSN: 2190-8508
Elektronische ISSN: 2190-8516
DOI: https://doi.org/10.1007/s13389-018-0186-9

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Weitere Artikel der Ausgabe 2/2018

Introduction to the CHES 2017 special issue

A unified masking approach

A review of lightweight block ciphers

Your rails cannot hide from localized EM: how dual-rail logic fails on FPGAs—extended version