Bridging the Gap Between Lattice Coding and Lattice Cryptography - Post-Quantum Cryptography

弥合晶格编码和晶格密码学之间的差距 - 后量子密码学

• 批准号: EP/S021043/1
• 负责人: Cong Ling
• 金额: $ 55.59万
• 依托单位: Imperial College London
• 依托单位国家: 英国
• 项目类别: Research Grant
• 财政年份: 2019
• 资助国家: 英国
• 起止时间: 2019 至 无数据
• 项目状态: 已结题
• 来源: https://gtr.ukri.org/projects?ref=EP%2FS021043%2F1
• 关键词: Bridging; Gap; Between; Lattice; Coding

Lattices play an important role in various areas of engineering and computer science. In coding theory, lattice codes bring significant advantages such as concrete implementation and complexity reduction, thus overcoming the limitation of random codes in practical applications. More recently, it became widely appreciated that algebraic structures of lattice codes greatly facilitate coordination among multiple users in wireless networks.In a world where quantum computers exist, current public key cryptographic schemes will become vulnerable to attacks that exploit the nature of quantum mechanics. This is a central concern to our modern data-driven society, which has been extensively considered by governments, companies and research institutions. For instance, the National Institute of Standards and Technology (NIST, USA) launched in 2016 a call for the standardisation of quantum-resistant cryptography. Among the prospective methods which are expected to be implemented for post-quantum cryptography, lattice-based cryptography figures as a front runner. This form of cryptography explores the theory of lattices and the hardness of lattice-related problems to build primitives such as encryption schemes, one-way functions, digital signatures and fully-homomorphic encryption.While both lattice coding and lattice cryptography are concerned with the same mathematical objects --- lattices --- they consider these objects from disparate vantage points. Coding theory uses lattices to protect correctness against noise, whereas cryptography adds noise to protect security. As a consequence, both fields ask different questions of lattices: coding theory is mainly concerned with lattices that are easy to decode, whereas cryptography is focused on lattices that are hard.Despite these different perspectives, lattice coding has a lot to contribute to lattice cryptography. Firstly, in order to encrypt messages we need to encode them and the more efficient our coding schemes, the smaller will be our ciphertexts. This is particularly relevant since the size of ciphertexts is one of the key drawbacks of lattice-based cryptography. That is, these schemes are typically very fast but produce large ciphertexts. Secondly, lattice coding has and can be used to improve the security analysis of lattice-based cryptography. In this area, we study algorithms for breaking cryptographic schemes so that we can pick parameters in such a way to avoid such attacks.

格在工程和计算机科学的各个领域中起着重要的作用。在编码理论中，格码具有具体实现和降低复杂度等显著优点，克服了随机码在实际应用中的局限性。最近，人们开始广泛认识到格码的代数结构极大地促进了无线网络中多个用户之间的协调，在量子计算机存在的世界中，当前的公钥加密方案将变得容易受到利用量子力学性质的攻击。这是我们现代数据驱动社会的一个核心问题，政府、公司和研究机构对此进行了广泛的考虑。例如，美国国家标准与技术研究所（NIST，USA）于2016年发起了一项关于量子抵抗密码学标准化的呼吁。在后量子密码学有望实现的方法中，基于格的密码学是一个领跑者。这种形式的密码学探索了格的理论和与格相关的问题的困难性，以构建诸如加密方案、单向函数、数字签名和全同态加密等原语。虽然格编码和格密码学都涉及相同的数学对象--格--但它们从不同的Vantage位置考虑这些对象。编码理论使用格来保护正确性免受噪声影响，而密码学则增加噪声来保护安全性。因此，这两个领域对格提出了不同的问题：编码理论主要关注易于解码的格，而密码学则关注难以解码的格。尽管有这些不同的观点，格编码对格密码学有很大的贡献。首先，为了加密消息，我们需要对它们进行编码，编码方案越有效，密文就越小。这是特别相关的，因为密文的大小是基于格的密码术的关键缺点之一。也就是说，这些方案通常非常快，但产生大的密文。其次，格编码已经并且可以用于改进基于格的密码的安全性分析。在这方面，我们研究算法，打破加密方案，以便我们可以选择参数，以避免这种攻击。

项目成果

Quantum mean-value approximator for hard integer-value problems

整数值硬问题的量子均值逼近器

• DOI: 10.1103/physreva.105.052419
• 发表时间: 2022
• 期刊: Physical Review A
• 影响因子: 2.9
• 作者: Joseph D

Quantum mean value approximator for hard integer value problems

硬整数值问题的量子均值逼近器

• DOI: 10.48550/arxiv.2105.13106
• 发表时间: 2021
• 作者: Joseph D

Two quantum Ising algorithms for the shortest-vector problem

• DOI: 10.1103/physreva.103.032433
• 发表时间: 2021-03-26
• 期刊: PHYSICAL REVIEW A
• 影响因子: 2.9
• 作者: Joseph, David;Callison, Adam;Mintert, Florian
• 通讯作者: Mintert, Florian

Leakage-resilient secret sharing in non-compartmentalized models

非分隔模型中的泄漏弹性秘密共享

• DOI: 10.4230/lipics.itc.2020.7
• 发表时间: 2020
• 期刊: Leibniz International Proceedings in Informatics, LIPIcs
• 作者: Lin F.

Full threshold change range of threshold changeable secret sharing

• DOI: 10.1007/s10623-023-01205-9
• 发表时间: 2023-03
• 期刊: Designs, Codes and Cryptography
• 作者: Jian Ding;Changlu Lin;Fuchun Lin;Huaxiong Wang