Integer syndrome decoding in the presence of noise-Reference-Cited by-同舟云学术

Integer syndrome decoding in the presence of noise

Published:2024-05-10 Issue:5 Volume:16 Page:1103-1134
ISSN:1936-2447
Container-title:Cryptography and Communications
language:en
Short-container-title:Cryptogr. Commun.

Author:

Drăgoi Vlad-Florin,Colombier Brice,Cayrel Pierre-Louis,Grosso Vincent

Abstract

AbstractCode-based cryptography received attention after the NIST started the post-quantum cryptography standardization process in 2016. A central NP-hard problem is the binary syndrome decoding problem, on which the security of many code-based cryptosystems lies. The best known methods to solve this problem all stem from the information-set decoding strategy, first introduced by Prange in 1962. A recent line of work considers augmented versions of this strategy, with hints typically provided by side-channel information. In this work, we consider the integer syndrome decoding problem, where the integer syndrome is available but might be noisy. We study how the performance of the decoder is affected by the noise. First we identify the noise model as being close to a centered in zero binomial distribution. Second we model the probability of success of the ISD-score decoder in presence of a binomial noise. Third, we demonstrate that with high probability our algorithm finds the solution as long as the noise parameter d is linear in t (the Hamming weight of the solution) and t is sub-linear in the code-length. We provide experimental results on cryptographic parameters for the BIKE and Classic McEliece cryptosystems, which are both candidates for the fourth round of the NIST standardization process.

Funder

Agence Nationale de la Recherche

Publisher

Springer Science and Business Media LLC

Link

https://link.springer.com/content/pdf/10.1007/s12095-024-00712-3.pdf

Reference56 articles.

1. Adam, N.R., Worthmann, J.C.: Security-control methods for statistical databases: A comparative study. ACM Comput. Surv. 21(4), 515–556 (1989)

2. Albrecht, M.R., Bernstein, D.J., Chou, T., Cid, C., Gilcher, J., Lange, T., Maram, V., von Maurich, I., Misoczki, R., Niederhagen, R., Paterson, K.G., Persichetti, E., Peters, C., Schwabe, P., Sendrier, N., Szefer, J., Tjhai, C.J., Tomlinson, M., Wang, W.: Classic McEliece. Technical report, National Institute of Standards and Technology, available at https://csrc.nist.gov/projects/post-quantum-cryptography/round-3-submissions. (2020)

3. Aragon, N., Barreto, P., Bettaieb, S., Bidoux, L., Blazy, O., Deneuville, J.-C., Gaborit, P., Gueron, S., Guneysu, T., Melchor, C.A., Misoczki, R., Persichetti, E., Sendrier, N., Tillich, J.-P., Zémor, G., Vasseur, V., Ghosh, S.: BIKE. Technical report, National Institute of Standards and Technology, available at https://csrc.nist.gov/projects/post-quantum-cryptography/round-3-submissions. (2020)

4. Augot, D., Finiasz, M., Sendrier, N.: A fast provably secure cryptographic hash function. IACR Cryptol. ePrint Arch. 2003, 230 (2003)

5. Becker, A., Joux, A., May, A., Meurer, A.: Decoding random binary linear codes in $$2^{n/20}$$: How $$1+1=0$$ improves information set decoding. In: Advances in Cryptology - EUROCRYPT 2012, Lecture Notes in Comput. Sci. Springer (2012)