Quantum Nested Search for Lattice Enumeration-Reference-Cited by-同舟云学术

Quantum Nested Search for Lattice Enumeration

Published:2024-01-24 Issue: Volume: Page:
ISSN:
Container-title:
language:
Short-container-title:

Author:

Cao Runxi¹,Wang Baocang¹,Gao Juntao¹

Affiliation:

1. Xidian University

Abstract

Abstract Lattice-based cryptographic regimes are the most promising quantum-resistant cryptographic algorithms, whose security depends on the difficulty of the SVP. Enumeration algorithms are the most basic and hopeful algorithms instantiated for solving SVPs, and are often used in public key cryptanalysis or as subroutines of lattice reduction algorithms. In this paper, we show how to speed up enumeration with the idea of nested search: if N is the number of nodes in the enumeration tree and T is the time required to process a node, our quantum enumeration can find the shortest vector on the lattice in time $\sqrt{T\cdot N}$ . This is applied to the two most efficient types of enumeration: cylinder pruning as well as discrete pruning. The core idea of the algorithm is to reduce the size of the search space by transforming the original problem into a constraint-satisfiable problem, using the pruning conditions of the above two enumerations as constraints, and embedding the search for all possible solutions at the next level of the enumeration tree into the space of partially satisfied solutions at the previous level. Next, we accelerate this process using a quantum search algorithm. Compared to the work of bib24, we further reduce the time complexity of the algorithm with multiplication factor $\sqrt{T} $ by the quantum nested search algorithm.

Publisher

Research Square Platform LLC

Reference38 articles.

1. Mikl{\'{o}}s Ajtai (1996) Generating Hard Instances of Lattice Problems (Extended Abstract). dblp computer science bibliography, https://dblp.org, https://dblp.org/rec/conf/stoc/Ajtai96.bib, Wed, 14 Nov 2018 10:51:36 +0100, 10.1145/237814.237838, https://doi.org/10.1145/237814.237838, 99--108, Proceedings of the Twenty-Eighth Annual {ACM} Symposium on the Theory of Computing, Philadelphia, Pennsylvania, USA, May 22-24, 1996

2. Craig Gentry (2009) Fully homomorphic encryption using ideal lattices. dblp computer science bibliography, https://dblp.org, https://dblp.org/rec/conf/stoc/Gentry09.bib, Mon, 26 Nov 2018 15:05:57 +0100, 10.1145/1536414.1536440, https://doi.org/10.1145/1536414.1536440, 169--178, Proceedings of the 41st Annual {ACM} Symposium on Theory of Computing, {STOC} 2009, Bethesda, MD, USA, May 31 - June 2, 2009

3. Ravi Kannan (1983) Improved Algorithms for Integer Programming and Related Lattice Problems. dblp computer science bibliography, https://dblp.org, https://dblp.org/rec/conf/stoc/Kannan83.bib, Mon, 26 Nov 2018 15:05:57 +0100, 10.1145/800061.808749, https://doi.org/10.1145/800061.808749, 193--206, Proceedings of the 15th Annual {ACM} Symposium on Theory of Computing, 25-27 April, 1983, Boston, Massachusetts, {USA}

4. Nicolas Gama and Phong Q. Nguyen and Oded Regev (2010) Lattice Enumeration Using Extreme Pruning. dblp computer science bibliography, https://dblp.org, https://dblp.org/rec/conf/eurocrypt/GamaNR10.bib, Tue, 14 May 2019 10:00:53 +0200, 10.1007/978-3-642-13190-5\_13, https://doi.org/10.1007/978-3-642-13190-5\_13, 257--278, Advances in Cryptology - {EUROCRYPT} 2010, 29th Annual International Conference on the Theory and Applications of Cryptographic Techniques, Monaco / French Riviera, May 30 - June 3, 2010. Proceedings

5. Mikl{\'{o}}s Ajtai and Ravi Kumar and D. Sivakumar (2001) A sieve algorithm for the shortest lattice vector problem. dblp computer science bibliography, https://dblp.org, https://dblp.org/rec/conf/stoc/AjtaiKS01.bib, Mon, 08 Mar 2021 08:56:42 +0100, 10.1145/380752.380857, https://doi.org/10.1145/380752.380857, 601--610, Proceedings on 33rd Annual {ACM} Symposium on Theory of Computing, July 6-8, 2001, Heraklion, Crete, Greece