On the Security of LWE Cryptosystem against Subversion Attacks-Reference-Cited by-同舟云学术

On the Security of LWE Cryptosystem against Subversion Attacks

Published:2019-09-10 Issue:4 Volume:63 Page:495-507
ISSN:0010-4620
Container-title:The Computer Journal
language:en
Short-container-title:

Author:

Yang Zhichao¹,Chen Rongmao¹,Li Chao¹²,Qu Longjiang²,Yang Guomin³

Affiliation:

1. 410000 College of Computer, National University of Defence Technology, Hunan, Changsha, P. R. China

2. 410000 College of Liberal Arts and Sciences, National University of Defence Technology, Hunan, Changsha, P. R. China

3. 2500 School of Computing and Information Technology, University of Wollongong, Wollongong, Australia

Abstract

Abstract Subversion of cryptography has received wide attentions especially after the Snowden Revelations in 2013. Most of the currently proposed subversion attacks essentially rely on the freedom of randomness choosing in the cryptographic protocol to hide backdoors embedded in the cryptosystems. Despite the fact that significant progresses in this line of research have been made, most of them mainly considered the classical setting, while the research gap regarding subversion attacks against post-quantum cryptography remains tremendous. Inspired by this observation, we investigate a subversion attack against existing protocol that is proved post-quantum secure. Particularly, we show an efficient way to undetectably subvert the well-known lattice-based encryption scheme proposed by Regev (STOC 2005). Our subversion enables the subverted algorithm to stealthily leak arbitrary messages to the outsider who knows the backdoor. Through theoretical analysis and experimental observations, we demonstrate that the subversion attack against the LWE encryption scheme is feasible and practical.

Funder

National Key R&D Program of China

National Natural Science Foundation of China

Young Elite Scientists Sponsorship Program by CAST

Science Research Plan Program by NUDT

Publisher

Oxford University Press (OUP)

Subject

General Computer Science

Link

http://academic.oup.com/comjnl/article-pdf/63/4/495/33153492/bxz084.pdf

Reference44 articles.

1. Revealed: how US and UK spy agencies defeat internet privacy and security;Ball;The Guardian,2013

2. NSA able to foil basic safeguards of privacy on web;Larson;The New York Times,2013

3. No place to hide: Edward Snowden, the NSA, and the US surveillance state;Greenwald;Intell. Natl. Secur.,2014

4. Kleptography: using cryptography against cryptography;Young,1997

5. The dark side of “black-box” cryptography or: should we trust capstone?;Young,1996

Cited by 8 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Backdooring Post-Quantum Cryptography: Kleptographic Attacks on Lattice-based KEMs;Proceedings of the Great Lakes Symposium on VLSI 2024;2024-06-12

2. Fuzzing+Hardware Performance Counters-Based Detection of Algorithm Subversion Attacks on Postquantum Signature Schemes;IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems;2023-02

3. A Combination Reduction Algorithm and Its Application;Network and System Security;2022

4. Linearly Homomorphic Signatures from Lattices;The Computer Journal;2020-11-27

5. Modified multi-key fully homomorphic encryption based on NTRU cryptosystem without key-switching;Tsinghua Science and Technology;2020-10