Polynomial Equivalence Problems: Algorithmic and Theoretical Aspects - Archive ouverte HAL Accéder directement au contenu
Communication Dans Un Congrès Année : 2006

Polynomial Equivalence Problems: Algorithmic and Theoretical Aspects

Ludovic Perret
  • Fonction : Auteur

Résumé

The Isomorphism of Polynomials (IP) [28], which is the main concern of this paper, originally corresponds to the problem of recovering the secret key of a C* scheme [26]. Besides, the security of various other schemes (signature, authentication [28], traitor tracing [5], ...) also depends on the practical hardness of IP. Due to its numerous applications, the Isomorphism of Polynomials is thus one of the most fundamental problems in multivariate cryptography. In this paper, we address two complementary aspects of IP, namely its theoretical and practical difficulty. We present an upper bound on the theoretical complexity of “IP-like” problems, i.e. a problem consisting in recovering a particular transformation between two sets of multivariate polynomials. We prove that these problems are not NP-Hard (provided that the polynomial hierarchy does not collapse). Concerning the practical aspect, we present a new algorithm for solving IP. In a nutshell, the idea is to generate a suitable algebraic system of equations whose zeroes correspond to a solution of IP. From a practical point of view, we employed a fast Gröbner basis algorithm, namely F5 [17], for solving this system. This approach is efficient in practice and obliges to modify the current security criteria for IP. We have indeed broken several challenges proposed in literature [28, 29, 5]. For instance, we solved a challenge proposed by O. Billet and H. Gilbert at Asiacrypt’03 [5] in less than one second.

Dates et versions

hal-01351407 , version 1 (03-08-2016)

Identifiants

Citer

Jean-Charles Faugère, Ludovic Perret. Polynomial Equivalence Problems: Algorithmic and Theoretical Aspects. EuroCrypt 2006 Advances in Cryptology, May 2006, Saint Petersburg, Russia. pp.30-47, ⟨10.1007/11761679_3⟩. ⟨hal-01351407⟩
59 Consultations
0 Téléchargements

Altmetric

Partager

Gmail Facebook X LinkedIn More