On the Security of Subspace Subcodes of Reed-Solomon Codes for Public Key Encryption

被引：3

作者：

Couvreur, Alain ^{[1
]}

Lequesne, Matthieu ^{[2
,3
,4
]}

机构：

[1] Ecole Polytech, LIX, F-91120 Palaiseau, France

[2] Sorbonne Univ, Dept Comp Sci, F-75006 Paris, France

[3] INRIA, F-75012 Paris, France

[4] CWI, NL-1098 XG Amsterdam, Netherlands

来源：

IEEE TRANSACTIONS ON INFORMATION THEORY | 2022年 / 68卷 / 01期

关键词：

Code-based cryptography; McEliece encryption scheme; subspace subcodes; GRS codes; expansion of codes; square product of codes; key recovery attack; POLYNOMIAL-TIME ATTACK; CRYPTOSYSTEMS; CRYPTANALYSIS; MCELIECE;

D O I：

10.1109/TIT.2021.3120440

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This article discusses the security of McEliece-like encryption schemes using subspace subcodes of Reed-Solomon codes, i.e. subcodes of Reed-Solomon codes over F-q(m) whose entries lie in a fixed collection of Fq-subspaces of F(q)m. These codes appear to be a natural generalisation of Goppa and alternant codes and provide a broader flexibility in designing code based encryption schemes. For the security analysis, we introduce a new operation on codes called the twisted product which yields a polynomial time distinguisher on such subspace subcodes as soon as the chosen F-q-subspaces have dimension larger than m/2. From this distinguisher, we build an efficient attack which in particular breaks some parameters of a recent proposal due to Khathuria, Rosenthal and Weger.

引用

页码：632 / 648

页数：17

共 50 条

[1] Subspace subcodes of Reed-Solomon codes
Hattori, M
McEliece, RJ
Solomon, G
[J]. IEEE TRANSACTIONS ON INFORMATION THEORY, 1998, 44 (05) : 1861 - 1880
[2] SUBSPACE SUBCODES OF GENERALIZED REED-SOLOMON CODES
崔杰
裴君莹
[J]. Acta Mathematicae Applicatae Sinica, 2001, (04) : 503 - 508
[3] Subspace subcodes of generalized reed-solomon codes
Cui Jie
Pei Junying
[J]. Acta Mathematicae Applicatae Sinica, 2001, 17 (4) : 503 - 508
[4] Identifying high-dimension subspace subcodes of Reed-Solomon codes
Spence, SA
[J]. IEEE TRANSACTIONS ON INFORMATION THEORY, 2004, 50 (06) : 1280 - 1282
[5] SUBFIELD SUBCODES OF MODIFIED REED-SOLOMON CODES
DELSARTE, P
[J]. IEEE TRANSACTIONS ON INFORMATION THEORY, 1975, 21 (05) : 575 - 576
[6] Special sequences as subcodes of reed-solomon codes
Davydov, A. A.
Zyablov, V. V.
Kalimullin, R. E.
[J]. PROBLEMS OF INFORMATION TRANSMISSION, 2010, 46 (04) : 321 - 345
[7] Special sequences as subcodes of reed-solomon codes
A. A. Davydov
V. V. Zyablov
R. E. Kalimullin
[J]. Problems of Information Transmission, 2010, 46 : 321 - 345
[8] Subcodes of Reed-Solomon codes suitable for soft decoding
Raj, Safitha J.
Thangaraj, Andrew
[J]. APPLIED ALGEBRA, ALGEBRAIC ALGORITHMS AND ERROR-CORRECTING CODES, PROCEEDINGS, 2007, 4851 : 217 - +
[9] Subcodes constructed from bases of Reed-Solomon codes
Fuwa, S
Tanabe, H
Umeda, H
[J]. ELECTRONICS AND COMMUNICATIONS IN JAPAN PART I-COMMUNICATIONS, 2003, 86 (07): : 64 - 73
[10] Construction of deletion correcting codes using generalized Reed-Solomon codes and their subcodes
Tonien, Dongvu
Safavi-Naini, Reihaneh
[J]. DESIGNS CODES AND CRYPTOGRAPHY, 2007, 42 (02) : 227 - 237

← 1 2 3 4 5 →