Survey on fully homomorphic encryption, theory, and applications
Data privacy concerns are increasing significantly in the context of the Internet of Things,
cloud services, edge computing, artificial intelligence applications, and other applications …
cloud services, edge computing, artificial intelligence applications, and other applications …
The general sieve kernel and new records in lattice reduction
Abstract We propose the General Sieve Kernel (G6K, pronounced/e. si. ka/), an abstract
stateful machine supporting a wide variety of lattice reduction strategies based on sieving …
stateful machine supporting a wide variety of lattice reduction strategies based on sieving …
LWE with side information: attacks and concrete security estimation
We propose a framework for cryptanalysis of lattice-based schemes, when side information—
in the form of “hints”—about the secret and/or error is available. Our framework generalizes …
in the form of “hints”—about the secret and/or error is available. Our framework generalizes …
Hawk: Module LIP Makes Lattice Signatures Fast, Compact and Simple
L Ducas, EW Postlethwaite, LN Pulles… - … Conference on the …, 2022 - Springer
We propose the signature scheme Hawk, a concrete instantiation of proposals to use the
Lattice Isomorphism Problem (LIP) as a foundation for cryptography that focuses on …
Lattice Isomorphism Problem (LIP) as a foundation for cryptography that focuses on …
NTRU fatigue: how stretched is overstretched?
L Ducas, W van Woerden - … 2021: 27th International Conference on the …, 2021 - Springer
Until recently lattice reduction attacks on NTRU lattices were thought to behave similar as on
(ring-) LWE lattices with the same parameters. However several works (Albrecht-Bai-Ducas …
(ring-) LWE lattices with the same parameters. However several works (Albrecht-Bai-Ducas …
Lattice‐based cryptosystems in standardisation processes: A survey
The current widely used public‐key cryptosystems are vulnerable to quantum attacks. To
prepare for cybersecurity in the quantum era, some projects have been launched to call for …
prepare for cybersecurity in the quantum era, some projects have been launched to call for …
Lattice attacks on NTRU and LWE: a history of refinements
M Albrecht, L Ducas - Cryptology ePrint Archive, 2021 - eprint.iacr.org
Since its invention in 1982, the LLL lattice reduction algorithm (Lenstra, Lenstra, Lovasz
1982) has found countless applications. In cryptanalysis, the two most prominent …
1982) has found countless applications. In cryptanalysis, the two most prominent …
Faster dual lattice attacks for solving LWE with applications to CRYSTALS
Q Guo, T Johansson - Advances in Cryptology–ASIACRYPT 2021: 27th …, 2021 - Springer
Cryptosystems based on the learning with errors (LWE) problem are assigned a security
level that relates to the cost of generic algorithms for solving the LWE problem. This includes …
level that relates to the cost of generic algorithms for solving the LWE problem. This includes …
ModFalcon: Compact signatures based on module-NTRU lattices
Lattices lead to promising practical post-quantum digital signatures, combining asymptotic
efficiency with strong theoretical security guarantees. However, tuning their parameters into …
efficiency with strong theoretical security guarantees. However, tuning their parameters into …
A complete analysis of the BKZ lattice reduction algorithm
We present the first rigorous dynamic analysis of BKZ, the most widely used lattice reduction
algorithm besides LLL: we provide guarantees on the quality of the current lattice basis …
algorithm besides LLL: we provide guarantees on the quality of the current lattice basis …