Paper 2005/104

On estimating the lattice security of NTRU

Nick Howgrave-Graham, Jeff Hoffstein, Jill Pipher, and William Whyte

Abstract

This report explicitly refutes the analysis behind a recent claim that NTRUEncrypt has a bit security of at most 74 bits. We also sum up some existing literature on NTRU and lattices, in order to help explain what should and what should not be classed as an improved attack against the hard problem underlying NTRUEncrypt. We also show a connection between Schnorr's RSR technique and exhaustively searching the NTRU lattice.

Metadata
Available format(s)
PS
Category
Public-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
lattices
Contact author(s)
nhowgravegraham @ ntru com
History
2005-04-14: received
Short URL
https://ia.cr/2005/104
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2005/104,
      author = {Nick Howgrave-Graham and Jeff Hoffstein and Jill Pipher and William Whyte},
      title = {On estimating the lattice security of {NTRU}},
      howpublished = {Cryptology {ePrint} Archive, Paper 2005/104},
      year = {2005},
      url = {https://eprint.iacr.org/2005/104}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.