Cryptology ePrint Archive: Report 2014/398

Differential Properties of the HFE Cryptosystem

Taylor Daniels and Daniel Smith-Tone

Abstract: Multivariate Public Key Cryptography (MPKC) has been put forth as a possible post-quantum family of cryptographic schemes. These schemes lack provable security in the reduction theoretic sense, and so their security against yet undiscovered attacks remains uncertain. The effectiveness of differential attacks on various field-based systems has prompted the investigation of differential properties of multivariate schemes to determine the extent to which they are secure from differential adversaries. Due to its role as a basis for both encryption and signature schemes we contribute to this investigation focusing on the HFE cryptosystem. We derive the differential symmetric and invariant structure of the HFE central map and that of HFE- and provide a collection of parameter sets which make these HFE systems provably secure against a differential symmetric or differential invariant attack.

Category / Keywords: public-key cryptography / HFE, differential, provable security, symmetry, invariant

Date: received 30 May 2014, last revised 4 Jun 2014

Contact author: daniel smith at nist gov

Available format(s): PDF | BibTeX Citation

Note: Reasonable Version

Version: 20140604:110007 (All versions of this report)

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]