Cryptology ePrint Archive: Report 2016/085

Cryptanalysis of ring-LWE based key exchange with key share reuse

Scott Fluhrer

Abstract: This paper shows how several ring-LWE based key exchange protocols can be broken, under the assumption that the same key share is used for multiple exchanges. This indicates that, if these key exchange protocols are used, then it will be necessary for a fresh key share be generated for each exchange, and that these key exchange protocols cannot be used as a drop in replacement for designs which use Diffie-Hellman static key shares.

Category / Keywords: public-key cryptography / lattice techniques, LWE, ring LWE

Date: received 30 Jan 2016

Contact author: sfluhrer at cisco com

Available format(s): PDF | BibTeX Citation

Version: 20160131:085759 (All versions of this report)

Short URL:

Discussion forum: Show discussion | Start new discussion

[ Cryptology ePrint archive ]