You are looking at a specific version 20180410:020256 of this paper. See the latest version.

Paper 2018/331

Estimate all the {LWE, NTRU} schemes!

Martin R. Albrecht and Benjamin R. Curtis and Amit Deo and Alex Davidson and Rachel Player and Eamonn W. Postlethwaite and Fernando Virdia and Thomas Wunderer

Abstract

We consider all LWE- and NTRU-based encryption, key encapsulation, and digital signature schemes proposed for standardisation as part of the Post-Quantum Cryptography process run by the US National Institute of Standards and Technology (NIST). In particular, we investigate the impact that different estimates for the asymptotic runtime of (block-wise) lattice reduction have on the predicted security of these schemes. Relying on the ``LWE estimator'' of Albrecht et al., we estimate the cost of running primal and dual lattice attacks against every LWE-based scheme, using every cost model proposed as part of a submission. Furthermore, we estimate the security of the proposed NTRU-based schemes against the primal attack under all cost models for lattice reduction.

Note: Same PDF uploaded, only revised to add keywords.

Metadata
Available format(s)
PDF
Publication info
Preprint.
Keywords
post-quantum cryptographypublic-key cryptographycryptanalysislearning with errorsNTRUNIST
Contact author(s)
benjamin curtis 2015 @ rhul ac uk
History
2018-12-03: revised
2018-04-10: received
See all versions
Short URL
https://ia.cr/2018/331
License
Creative Commons Attribution
CC BY
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.