### On the Integer Polynomial Learning with Errors Problem

Julien Devevey, Amin Sakzad, Damien Stehlé, and Ron Steinfeld

##### Abstract

Several recent proposals of efficient public-key encryption are based on variants of the polynomial learning with errors problem ($\mathsf{PLWE}^f$) in which the underlying polynomial ring $\mathbb{Z}_q[x]/f$ \ is replaced with the (related) modular integer ring $\mathbb{Z}_{f(q)}$; the corresponding problem is known as Integer Polynomial Learning with Errors ($\mathsf{I-PLWE}^f$). Cryptosystems based on $\mathsf{I-PLWE}^f$ and its variants can exploit optimised big-integer arithmetic to achieve good practical performance, as exhibited by the $\mathsf{ThreeBears}$ cryptosystem. Unfortunately, the average-case hardness of $\mathsf{I-PLWE}^f$ and its relation to more established lattice problems have to date remained unclear. We describe the first polynomial-time average-case reductions for the search variant of $\mathsf{I-PLWE}^f$, proving its computational equivalence with the search variant of its counterpart problem $\mathsf{PLWE}^f$. Our reductions apply to a large class of defining polynomials $f$. To obtain our results, we employ a careful adaptation of Rényi divergence analysis techniques to bound the impact of the integer ring arithmetic carries on the error distributions. As an application, we present a deterministic public-key cryptosystem over integer rings. Our cryptosystem, which resembles $\mathsf{ThreeBears}$, enjoys one-way (OW-CPA) security provably based on the search variant of $\mathsf{I-PLWE}^f$.

Available format(s)
Category
Foundations
Publication info
A major revision of an IACR publication in PKC 2021
Keywords
latticesring-LWEaverage-case reductionOW-CPAI-RLWE
Contact author(s)
julien devevey @ ens-lyon fr
damien stehle @ ens-lyon fr
ron steinfeld @ monash edu
History
Short URL
https://ia.cr/2021/277

CC BY

BibTeX

@misc{cryptoeprint:2021/277,
author = {Julien Devevey and Amin Sakzad and Damien Stehlé and Ron Steinfeld},
title = {On the Integer Polynomial Learning with Errors Problem},
howpublished = {Cryptology ePrint Archive, Paper 2021/277},
year = {2021},
note = {\url{https://eprint.iacr.org/2021/277}},
url = {https://eprint.iacr.org/2021/277}
}

Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.