Paper 2021/506

Delegating Supersingular Isogenies over $\mathbb{F}_{p^2}$ with Cryptographic Applications

Robi Pedersen
Osmanbey Uzunkol
Abstract

Although isogeny-based cryptographic schemes enjoy the lowest key sizes amongst current post-quantum cryptographic candidates, they unfortunately come at a high computational cost, which makes their deployment on the ever-growing number of resource-constrained devices difficult. Speeding up the expensive post-quantum cryptographic operations by delegating these computations from a weaker client to untrusted powerful external servers is a promising approach. Following this, we present in this work mechanisms allowing computationally restricted devices to securely and verifiably delegate isogeny computations to potentially untrusted third parties. In particular, we propose two algorithms that can be seamlessly integrated into existing isogeny-based protocols and which lead to a much lower cost for the delegator than the full, local computation. For example, compared to the local computation cost, we reduce the public-key computation step of SIDH/SIKE by a factor 5 and the zero-knowledge proof of identity from Jao and De Feo by a factor 16 for the prover, while it becomes almost free for the verifier, respectively, at the NIST security level 1.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. Major revision. ICISC 2021
DOI
https://doi.org/10.1007/978-3-031-08896-4_5
Keywords
Isogeny-based cryptographyPost-quantum cryptographysecure computation outsourcinglightweight cryptography
Contact author(s)
robi pedersen @ protonmail com
osmanbey uzunkol @ gmail com
History
2024-01-29: last of 5 revisions
2021-04-23: received
See all versions
Short URL
https://ia.cr/2021/506
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/506,
      author = {Robi Pedersen and Osmanbey Uzunkol},
      title = {Delegating Supersingular Isogenies over $\mathbb{F}_{p^2}$ with Cryptographic Applications},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/506},
      year = {2021},
      doi = {https://doi.org/10.1007/978-3-031-08896-4_5},
      url = {https://eprint.iacr.org/2021/506}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.