Paper 2024/1758
A comprehensive analysis of Regev's quantum algorithm
, CNRSAbstract
Public key cryptography can be based on integer factorization and the discrete logarithm problem (DLP), applicable in multiplicative groups and elliptic curves. Regev’s recent quantum algorithm was initially designed for the factorization and was later extended to the DLP in the multiplicative group. In this article, we further extend the algorithm to address the DLP for elliptic curves. Notably, based on celebrated conjectures in Number Theory, Regev’s algorithm is asymptotically faster than Shor’s algorithm for elliptic curves. Our analysis covers all cases where Regev’s algorithm can be applied. We examine the general framework of Regev’s algorithm and offer a geometric description of its parameters. This preliminary analysis enables us to certify the success of the algorithm on a particular instance before running it. In the case of integer factorization, we demonstrate that there exists an in- finite family of RSA moduli for which the algorithm always fails. On the other hand, when the parameters align with the Gaussian heuristics, we prove that Regev’s algorithm succeeds. By noting that the algorithm naturally adapts to the multidimensional DLP, we proved that it succeeds for a certain range of parameters.
Metadata
- Available format(s)
-
PDF
- Category
- Attacks and cryptanalysis
- Publication info
- Preprint.
- Keywords
- elliptic curvesquantum algorithmsfactorizationdiscrete logarithm problem
- Contact author(s)
-
razvan barbulescu @ u-bordeaux fr
mugurel barcau @ imar ro
vicentiu pasol @ imar ro - History
- 2024-11-05: revised
- 2024-10-28: received
- See all versions
- Short URL
- https://ia.cr/2024/1758
- License
-
CC0
BibTeX
@misc{cryptoeprint:2024/1758,
author = {Razvan Barbulescu and Mugurel Barcau and Vicentiu Pasol},
title = {A comprehensive analysis of Regev's quantum algorithm},
howpublished = {Cryptology {ePrint} Archive, Paper 2024/1758},
year = {2024},
url = {https://eprint.iacr.org/2024/1758}
}
