Paper 2024/2058

Learning with Errors from Nonassociative Algebras

Andrew Mendelsohn, Imperial College London
Cong Ling, Imperial College London
Abstract

We construct a provably-secure structured variant of Learning with Errors (LWE) using nonassociative cyclic division algebras, assuming the hardness of worst-case structured lattice problems, for which we are able to give a full search-to-decision reduction, improving upon the construction of Grover et al. named `Cyclic Learning with Errors' (CLWE). We are thus able to create structured LWE over cyclic algebras without any restriction on the size of secret spaces, which was required for CLWE as a result of its restricted security proof. We reduce the shortest independent vectors problem in ideal lattices, obtained from ideals in orders of such algebras, to the decision variant of LWE defined for nonassociative CDAs. We believe this variant has greater security and greater freedom with parameter choices than CLWE, and greater asymptotic efficiency of multiplication than module LWE. Our reduction requires new results in the ideal theory of such nonassociative algebras, which may be of independent interest. We then adapt an LPR-like PKE scheme to hold for nonassociative spaces, and discuss the efficiency and security of our construction, showing that it is immune to certain subfield attacks. Finally, we give example parameters to construct algebras for cryptographic use.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
A minor revision of an IACR publication in CIC 2025
Keywords
learning with errorspost-quantum cryptographypublic key encryptionlatticesalgebras
Contact author(s)
am3518 @ ic ac uk
c ling @ imperial ac uk
History
2024-12-22: approved
2024-12-20: received
See all versions
Short URL
https://ia.cr/2024/2058
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2024/2058,
      author = {Andrew Mendelsohn and Cong Ling},
      title = {Learning with Errors from Nonassociative Algebras},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/2058},
      year = {2024},
      url = {https://eprint.iacr.org/2024/2058}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.