Paper 2024/230
Analysis of Layered ROLLO-I: A BII-LRPC code-based KEM
, Eindhoven University of TechnologyAbstract
We analyze Layered ROLLO-I, a code-based cryptosystem published in IEEE Communications Letters and submitted to the Korean post-quantum cryptography competition. Four versions of Layered ROLLO-I have been proposed in the competition. We show that the first two versions do not provide the claimed security against rank decoding attacks and give reductions to small instances of the original ROLLO-I scheme, which was a candidate in the NIST competition and eliminated there due to rank decoding attacks. As a second contribution, we provide two efficient message recovery attacks, affecting every security level of the first three versions of Layered ROLLO-I and security levels 128 and 192 of the fourth version.
Note: Expands the paper, adding more details on the attacks and improving readability. Fixes typos.
Metadata
- Available format(s)
-
PDF
- Category
- Attacks and cryptanalysis
- Publication info
- Preprint.
- Keywords
- Post-quantum cryptographycode-based cryptographyrank-metric codeBII-LRPC codeROLLO-I.
- Contact author(s)
-
chee @ nsr re kr
jeongkc @ nsr re kr
tanja @ hyperelliptic org
narilee @ nsr re kr
alex pellegrini @ live com
hansolryu @ nsr re kr - History
- 2024-05-10: last of 2 revisions
- 2024-02-14: received
- See all versions
- Short URL
- https://ia.cr/2024/230
- License
-
CC0
BibTeX
@misc{cryptoeprint:2024/230,
author = {Seongtaek Chee and Kyung Chul Jeong and Tanja Lange and Nari Lee and Alex Pellegrini and Hansol Ryu},
title = {Analysis of Layered {ROLLO}-I: A {BII}-{LRPC} code-based {KEM}},
howpublished = {Cryptology {ePrint} Archive, Paper 2024/230},
year = {2024},
url = {https://eprint.iacr.org/2024/230}
}
