Paper 2024/539

Supersingular Hashing using Lattès Maps

Daniel Larsson, University of South-Eastern Norway
Abstract

In this note we propose a variant (with four sub-variants) of the Charles--Goren--Lauter (CGL) hash function using Lattès maps over finite fields. These maps define dynamical systems on the projective line. The underlying idea is that these maps ``hide'' the $j$-invariants in each step in the isogeny chain, similar to the Merkle--Damgård construction. This might circumvent the problem concerning the knowledge of the starting (or ending) curve's endomorphism ring, which is known to create collisions in the CGL hash function. Let us, already in the abstract, preface this note by remarking that we have not done any explicit computer experiments and benchmarks (apart from a small test on the speed of computing the orbits), nor do we make any security claims. Part of the reason for this is the author's lack of competence in complexity theory and evaluation of security claims. Instead this note is only meant as a presentation of the main idea, the hope being that someone more competent will find it interesting enough to pursue further.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint.
Keywords
Supersingular Isogeny GraphsLattès maps
Contact author(s)
daniel larsson @ usn no
History
2024-04-08: approved
2024-04-07: received
See all versions
Short URL
https://ia.cr/2024/539
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2024/539,
      author = {Daniel Larsson},
      title = {Supersingular Hashing using Lattès Maps},
      howpublished = {Cryptology ePrint Archive, Paper 2024/539},
      year = {2024},
      note = {\url{https://eprint.iacr.org/2024/539}},
      url = {https://eprint.iacr.org/2024/539}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.