Paper 2024/541
Dual Support Decomposition in the Head: Shorter Signatures from Rank SD and MinRank
Abstract
The MPC-in-the-Head (MPCitH) paradigm is widely used for building post-quantum signature schemes, as it provides a versatile way to design proofs of knowledge based on hard problems. Over the years, the MPCitH landscape has changed significantly, with the most recent improvements coming from VOLE-in-the-Head (VOLEitH) and Threshold-Computation-in-the-Head (TCitH). While a straightforward application of these frameworks already improve the existing MPCitH-based signatures, we show in this work that we can adapt the arithmetic constraints representing the underlying security assumptions (here called the modeling) to achieve smaller sizes using these new techniques. More precisely, we explore existing modelings for the rank syndrome decoding (RSD) and MinRank problems and we introduce a new modeling, named dual support decomposition, which achieves better sizes with the VOLEitH and TCitH frameworks by minimizing the size of the witnesses. While this modeling is naturally more efficient than the other ones for a large set of parameters, we show that it is possible to go even further and explore new areas of parameters. With these new modeling and parameters, we obtain low-size witnesses which drastically reduces the size of the arithmetic part of the signature. We apply the TCitH and VOLEitH frameworks to our new modeling for both RSD and MinRank and compare our results to the NIST candidates RYDE, MiRitH, and MIRA (MPCitH-based schemes from RSD and MinRank). We also note that recent techniques optimizing the sizes of GGM trees are applicable to our schemes and further reduce the signature sizes by a few hundred bytes. We obtain signature sizes below 3.5 kB for 128 bits of security with N=256 parties (a.k.a. leaves in the GGM trees) and going as low as ≈ 2.8 kB with N=2048, for both RSD and MinRank. This represents an improvement of more than 2 kB compared to the original submissions to the 2023 NIST call for additional signatures.
Metadata
- Available format(s)
- Category
- Public-key cryptography
- Publication info
- A minor revision of an IACR publication in ASIACRYPT 2024
- Keywords
- code-basedrank-metricMPC-in-the-Headpost-quantum signatures
- Contact author(s)
-
loic bidoux @ tii ae
thibauld feneuil @ cryptoexperts com
gaborit @ unilim fr
romaric neveu @ unilim fr
matthieu rivain @ cryptoexperts com - History
- 2024-11-08: last of 2 revisions
- 2024-04-07: received
- See all versions
- Short URL
- https://ia.cr/2024/541
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2024/541, author = {Loïc Bidoux and Thibauld Feneuil and Philippe Gaborit and Romaric Neveu and Matthieu Rivain}, title = {Dual Support Decomposition in the Head: Shorter Signatures from Rank {SD} and {MinRank}}, howpublished = {Cryptology {ePrint} Archive, Paper 2024/541}, year = {2024}, url = {https://eprint.iacr.org/2024/541} }