一种基于编码的公钥密码体制的参数选择研究

doi:10.3969/j.issn.1671-1122.2014.10.010

信息网络安全 ›› 2014, Vol. 14 ›› Issue (10): 54-58.doi: 10.3969/j.issn.1671-1122.2014.10.010

一种基于编码的公钥密码体制的参数选择研究

徐权佐, 蔡庆军

广州大学数学与信息科学学院,广东广州 510006

收稿日期:2014-08-07 出版日期:2014-10-01 发布日期:2015-08-17
作者简介:
徐权佐（1990-）,男,广东,硕士研究生,主要研究方向：密码学与信息安全;蔡庆军（1976-）,男,黑龙江,副教授,博士,主要研究方向：密码学与信息安全。
基金资助:
国家自然科学基金[11371106]

Research on Parameter Selection of a Code-based Public-Key Cryptosystem

XU Quan-zuo, CAI Qing-jun

School of Mathematics and Information Science of Guangzhou University, Guangzhou Guangdong 510006, China

Received:2014-08-07 Online:2014-10-01 Published:2015-08-17

摘要/Abstract

摘要：

TCHo公钥密码体制是“Trapdoor Cipher,Hardware Oriented”的缩写,是受快速相关攻击中的陷门密码启发而得到的一种基于编码的公钥密码体制。它能抵抗量子计算机的攻击,是一种后量子密码体制。2006年,Finiasz 和Vaudenay 提出了TCHo公钥密码体制的一种非多项式解密时间的早期版本。2007年,Aumasson 等人介绍了使用启发式算法多项式复杂度的TCHo 密码体制。2013年,Alexandre 和Serge 在“Advances in Network Analysis and its Applications” 一书中系统介绍了TCHo 密码体制。它的安全性基于低重量多项式的倍式问题和带噪声的LFSR区分问题,因此参数的选择决定了密码体制的安全性与可靠性。文章详细介绍了TCHo密码体制,针对TCHo密码体制的参数选择进行了分析,指出该密码体制达到唯一译码的条件,并给出了衡量密码体制可靠性程度的计算公式,同时提出了参数选择的一种方法,从而使密码体制更可靠。

关键词: 公钥密码体制, 基于编码的密码体制, 后量子密码学

Abstract:

TCHo is short for “Trapdoor Cipher, Hardware Oriented” . It is a code-based public-key cryptosystem which is inspired by fast correlation attack. TCHo cryptosystem can resist the attacks from quantum computers which is a post-quantum cryptosystem. An early version was proposed in 2006 by Finiasz and Vaudenay with non-polynomial (though practical) decryption time. The later version came in 2007 with more co-authors. It reached competitive (heuristic) polynomial complexity and IND-CPA security. In 2013, Alexandre and Serge introduces the TCHo cryptosystem in Advances in Network Analysis and its Applications. The security of the cryptosystem relies on the hardness of finding a multiple polynomial with low weight and on the hardness of distinguishing between the out of the LFSR with noise and some random sources, hence, the parameter selection of this cryptosystem determines the security and reliability. This paper introduces the TCHo cryptosystem in detail and analyzes the parameter selection. This paper also points out the condition of achieving the only decoding and discusses the calculation formula for measuring the reliability level of the cryptosystem. At the same time, a method of parameter selection is presented so that the cryptosystem is more reliable.

Key words: public-key cryptosystem, code-based cryptosystem, post-quantum cryptography

中图分类号:

TP309

徐权佐, 蔡庆军. 一种基于编码的公钥密码体制的参数选择研究[J]. 信息网络安全, 2014, 14(10): 54-58.

XU Quan-zuo, CAI Qing-jun. Research on Parameter Selection of a Code-based Public-Key Cryptosystem[J]. Netinfo Security, 2014, 14(10): 54-58.

图/表 1

参考文献 9

[1]	Shor P W.Polynomial-time algorithms for prime factorization and discrete logarithms on a quantum computer[J]. SIAM journal on computing, 1997, 26(5): 1484-1509.
[2]	Finiasz M, Vaudenay S.When stream cipher analysis meets public-key cryptography[C]//Selected Areas in Cryptography. Springer Berlin Heidelberg, 2007: 266-284.
[3]	Vaudenay S, Aumasson J P, Finiasz M, et al.TCHo: a Hardware-Oriented Trapdoor Cipher[C]//ACISP" 07: the 12th Australasian Conference on Information Security and Privacy. Springer, 2007 (LASEC-CONF-2007-053): 184-199.
[4]	Duc A, Vaudenay S.TCHo: A Code-Based Cryptosystem[C]//.Advances in Network Analysis and its Applications. Springer Berlin Heidelberg, 2013: 149-179.
[5]	El Aimani L, von zur Gathen J. Finding low weight polynomial multiples using lattices[R]. Cryptology ePrint Archive, Report2007/423(2007).
[6]	Canteaut A, Chabaud F.A New Algorithm for Finding Minimum-Weight Words in a LinearCode: Application to McEliece’s Cryptosystem and to Narrow-Sense BCH Codes of Length 511[J]. IEEE Transactions on Information Theory, 1998,44(1):367-378.
[7]	Anscomeb F J.Large - sample theory of sequential estimation. Proe[M]. Cambridge: Cambridge philos,1996.
[8]	Herrmann, M., Leander, G.A Practical Key Recovery Attack on Basic TCHo[C]// Public Key Cryptography, Lecture Notes in Computer Science, Springer, 2009,5443:411-424.
[9]	Fujisaki E, Okamoto T.Secure integration of asymmetric and symmetric encryption schemes[C]//Advances in Cryptology—CRYPTO'99. Springer Berlin Heidelberg, 1999: 537-554.

一种基于编码的公钥密码体制的参数选择研究

Research on Parameter Selection of a Code-based Public-Key Cryptosystem

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 1

参考文献 9

相关文章 7

编辑推荐

Metrics

本文评价

[1]	刘明烨, 韩益亮, 杨晓元. 基于准循环低密度奇偶校验码的签密方案研究[J]. 信息网络安全, 2016, 16(11): 66-72.
[2]	刘锦刚, 董军武. 基于大整数分解的身份加密体制研究[J]. 信息网络安全, 2015, 15(10): 32-39.
[3]	卢伟龙. 基于公钥密码体制的动态无线传感器网络安全数据聚合研究[J]. , 2013, 13(12): 0-0.
[4]	李智星;许春根. 一种基于多变量的代理签名方案[J]. , 2011, 11(12): 0-0.
[5]	刘丹;刘畅;宋樵. 基于身份的安全电子邮件系统[J]. , 2010, (5): 0-0.
[6]	管海明. 抗量子计算公钥密码需求分析与技术路线[J]. , 2009, 9(4): 0-0.
[7]	王文博;杜彦辉. 公钥密码体制在网上银行中的应用[J]. , 2009, 9(4): 0-0.