What problem does this paper attempt to address?

The problem that this paper attempts to solve is about the accuracy of the decryption failure rate test of lattice - based encryption schemes under the LWE assumption. Specifically, the paper focuses on the impact of floating - point arithmetic and ignoring small probabilities on the precision of the decryption failure rate, and proposes a new effective and efficient decryption failure rate test method. This method not only considers the theoretical precision requirements, but also combines heuristic estimation and accurate simulation to improve the test efficiency. ### Background of the Paper Due to the existence of Shor's algorithm, quantum computing poses a serious threat to currently popular public - key cryptosystems (such as RSA, encryption and digital signature schemes based on discrete logarithms, and elliptic curve cryptography). Therefore, much research has been devoted to constructing robust cryptographic schemes that can resist quantum attacks, especially post - quantum cryptography (PQC). Among them, lattice - based cryptography is considered one of the most promising directions in PQC. ### Importance of Decryption Failure Rate The Decryption Failure Rate (DFR) is closely related to the security of lattice - based cryptography. On the one hand, DFR affects the tightness of constructing IND - CCA encryption / KEM in the (quantum) random oracle model; on the other hand, lattice - based schemes with high DFR are vulnerable to "failure - enhanced" attacks, which may lead to a decline in the security level. Therefore, it is of great significance to calculate DFR efficiently and accurately. ### Main Contributions of the Paper 1. **Quantitative Analysis**: The paper first quantitatively analyzes the impact of floating - point arithmetic and the pruning threshold β on the DFR precision. 2. **Data Type Selection**: Based on the analysis results, the paper points out how to select an appropriate floating - point data type according to the cryptographic parameters. 3. **New Test Method**: A new DFR test method is proposed, which has the following characteristics: - It combines heuristic estimation and accurate simulation and uses the internal relationship between them to select the pruning threshold β. - It ensures that the returned estimated value can reach arbitrarily high precision within the range allowed by machine precision, and its accuracy can be verified theoretically. - It selects the pruning boundary β in a balanced and economical way, accelerates the "double - addition" method, and takes less time than previous calculation methods. ### Experimental Verification The paper experimentally verifies the effectiveness of the proposed test method. For example, in cryptographic schemes such as CRYSTALS - Kyber, SABER, and FrodoKEM, using double - precision floating - point numbers (64 - bit) for DFR testing can meet the required precision requirements. ### Conclusion Through in - depth analysis and experimental verification, the paper provides a new, efficient, and accurate DFR test method, which is of great significance for the security evaluation of lattice - based cryptography.