Jintai Ding,Bo-Yin Yang

DOI: https://doi.org/10.1007/978-3-540-88702-7_6

2009-01-01

Abstract:A multivariate public key cryptosystem (MPKCs for short) have a set of (usually) quadratic polynomials over a finite field as its public map. Its main security assumption is backed by the NP-hardness of the problem to solve nonlinear equations over a finite field. This family is considered as one of the major families of PKCs that could resist potentially even the powerful quantum computers of the future. There has been fast and intensive development in Multivariate Public Key Cryptography in the last two decades. Some constructions are not as secure as was claimed initially, but others are still viable. The paper gives an overview of multivariate public key cryptography and discusses the current status of the research in this area.

Xianhui Lu,Jiang Zhang

DOI: https://doi.org/10.1093/nsr/nwab090

IF: 20.6

2021-05-24

National Science Review

Abstract:The invention of public-key cryptography (PKC) by Diffie and Hellman in 1976 is one of two milestones marking the beginning of modern cryptography. The security of a PKC system requires that it should be infeasible to compute the private key from a given public key, which in turn is typically guaranteed by the difficulty in solving some cryptographic-friendly mathematical problems. Among those problems, the integer factorization and discrete logarithm problems play pivotal roles in the development of public-key cryptography. In particular, the assumption that there is no polynomial time (classical) algorithm that solves the above two problems constitutes the basis for the security of almost all currently used public-key cryptosystems, such as RSA and ElGamal. However, Shor [1] found an efficient quantum solving algorithm for the integer factorization and discrete logarithm problems in 1994, which would destroy the security basis for most real deployed PKC systems if large-scale quantum computers become available. The rapid development of quantum technology in recent years suggests that we are getting closer to the quantum crisis of current PKC systems.

multidisciplinary sciences

Jintai Ding,John Wagner

DOI: https://doi.org/10.1007/978-3-540-88403-3_9

2008-01-01

Abstract:In 1989, Tsujii, Fujioka, and Hirayama proposed a family of multivariate public key cryptosystems, where the public key is given as a set of multivariate rational functions of degree 4. These cryptosystems are constructed via composition of two quadratic rational maps. In this paper, we present the cryptanalysis of this family of cryptosystems. The key point of our attack is to transform a problem of decomposition of two rational maps into a problem of decomposition of two polynomial maps. We develop a new improved 2R decomposition method and other new techniques, which allows us to find an equivalent decomposition of the rational maps to break the system completely. For the example suggested for practical applications, it is very fast to derive an equivalent private key, and it requires only a few seconds on a standard PC.

Jintai Ding,Albrecht Petzoldt

DOI: https://doi.org/10.1109/msp.2017.3151328

IF: 3.105

2017-01-01

IEEE Security & Privacy

Abstract:A review of the current state of multivariate public-key cryptosystems compares and contrasts the most promising multivariate schemes in digital signatures and public-key encryption as well as their security.

olivier billet,jintai ding

DOI: https://doi.org/10.1007/978-3-540-93806-4_15

2009-01-01

Abstract:This paper summarizes most of the main developments in the cryptanalysis of multivariate cryptosystems and discuss some problems that remain open. A strong emphasis is put on the symbolic computation tools that have been used to achieve these advances.

Yuan Feng,Sun Ying,Jiang Jijun,Zhao Shangwei,Xu Shengwei

DOI: https://doi.org/10.1109/cc.2014.7019846

2014-01-01

Abstract:This paper presents a multivariate public key cryptographic scheme over a finite field with odd prime characteristic. The idea of embedding and layering is manifested in its construction. The security of the scheme is analyzed in detail, and this paper indicates that the scheme can withstand the up to date differential cryptanalysis. We give heuristic arguments to show that this scheme resists all known attacks.

NIE Xu-yun,LIU Bo,LU Gang,ZHONG Ting

DOI: https://doi.org/10.11959/j.issn.1000-436x.2015182

2015-01-01

Abstract:The novel extended multivariate public key cryptosystem is a new security enhancement method on multivariate public key cryptosystems,which is proposed by Qiao,et al.A nonlinear invertible transformation was used,named“tame transformation”,on the original multivariate public key cryptosystem to hide its weakness such as linearization equation.However,it is found that if there are many linearization equations satisfied by the original MPKC,there would be many quadratization equations (QE) satisfied by the improved scheme.Given a public key,after finding all QE,a valid cipheretext can be substituted into the QE to derive a set of quadratic equations on the plaintext variable.This exactly reduce the degree of the system wanted to solve.Then the corresponding plaintext can be recovered for a given valid ciphertext combining with Groebner basis method.

LU Gang,NIE Xu-yun,QIN Zhi-guang,HOU Chuan-yong

DOI: https://doi.org/10.3969/j.issn.1001-0548.2018.02.013

2018-01-01

Abstract:In 2014, Yuan et al. proposed a new multivariate public key cryptosystem by combining "small field-big field" and "stepwise triangular" methods. The authors claimed that their scheme can be secure against rank attack, linearization equation attack and differential attack. Through analysis, we found that there are a lot of linearization equations satisfied by this scheme. We can transform it to an equivalent square encryption scheme by linearization equation method and then recover corresponding plaintext for any given cipheretext by differential attack. As to two recommended parameters, for given public key, the complexities of recovering plaintext are 233 and 235, respectively. The results above are further confirmed by computer experiments.

Ping Luo,Yiqi Dai

2004-01-01

Abstract:A modular multiplication is one of the most important operations in public-key cryptography like RSA cryptosystem. This paper is just devoted to a practical method and construction of speeding up such operation. Furthermore, the modular multiplication expansions are given and based on these expansions the fast modular multiplication and parallel algorithms axe proposed.

Hong XIANG,Siyao LI,Bin CAI

DOI: https://doi.org/10.11835/j.issn.1000-582X.2017.07.006

2017-01-01

Abstract:Multivariate public key cryptosystem is an important method to guarantee the security of communication after quantum computer appears.There are lots of practical multivariate signature schemes,but only a few multivariate encryption schemes show up.The simple matrix encryption scheme proposed by Tao,et al.is an efficient and secure multivariate encryption scheme in PQCrypto2013.However,the ratio of length of cipher text to plain text is always 2.Cubic AB encryption scheme is a way to fix it.It uses a very wide matrix to replace square matrixes (B and C),and the elements of matrix A are random quadratic polynomials.With this method,the ratio of length of cipher text to plain text could be changed easily.Besides,rank attack cannot be used to attack this scheme.At the same time,the length of cipher text and plain text will be shorter,which could make the process of decryption faster.

Chengdong Tao,Hong Xiang,Albrecht Petzoldt,Jintai Ding

DOI: https://doi.org/10.1016/j.ffa.2015.06.001

IF: 1.655

2015-01-01

Finite Fields and Their Applications

Abstract:Multivariate cryptography is one of the main candidates to guarantee the security of communication in the presence of quantum computers. While there exist a large number of secure and efficient multivariate signature schemes, the number of practical multivariate encryption schemes is somewhat limited. In this paper we present our results on creating a new multivariate encryption scheme, which is an extension of the original Simple Matrix encryption scheme of PQCrypto 2013. Our scheme allows fast en- and decryption and resists all known attacks against multivariate cryptosystems. Furthermore, we present a new idea to solve the decryption failure problem of the original Simple Matrix encryption scheme. (C) 2015 Elsevier Inc. All rights reserved.

Alan Szepieniec,Jintai Ding,Bart Preneel

DOI: https://doi.org/10.1007/978-3-319-29360-8_12

2016-01-01

Abstract:This paper introduces a new central trapdoor for multivariate quadratic (MQ) public-key cryptosystems that allows for encryption, in contrast to time-tested MQ primitives such as Unbalanced Oil and Vinegar or Hidden Field Equations which only allow for signatures. Our construction is a mixed-field scheme that exploits the commutativity of the extension field to dramatically reduce the complexity of the extension field polynomial implicitly present in the public key. However, this reduction can only be performed by the user who knows concise descriptions of two simple polynomials, which constitute the private key. After applying this transformation, the plaintext can be recovered by solving a linear system. We use the minus and projection modifiers to inoculate our scheme against known attacks. A straightforward C++ implementation confirms the efficient operation of the public key algorithms.

Ruping Shen,Hong Xiang,Xin Zhang,Bin Cai,Tao Xiang

DOI: https://doi.org/10.1007/978-3-030-30146-0_29

2019-01-01

Abstract:Blockchain is one of the most revolutionary and innovative technologies in recent years. The traditional asymmetric encryption algorithms guarantee the security of data on blockchain. However, with the rapid development of quantum computing technologies, as long as large-scale quantum computers appear, these kind of encryption systems can be deciphered by shor algorithm in polynomial time. Therefore, blockchain technologies are going to face potential security threats. To solve this problem, the best solution at present is to replace the asymmetric encryption algorithms in the blockchain with post-quantum cryptosystems. In this paper, we apply the Rainbow algorithm with high signature efficiency to the existing Ethereum platform, and test the feasibility of the scheme by building a private chain. In addition, we compare the signature efficiency of Rainbow algorithm with ECDSA, which is expected to provide direction and inspiration for future research on blockchain resistance to quantum computing.

Jiahui Chen,Jianting Ning,Jie Ling,Terry Shue Chien Lau,Yacheng Wang

DOI: https://doi.org/10.1016/j.tcs.2019.12.032

IF: 1.002

2020-01-01

Theoretical Computer Science

Abstract:It is regarded as a difficult task to design a secure MPKC fundamental schemes such as an encryption scheme. In this paper we introduce a new central trapdoor for multivariate quadratic (MQ) public-key cryptosystems that allows for encryption, in contrast to time-tested MQ primitives such as Unbalanced Oil and Vinegar or Rainbow which only allow for signatures. The same as UOV or Rainbow, our construction is single field scheme where the central polynomial system is chosen to have a particular structure that enables efficient inversion. After applying this transformation, the plaintext can be recovered by solving a linear system. Our new central trapdoor can use to replace the broken extension field calculation trapdoor and simple matrix encryption trapdoor, thereafter, we use the minus and plus modifiers to inoculate our scheme against known attacks. It is highlight that our encryption scheme is a good explore in the area of multivariate cryptography. Finally, a straightforward Magma implementation confirms the efficient operation of the public key algorithms.

Wang Kai,Pei Wen-jiang,Zou Liu-hua,He Zhen-ya

2005-01-01

Abstract:size of the key and the computational complexity of the linear functions respectively. In this paper, the fundamental weakness of the cryptosystem is pointed out and a successful attack is described. Given the public keys and the initial vector, one can calculate the secret key based on Parsevala's theorem. Both theoretical and experimental results show that the attacker can access to the secret key without difficulty. The lack of security discourages the use of such algorithm for practical applications. PACS numbers: 05.45.Vx, 89.70.+c Chaotic systems are characterized by ergodicity, sensitive dependence on initial conditions and random-like behaviors, properties which seem pretty much the same required by several cryptographic primitive characters such as "diffusion" and "confusion". So far, the constructing of secret-key cryptosystems, which are mostly based on both chaotic synchronization and chaos-based pseudorandom bit generator, has attracted a great deal of attention, and plenty of chaos-based stream ciphers and block ciphers had been presented in the past (2, 3). While all the currently used public-key cryptosystems based on number theory work well for both encryption and digital signatures, it is of much importance to construct public-key cryptosystems by chaotic dynamics and there have been some attempts along this line. In Ref. (4, 5), a public key cryptosystems and modification, which are based on distributed dynamics encryption, had been proposed. In those schemes, a high-dimensional dissipative dynamical system is separated into two parts. The binary message is characterize by different attractors, which are named as the 0-attractor and the 1-attractor, in the whole system. An authorized receiver knows the full dynamics and can simulate the system a priori in order to find the state space location of the two different attractors. This receiver is able to decode the message by observing the convergence of the system trajectory to the 0-attractor or to the 1-attractor in a reconstructed phase space. In Ref. (6), a RSA like public key algorithm based on the semigroup property of the Chebyshev map and the Jacobian Elliptic Chebyshev Rational map had been presented, and this algorithm had been used to design the key agreement scheme, deniable authentication scheme and Hash function (7). Unfortunately, the later studies show that this scheme is vulnerable to some sophisticated attack because the semigroup property provides a lot of public keys from a public key with a fixed private key (8, 9), and the modification, designed along the same lines of the

贾杰,徐赐文,李必涛,王晓菲,郭远

DOI: https://doi.org/10.3969/j.issn.1005-8036.2009.02.011

2009-01-01

Abstract:Based on the RSA public key cryptosystem,a probabilistic public key cryptosystem is presented in this paper,using the techniques of time stamp and hash function.In this scheme encoding and decoding have the same operation compared with the RSA,but it is secure for polynomial.At the same time,the problem of great message expansion in probabilistic cryptosystem is solved,the message expansion in this paper is 1.

Jiahui Chen,Jie Ling,Jianting Ning,Jintai Ding

DOI: https://doi.org/10.1093/comjnl/bxz013

2019-01-01

The Computer Journal

Abstract:In this paper, we proposed an idea to construct a general multivariate public key cryptographic (MPKC) scheme based on a user's identity. In our construction, each user is distributed a unique identity by the key distribution center (KDC) and we use this key to generate user's private keys. Thereafter, we use these private keys to produce the corresponding public key. This method can make key generating process easier so that the public key will reduce from dozens of Kilobyte to several bits. We then use our general scheme to construct practical identity-based signature schemes named ID-UOV and ID-Rainbow based on two well-known and promising MPKC signature schemes, respectively. Finally, we present the security analysis and give experiments for all of our proposed schemes and the baseline schemes. Comparison shows that our schemes are both efficient and practical.

Xiaoyun Wang,Guangwu Xu,Mingqiang Wang,Xianmeng Meng

DOI: https://doi.org/10.1201/b19324

2015-01-01

Abstract:Divisibility of Integers The Concept of Divisibility The Greatest Common Divisor and The Least Common Multiple The Euclidean Algorithm Solving Linear Diophantine Equations Prime Factorization of Integers Congruences Residue Classes and Systems of Residues Euler's Theorem Wilson's Theorem Congruence Equations Basic Concepts of Congruences of High Degrees Linear Congruences Systems of Linear Congruence Equations and the Chinese Remainder Theorem General Congruence Equations Quadratic Residues The Legendre Symbol and the Jacobi Symbol Exponents and Primitive Roots Exponents and Their Properties Primitive Roots and Their Properties Indices, Construction of Reduced System of Residues Nth Power Residues Some Elementary Results for Prime Distribution Introduction to the Basic Properties of Primes and The Main Results of Prime Number Distribution Proof of the Euler Product Formula Proof of a Weaker Version of the Prime Number Theorem Equivalent Statements of the Prime Number Theorem Simple Continued Fractions Simple Continued Fractions and Their Basic Properties Simple Continued Fraction Representations of Real Numbers Application of Continued Fraction In Cryptography-Attack to RSA with Small Decryption Exponents Basic Concepts Maps Algebraic Operations Homomorphisms and Isomorphisms between Sets with Operations Equivalence Relations and Partitions Group Theory Definitions Cyclic Groups Subgroups and Cosets Fundamental Homomorphism Theorem Concrete Examples of Finite Groups Rings and Fields Definition of a Ring Integral Domains, Fields, and Division Rings Subrings, Ideals, and Ring Homomorphisms Chinese Remainder Theorem Euclidean Rings Finite Fields Field of Fractions Some Mathematical Problems in Public Key Cryptography Time Estimation and Complexity of Algorithms Integer Factorization Problem Primality Tests The RSA Problem and the Strong RSA Problem Quadratic Residues The Discrete Logarithm Problem Basics of Lattices Basic Concepts Shortest Vector Problem Lattice Basis Reduction Algorithm Applications of LLL Algorithm References Further Reading Index

Wen PANG,Jun-sheng WU

DOI: https://doi.org/10.3969/j.issn.1671-654X.2006.02.035

2006-01-01

Abstract:RSA is the most widely used arithmetic in the field of digital signature at present.Giving a detailed account of the arith-principle and arithmetic process of RSA,analyzed the leak and defect on the aspect of security matter,and formulated a series suggestion on the safety concern of how to enhancing the parameter selective program and avoiding attacked solution.Finally,the developing tend of RSA is prospected.

Yong Wang,Lingyue Li,Ying Zhou,Huili Zhang

DOI: https://doi.org/10.3390/axioms13110741

2024-01-01

Axioms

Abstract:The RSA cryptosystem has been a cornerstone of modern public key infrastructure; however, recent advancements in quantum computing and theoretical mathematics pose significant risks to its security. The advent of fully operational quantum computers could enable the execution of Shor’s algorithm, which efficiently factors large integers and undermines the security of RSA and other cryptographic systems reliant on discrete logarithms. While Grover’s algorithm presents a comparatively lesser threat to symmetric encryption, it still accelerates key search processes, creating potential vulnerabilities. In light of these challenges, there has been an intensified focus on developing quantum-resistant cryptography. Current research is exploring cryptographic techniques based on error-correcting codes, lattice structures, and multivariate public key systems, all of which leverage the complexity of NP-hard problems, such as solving multivariate quadratic equations, to ensure security in a post-quantum landscape. This paper reviews the latest advancements in quantum-resistant encryption methods, with particular attention to the development of robust trapdoor functions. It also provides a detailed analysis of prominent multivariate cryptosystems, including the Matsumoto–Imai, Oil and Vinegar, and Polly Cracker schemes, alongside recent progress in lattice-based systems such as Kyber and Crystals-DILITHIUM, which are currently under evaluation by NIST for potential standardization. As the capabilities of quantum computing continue to expand, the need for innovative cryptographic solutions to secure digital communications becomes increasingly critical.