Knapsack cryptosystems built on NP-hard instance
Laurent Evain
TL;DR
This paper introduces three new public key knapsack cryptosystems based on hard instances, providing complexity analysis, experimental validation, and security proofs against various attacks, including heuristic methods.
Contribution
It presents novel knapsack cryptosystems that hide hard instances, along with complexity, experimental, and security analyses, including reductions to factorization.
Findings
Security is comparable to factoring a product of two primes.
The cryptosystems can have density arbitrarily close to one.
Heuristic attacks based on LLL are ineffective against the public key.
Abstract
We construct three public key knapsack cryptosystems. Standard knapsack cryptosystems hide easy instances of the knapsack problem and have been broken. The systems considered in the article face this problem: They hide a random (possibly hard) instance of the knapsack problem. We provide both complexity results (size of the key, time needed to encypher/decypher...) and experimental results. Security results are given for the second cryptosystem (the fastest one and the one with the shortest key). Probabilistic polynomial reductions show that finding the private key is as difficult as factorizing a product of two primes. We also consider heuristic attacks. First, the density of the cryptosystem can be chosen arbitrarily close to one, discarding low density attacks. Finally, we consider explicit heuristic attacks based on the LLL algorithm and we prove that with respect to these attacks,…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsCryptographic Implementations and Security · graph theory and CDMA systems · Cryptography and Data Security