Complexity estimates for the F4 attack on the perturbed matsumoto-imai cryptosystem

J. Ding*, J. E. Gower, D. Schmidt, C. Wolf, Z. Yin

*Corresponding author for this work

Research output: Chapter in Book or Report/Conference proceedingConference Proceedingpeer-review

12 Citations (Scopus)

Abstract

Though the Perturbed Matsumoto-Imai (PMI) cryptosystem is considered insecure due to the recent differential attack of Fouque, Granboulan, and Stern, even more recently Ding and Gower showed that PMI can be repaired with the Plus (+) method of externally adding as few as 10 randomly chosen quadratic polynomials. Since relatively few extra polynomials are added, the attack complexity of a Gröbner basis attack on PMI+ will be roughly equal to that of PMI. Using Magma's implementation of the F4 Gröbner basis algorithm, we attack PMI with parameters q = 2, 0 ≤ r ≤ 10, and 14 ≤ n ≤ 59. Here, q is the number of field elements, n the number of equations/variables, and r the perturbation dimension. Based on our experimental results, we give estimates for the running time for such an attack. We use these estimates to judge the security of some proposed schemes, and we suggest more efficient schemes. In particular, we estimate that an attack using F 4 against the parameters q = 2, r = 5, n = 96 (suggested in [7]) has a time complexity of less than 250 3-DES computations, which would be considered insecure for practical applications.

Original languageEnglish
Title of host publicationCryptography and Coding - 10th IMA International Conference, Proceedings
PublisherSpringer Verlag
Pages262-277
Number of pages16
ISBN (Print)354030276X, 9783540302766
DOIs
Publication statusPublished - 2005
Externally publishedYes
Event10th IMA International Conference on Cryptography and Coding - Cirencester, United Kingdom
Duration: 19 Dec 200521 Dec 2005

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume3796 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference10th IMA International Conference on Cryptography and Coding
Country/TerritoryUnited Kingdom
CityCirencester
Period19/12/0521/12/05

Keywords

  • Gröbner basis
  • Multivariate
  • Perturbation
  • Public-key
  • Quadratic polynomials

Fingerprint

Dive into the research topics of 'Complexity estimates for the F4 attack on the perturbed matsumoto-imai cryptosystem'. Together they form a unique fingerprint.

Cite this