Fast discretized Gaussian sampling and post-quantum TLS ciphersuite

Xinwei Gao; Lin Li; Jintai Ding; Jiqiang Liu; R. V. Saraswathy; Zhe Liu

doi:10.1007/978-3-319-72359-4_33

Fast discretized Gaussian sampling and post-quantum TLS ciphersuite

Xinwei Gao, Lin Li^*, Jintai Ding, Jiqiang Liu, R. V. Saraswathy, Zhe Liu

^*Corresponding author for this work

Research output: Chapter in Book or Report/Conference proceeding › Conference Proceeding › peer-review

4 Citations (Scopus)

Abstract

LWE/RLWE-based cryptosystems require sampling error term from discrete Gaussian distribution. However, some existing samplers are somehow slow under certain circumstances therefore efficiency of such schemes is restricted. In this paper, we introduce a more efficient discretized Gaussian sampler based on ziggurat sampling algorithm. We also analyze statistical quality of our sampler to prove that it can be adopted in LWE/RLWE-based cryptosystems. Compared with ziggurat-based sampler by Buchmann et al. related samplers by Peikert, Ducas et al. and Knuth-Yao, our sampler achieves more than 2x speedup when standard deviation is large. This can benefit constructions rely on noise flooding (e.g., homomorphic encryption). We also present two applications: First, we use our sampler to optimize the RLWE-based authenticated key exchange (AKE) protocol by Zhang et al. We achieve 1.14x speedup on total runtime of this protocol over major parameter choices. Second, we give practical post-quantum Transport Layer Security (TLS) ciphersuite. Our ciphersuite inherits advantages from TLS and the optimized AKE protocol. Performance of our proof-of-concept implementation is close to TLS v1.2 ciphersuites and one post-quantum TLS construction.

Original language	English
Title of host publication	Information Security Practice and Experience - 13th International Conference, ISPEC 2017, Proceedings
Editors	Joseph K. Liu, Pierangela Samarati
Publisher	Springer Verlag
Pages	551-565
Number of pages	15
ISBN (Print)	9783319723587
DOIs	https://doi.org/10.1007/978-3-319-72359-4_33
Publication status	Published - 2017
Externally published	Yes
Event	13th International Conference on Information Security Practice and Experience, ISPEC 2017 - Melbourne, Australia Duration: 13 Dec 2017 → 15 Dec 2017

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	10701 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	13th International Conference on Information Security Practice and Experience, ISPEC 2017
Country/Territory	Australia
City	Melbourne
Period	13/12/17 → 15/12/17

Keywords

Lattice
Post-quantum cryptography
RLWE
Sampling
TLS

Access to Document

10.1007/978-3-319-72359-4_33

Cite this

Gao, X., Li, L., Ding, J., Liu, J., Saraswathy, R. V., & Liu, Z. (2017). Fast discretized Gaussian sampling and post-quantum TLS ciphersuite. In J. K. Liu, & P. Samarati (Eds.), Information Security Practice and Experience - 13th International Conference, ISPEC 2017, Proceedings (pp. 551-565). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10701 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-319-72359-4_33

Gao, Xinwei ; Li, Lin ; Ding, Jintai et al. / Fast discretized Gaussian sampling and post-quantum TLS ciphersuite. Information Security Practice and Experience - 13th International Conference, ISPEC 2017, Proceedings. editor / Joseph K. Liu ; Pierangela Samarati. Springer Verlag, 2017. pp. 551-565 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{0725ae1d25104328828d01651f4a9f97,

title = "Fast discretized Gaussian sampling and post-quantum TLS ciphersuite",

abstract = "LWE/RLWE-based cryptosystems require sampling error term from discrete Gaussian distribution. However, some existing samplers are somehow slow under certain circumstances therefore efficiency of such schemes is restricted. In this paper, we introduce a more efficient discretized Gaussian sampler based on ziggurat sampling algorithm. We also analyze statistical quality of our sampler to prove that it can be adopted in LWE/RLWE-based cryptosystems. Compared with ziggurat-based sampler by Buchmann et al. related samplers by Peikert, Ducas et al. and Knuth-Yao, our sampler achieves more than 2x speedup when standard deviation is large. This can benefit constructions rely on noise flooding (e.g., homomorphic encryption). We also present two applications: First, we use our sampler to optimize the RLWE-based authenticated key exchange (AKE) protocol by Zhang et al. We achieve 1.14x speedup on total runtime of this protocol over major parameter choices. Second, we give practical post-quantum Transport Layer Security (TLS) ciphersuite. Our ciphersuite inherits advantages from TLS and the optimized AKE protocol. Performance of our proof-of-concept implementation is close to TLS v1.2 ciphersuites and one post-quantum TLS construction.",

keywords = "Lattice, Post-quantum cryptography, RLWE, Sampling, TLS",

author = "Xinwei Gao and Lin Li and Jintai Ding and Jiqiang Liu and Saraswathy, {R. V.} and Zhe Liu",

note = "Publisher Copyright: {\textcopyright} 2017, Springer International Publishing AG.; 13th International Conference on Information Security Practice and Experience, ISPEC 2017 ; Conference date: 13-12-2017 Through 15-12-2017",

year = "2017",

doi = "10.1007/978-3-319-72359-4_33",

language = "English",

isbn = "9783319723587",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "551--565",

editor = "Liu, {Joseph K.} and Pierangela Samarati",

booktitle = "Information Security Practice and Experience - 13th International Conference, ISPEC 2017, Proceedings",

}

Gao, X, Li, L, Ding, J, Liu, J, Saraswathy, RV & Liu, Z 2017, Fast discretized Gaussian sampling and post-quantum TLS ciphersuite. in JK Liu & P Samarati (eds), Information Security Practice and Experience - 13th International Conference, ISPEC 2017, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 10701 LNCS, Springer Verlag, pp. 551-565, 13th International Conference on Information Security Practice and Experience, ISPEC 2017, Melbourne, Australia, 13/12/17. https://doi.org/10.1007/978-3-319-72359-4_33

Fast discretized Gaussian sampling and post-quantum TLS ciphersuite. / Gao, Xinwei; Li, Lin; Ding, Jintai et al.
Information Security Practice and Experience - 13th International Conference, ISPEC 2017, Proceedings. ed. / Joseph K. Liu; Pierangela Samarati. Springer Verlag, 2017. p. 551-565 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10701 LNCS).

Research output: Chapter in Book or Report/Conference proceeding › Conference Proceeding › peer-review

TY - GEN

T1 - Fast discretized Gaussian sampling and post-quantum TLS ciphersuite

AU - Gao, Xinwei

AU - Li, Lin

AU - Ding, Jintai

AU - Liu, Jiqiang

AU - Saraswathy, R. V.

AU - Liu, Zhe

PY - 2017

Y1 - 2017

N2 - LWE/RLWE-based cryptosystems require sampling error term from discrete Gaussian distribution. However, some existing samplers are somehow slow under certain circumstances therefore efficiency of such schemes is restricted. In this paper, we introduce a more efficient discretized Gaussian sampler based on ziggurat sampling algorithm. We also analyze statistical quality of our sampler to prove that it can be adopted in LWE/RLWE-based cryptosystems. Compared with ziggurat-based sampler by Buchmann et al. related samplers by Peikert, Ducas et al. and Knuth-Yao, our sampler achieves more than 2x speedup when standard deviation is large. This can benefit constructions rely on noise flooding (e.g., homomorphic encryption). We also present two applications: First, we use our sampler to optimize the RLWE-based authenticated key exchange (AKE) protocol by Zhang et al. We achieve 1.14x speedup on total runtime of this protocol over major parameter choices. Second, we give practical post-quantum Transport Layer Security (TLS) ciphersuite. Our ciphersuite inherits advantages from TLS and the optimized AKE protocol. Performance of our proof-of-concept implementation is close to TLS v1.2 ciphersuites and one post-quantum TLS construction.

AB - LWE/RLWE-based cryptosystems require sampling error term from discrete Gaussian distribution. However, some existing samplers are somehow slow under certain circumstances therefore efficiency of such schemes is restricted. In this paper, we introduce a more efficient discretized Gaussian sampler based on ziggurat sampling algorithm. We also analyze statistical quality of our sampler to prove that it can be adopted in LWE/RLWE-based cryptosystems. Compared with ziggurat-based sampler by Buchmann et al. related samplers by Peikert, Ducas et al. and Knuth-Yao, our sampler achieves more than 2x speedup when standard deviation is large. This can benefit constructions rely on noise flooding (e.g., homomorphic encryption). We also present two applications: First, we use our sampler to optimize the RLWE-based authenticated key exchange (AKE) protocol by Zhang et al. We achieve 1.14x speedup on total runtime of this protocol over major parameter choices. Second, we give practical post-quantum Transport Layer Security (TLS) ciphersuite. Our ciphersuite inherits advantages from TLS and the optimized AKE protocol. Performance of our proof-of-concept implementation is close to TLS v1.2 ciphersuites and one post-quantum TLS construction.

KW - Lattice

KW - Post-quantum cryptography

KW - RLWE

KW - Sampling

KW - TLS

UR - http://www.scopus.com/inward/record.url?scp=85038125227&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-72359-4_33

DO - 10.1007/978-3-319-72359-4_33

M3 - Conference Proceeding

AN - SCOPUS:85038125227

SN - 9783319723587

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 551

EP - 565

BT - Information Security Practice and Experience - 13th International Conference, ISPEC 2017, Proceedings

A2 - Liu, Joseph K.

A2 - Samarati, Pierangela

PB - Springer Verlag

T2 - 13th International Conference on Information Security Practice and Experience, ISPEC 2017

Y2 - 13 December 2017 through 15 December 2017

ER -

Gao X, Li L, Ding J, Liu J, Saraswathy RV, Liu Z. Fast discretized Gaussian sampling and post-quantum TLS ciphersuite. In Liu JK, Samarati P, editors, Information Security Practice and Experience - 13th International Conference, ISPEC 2017, Proceedings. Springer Verlag. 2017. p. 551-565. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-319-72359-4_33

Fast discretized Gaussian sampling and post-quantum TLS ciphersuite

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this