Article

Efficient implementations of MQPKS on constrained devices

Authors:

Enrico ThomaeAuthors Info & Claims

CHES'12: Proceedings of the 14th international conference on Cryptographic Hardware and Embedded Systems

Pages 374 - 389

https://doi.org/10.1007/978-3-642-33027-8_22

Published: 09 September 2012 Publication History

Abstract

Multivariate Quadratic Public Key Schemes (MQPKS) attracted the attention of researchers in the last decades for two reasons. First they are thought to resist attacks by quantum computers and second, most of the schemes were broken. The latter may be the reason why implementations are rare. This work investigates one of the most promising member of MQPKS and its variants, namely UOV, Rainbow and enTTS. UOV resisted all kinds of attacks for 13 years and can be considered one of the best examined MQPKS. We describe implementations of UOV, Rainbow and enTTS on an 8-bit microcontroller. To address the problem of large keys, we used several optimizations and also implemented the 0/1-UOV scheme introduced at CHES 2011. To achieve a practically usable security level on the selected device, all recent attacks are summarized and parameters for standard security levels are given. To allow judgement of scaling, the schemes are implemented for the most common security levels in embedded systems 2⁶⁴, 2⁸⁰ and 2¹²⁸ bits symmetric security. This allows for the first time a direct comparison of the four schemes because they are implemented for exactly the same security levels on the same platform and also by the same developer.

References

[1]

Yang, B.-Y., Chen, J.-M., Chen, Y.-H.: TTS: High-Speed Signatures on a Low-Cost Smart Card. In: Joye, M., Quisquater, J.-J. (eds.) CHES 2004. LNCS, vol. 3156, pp. 371-385. Springer, Heidelberg (2004).

[2]

Balasubramanian, S., Carter, H., Bogdanov, A., Rupp, A., Ding, J.: Fast Multivariate Signature Generation in Hardware: The Case of Rainbow. In: International Conference on Application-Specific Systems, Architectures and Processors, ASAP 2008, pp. 25-30 (July 2008).

Digital Library

[3]

Bettale, L., Faugère, J.-C., Perret, L.: Hybrid Approach for Solving Multivariate Systems over Finite Fields. Journal of Mathematical Cryptology 3(3), 177-197 (2009).

[4]

Bouillaguet, C., Fouque, P.-A., Macario-Rat, G.: Practical key-recovery for all possible parameters of SFLASH. In: Lee, D.H., Wang, X. (eds.) ASIACRYPT 2011. LNCS, vol. 7073, pp. 667-685. Springer, Heidelberg (2011).

Digital Library

[5]

Braeken, A., Wolf, C., Preneel, B.: A Study of the Security of Unbalanced Oil and Vinegar Signature Schemes. In: Menezes, A. (ed.) CT-RSA 2005. LNCS, vol. 3376, pp. 29-43. Springer, Heidelberg (2005), http://eprint.iacr.org/2004/222/

Digital Library

[6]

Buchmann, J., Ding, J. (eds.): PQCrypto 2008. LNCS, vol. 5299. Springer, Heidelberg (2008).

[7]

Faugère, J.-C., Joux, A.: Algebraic Cryptanalysis of Hidden Field Equation (HFE) Cryptosystems Using Gröbner Bases. In: Boneh, D. (ed.) CRYPTO 2003. LNCS, vol. 2729, pp. 44-60. Springer, Heidelberg (2003).

[8]

Courtois, N.T., Daum, M., Felke, P.: On the Security of HFE, HFEv - and Quartz. In: Desmedt, Y.G. (ed.) PKC 2003. LNCS, vol. 2567, pp. 337-350. Springer, Heidelberg (2002).

Digital Library

[9]

Ding, J., Schmidt, D.: Rainbow, a New Multivariable Polynomial Signature Scheme. In: Ioannidis, J., Keromytis, A.D., Yung, M. (eds.) ACNS 2005. LNCS, vol. 3531, pp. 164-175. Springer, Heidelberg (2005).

Digital Library

[10]

Driessen, B., Poschmann, A., Paar, C.: Comparison of Innovative Signature Algorithms for WSNs. In: Proceedings of ACM WiSec 2008. ACM (2008).

Digital Library

[11]

Garey, M.R., Johnson, D.S.: Computers and Intractability -- A Guide to the Theory of NP-Completeness. W.H. Freeman and Company (1979) ISBN 0-7167-1044-7 or 0-7167-1045-5.

Digital Library

[12]

Goubin, L., Courtois, N.T.: Cryptanalysis of the TTM Cryptosystem. In: Okamoto, T. (ed.) ASIACRYPT 2000. LNCS, vol. 1976, pp. 44-57. Springer, Heidelberg (2000).

Digital Library

[13]

Gura, N., Patel, A., Wander, A., Eberle, H., Shantz, S.C.: Comparing Elliptic Curve Cryptography and RSA on 8-bit CPUs, pp. 119-132 (2004).

[14]

Kipnis, A., Patarin, J., Goubin, L.: Unbalanced Oil and Vinegar Signature Schemes. In: Stern, J. (ed.) EUROCRYPT 1999. LNCS, vol. 1592, pp. 206-222. Springer, Heidelberg (1999).

Digital Library

[15]

Kipnis, A., Shamir, A.: Cryptanalysis of the Oil and Vinegar Signature Scheme. In: Krawczyk, H. (ed.) CRYPTO 1998. LNCS, vol. 1462, pp. 257-266. Springer, Heidelberg (1998).

Digital Library

[16]

Kipnis, A., Shamir, A.: Cryptanalysis of the HFE Public Key Cryptosystem by Relinearization. In: Wiener, M. (ed.) CRYPTO 1999. LNCS, vol. 1666, pp. 19-30. Springer, Heidelberg (1999).

Digital Library

[17]

Patarin, J.: Cryptanalysis of the Matsumoto and Imai Public Key Scheme of Eurocrypt '88. In: Coppersmith, D. (ed.) CRYPTO 1995. LNCS, vol. 963, pp. 248-261. Springer, Heidelberg (1995).

Digital Library

[18]

Petzoldt, A., Bulygin, S., Buchmann, J.: Selecting Parameters for the Rainbow Signature Scheme. In: Sendrier, N. (ed.) PQCrypto 2010. LNCS, vol. 6061, pp. 218-240. Springer, Heidelberg (2010).

Digital Library

[19]

Petzoldt, A., Thomae, E., Bulygin, S., Wolf, C.: Small Public Keys and Fast Verification for Multivariate Quadratic Public Key Systems. In: Preneel, B., Takagi, T. (eds.) CHES 2011. LNCS, vol. 6917, pp. 475-490. Springer, Heidelberg (2011).

Digital Library

[20]

Shor, P.W.: Polynomial-time Algorithms for Prime Factorization and Discrete Logarithms on a Quantum Computer. SIAM J. on Computing, 1484-1509 (1997).

Digital Library

[21]

Tang, S., Yi, H., Ding, J., Chen, H., Chen, G.: High-Speed Hardware Implementation of Rainbow Signature on FPGAs. In: Yang, B.-Y. (ed.) PQCrypto 2011. LNCS, vol. 7071, pp. 228-243. Springer, Heidelberg (2011).

Digital Library

[22]

Thomae, E., Wolf, C.: Solving Underdetermined Systems of Multivariate Quadratic Equations Revisited. In: Fischlin, M., Buchmann, J., Manulis, M. (eds.) PKC 2012. LNCS, vol. 7293, pp. 156-171. Springer, Heidelberg (2012).

Digital Library

[23]

Wolf, C., Braeken, A., Preneel, B.: Efficient Cryptanalysis of RSE(2)PKC and RSSE(2)PKC (2004).

[24]

Yang, B.-Y., Chen, J.-M.: Building Secure Tame-like Multivariate Public-Key Cryptosystems: The new TTS. In: Boyd, C., González Nieto, J.M. (eds.) ACISP 2005. LNCS, vol. 3574, pp. 518-531. Springer, Heidelberg (2005).

Digital Library

[25]

Yang, B.-Y., Cheng, C.-M., Chen, B.-R., Chen, J.-M.: Implementing Minimized Multivariate PKC on Low-Resource Embedded Systems. In: Clark, J.A., Paige, R.F., Polack, F.A.C., Brooke, P.J. (eds.) SPC 2006. LNCS, vol. 3934, pp. 73-88. Springer, Heidelberg (2006).

Digital Library

Cited By

Dey JDutta R(2023)Progress in Multivariate Cryptography: Systematic Review, Challenges, and Research DirectionsACM Computing Surveys10.1145/357107155:12(1-34)Online publication date: 3-Mar-2023
https://dl.acm.org/doi/10.1145/3571071
Furue HKiyomura YNagasawa TTakagi T(2022)A New Fault Attack on UOV Multivariate Signature SchemePost-Quantum Cryptography10.1007/978-3-031-17234-2_7(124-143)Online publication date: 28-Sep-2022
https://dl.acm.org/doi/10.1007/978-3-031-17234-2_7
Furue HIkematsu YKiyomura YTakagi T(2021)A New Variant of Unbalanced Oil and Vinegar Using Quotient Ring: QR-UOVAdvances in Cryptology – ASIACRYPT 202110.1007/978-3-030-92068-5_7(187-217)Online publication date: 6-Dec-2021
https://dl.acm.org/doi/10.1007/978-3-030-92068-5_7
Show More Cited By

Recommendations

Fault Attacks on UOV and Rainbow
Constructive Side-Channel Analysis and Secure Design
Abstract
Multivariate cryptography is one of the main candidates for creating post-quantum public key cryptosystems. Especially in the area of digital signatures, there exist many practical and secure multivariate schemes. The signature schemes UOV and ...
On provable security of UOV and HFE signature schemes against chosen-message attack
PQCrypto'11: Proceedings of the 4th international conference on Post-Quantum Cryptography

The multivariate public key cryptosystem (MPKC) is considered to be one of the candidates of post-quantum cryptography. Unbalanced Oil-Vinegar (UOV) scheme and Hidden Field Equation (HFE) scheme are well-known schemes in MPKC. However, little attention ...
A New Security Analysis Against MAYO and QR-UOV Using Rectangular MinRank Attack
Advances in Information and Computer Security
Abstract
Multivariate public-key cryptography (MPKC) is considered as one of the main candidates for post-quantum cryptography (PQC). In MPKC, the MinRank attacks, which try to solve the MinRank problem obtained from a public key, are important since a lot ...

Comments

Information & Contributors

Information

Published In

cover image Guide Proceedings

CHES'12: Proceedings of the 14th international conference on Cryptographic Hardware and Embedded Systems

September 2012

566 pages

ISBN:9783642330261

Editors:
Emmanuel Prouff
French Network and Information Security Agency (FNISA), 51 boulevard de La Tour-Maubourg, Paris, France
,
Patrick Schaumont
The Bradley Department of Electrical and Computer Engineering, Virginia Polytechnic Institute, 302 Whittemore Hall, Blacksburg, VA, France

Sponsors

IACR: International Association for Cryptologic Research

Publisher

Springer-Verlag

Berlin, Heidelberg

Publication History

Published: 09 September 2012

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

11
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 08 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

Dey JDutta R(2023)Progress in Multivariate Cryptography: Systematic Review, Challenges, and Research DirectionsACM Computing Surveys10.1145/357107155:12(1-34)Online publication date: 3-Mar-2023
https://dl.acm.org/doi/10.1145/3571071
Furue HKiyomura YNagasawa TTakagi T(2022)A New Fault Attack on UOV Multivariate Signature SchemePost-Quantum Cryptography10.1007/978-3-031-17234-2_7(124-143)Online publication date: 28-Sep-2022
https://dl.acm.org/doi/10.1007/978-3-031-17234-2_7
Furue HIkematsu YKiyomura YTakagi T(2021)A New Variant of Unbalanced Oil and Vinegar Using Quotient Ring: QR-UOVAdvances in Cryptology – ASIACRYPT 202110.1007/978-3-030-92068-5_7(187-217)Online publication date: 6-Dec-2021
https://dl.acm.org/doi/10.1007/978-3-030-92068-5_7
Beullens W(2021)Improved Cryptanalysis of UOV and RainbowAdvances in Cryptology – EUROCRYPT 202110.1007/978-3-030-77870-5_13(348-373)Online publication date: 17-Oct-2021
https://dl.acm.org/doi/10.1007/978-3-030-77870-5_13
Szepieniec APreneel B(2019)Block-Anti-Circulant Unbalanced Oil and VinegarSelected Areas in Cryptography – SAC 201910.1007/978-3-030-38471-5_23(574-588)Online publication date: 12-Aug-2019
https://dl.acm.org/doi/10.1007/978-3-030-38471-5_23
Krämer JLoiero M(2019)Fault Attacks on UOV and RainbowConstructive Side-Channel Analysis and Secure Design10.1007/978-3-030-16350-1_11(193-214)Online publication date: 3-Apr-2019
https://dl.acm.org/doi/10.1007/978-3-030-16350-1_11
Yi H(2018)Towards Wearability in Cryptographic SystemsWireless Personal Communications: An International Journal10.1007/s11277-017-5206-z102:2(1471-1484)Online publication date: 1-Sep-2018
https://dl.acm.org/doi/10.1007/s11277-017-5206-z
Wang YIkematsu YDuong DTakagi T(2018)Efficient Decryption Algorithms for Extension Field Cancellation Type Encryption SchemesInformation Security and Privacy10.1007/978-3-319-93638-3_28(487-501)Online publication date: 11-Jul-2018
https://dl.acm.org/doi/10.1007/978-3-319-93638-3_28
Shim K(2017)BASISIEEE Transactions on Information Forensics and Security10.1109/TIFS.2017.266806212:7(1545-1554)Online publication date: 1-Jul-2017
https://dl.acm.org/doi/10.1109/TIFS.2017.2668062
Tang SLv BShen W(2016)Hybrid MQ Signature for Embedded DeviceProceedings, Part I, of the 21st Australasian Conference on Information Security and Privacy - Volume 972210.1007/978-3-319-40253-6_17(281-290)Online publication date: 4-Jul-2016
https://dl.acm.org/doi/10.1007/978-3-319-40253-6_17
Show More Cited By

View Options

View options

Figures

Tables

Media

View Table of Conten