Solving LPN Using Large Covering Codes

2019-04-08·
Thom Wiggers
Thom Wiggers
· 0 min read
Abstract

Since quantum computers are expected to break most of the cryptographic schemes we rely on today, we need to look at alternatives. Learning Parity with Noise (LPN) is mathematical problem that we can base cryptographic schemes on, and it is supposed to be hard for both classical and quantum computers. We will be looking at how hard this problem actually is, by studying existing attacks on the LPN problem. Most attacks on LPN use enormous amounts of memory. We aim to improve that situation.

More concretely, we study composing a reduction based on covering codes with a solving algorithm called Gauss. Both the reduction and the Gauss algorithm use little memory, but by itself Gauss is slower than attacks that use more memory.

Unfortunately, we determine that this combination will not work. We also look at improving the codes used by the reduction by applying StGen codes, which was proposed by simonasamardjiska at a DS lunch talk in March 2017. While this improves run-time performance in theory, the real-world performance is much less positive.

Finally, we developed software that we hope allows people to easily work with the LPN problem and the algorithms that aim to solve it.

Date
2019-04-08 10:45
Event
Location

Utrecht, The Netherlands

events
Lpn Post-Quantum Cryptography Cryptography Academic
Thom Wiggers
Authors
Thom Wiggers
Senior Cryptography Researcher
Thom Wiggers is a cryptography researcher at PQShield. His PhD thesis was on the interactions of post-quantum cryptography with protocols, under the supervision of Peter Schwabe, at the Institute of Computing and Information Sciences, Radboud University in The Netherlands.