通过 MDS 矩阵法实现广义多重离散对数问题的更严格约束

IF 0.7 4区计算机科学 Q4 COMPUTER SCIENCE, INFORMATION SYSTEMS

Information Processing Letters Pub Date : 2024-10-16 DOI:10.1016/j.ipl.2024.106535

Haoxuan Wu , Jincheng Zhuang

{"title":"通过 MDS 矩阵法实现广义多重离散对数问题的更严格约束","authors":"Haoxuan Wu , Jincheng Zhuang","doi":"10.1016/j.ipl.2024.106535","DOIUrl":null,"url":null,"abstract":"<div><div>Discrete logarithm problem (DLP) is one of the fundamental hard problems used in cryptography. For <math><mn>1</mn><mo>≤</mo><mi>k</mi><mo>≤</mo><mi>n</mi></math>, solving the k-out-of-n DLP instances is an important problem emerging in certain scenarios in public-key cryptography. Ying and Kunihiro (ACNS 2017) pioneered in studying k-out-of-n instance solutions of DLP, which is a generalized version of multiple DLP. By reducing the multiple DLP to the generalized version, they established lower bounds on the computational complexity of k-out-of-n DLP for different parameter values of k.</div><div>In this paper, we further reduce the reduction complexity presented in Ying and Kunihiro's work and increase the range of k and n for the tight lower bound of k-out-of-n DLP in the generic group model, which has applications in related cryptographic schemes. To achieve the goal, the key technique is to utilize a variant of fast multipoint evaluation. We divide the discussion into two cases. In the special case when n divides <math><mi>p</mi><mo>−</mo><mn>1</mn></math>, by leveraging Number Theory Transform (NTT) technique, we expand k and n to a larger range. In the general case, by using a variant of fast multipoint evaluation, we increase k and n to a moderately larger range.</div></div>","PeriodicalId":56290,"journal":{"name":"Information Processing Letters","volume":"188 ","pages":"Article 106535"},"PeriodicalIF":0.7000,"publicationDate":"2024-10-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Tighter bound for generalized multiple discrete logarithm problem via MDS matrix method\",\"authors\":\"Haoxuan Wu , Jincheng Zhuang\",\"doi\":\"10.1016/j.ipl.2024.106535\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><div>Discrete logarithm problem (DLP) is one of the fundamental hard problems used in cryptography. For <math><mn>1</mn><mo>≤</mo><mi>k</mi><mo>≤</mo><mi>n</mi></math>, solving the k-out-of-n DLP instances is an important problem emerging in certain scenarios in public-key cryptography. Ying and Kunihiro (ACNS 2017) pioneered in studying k-out-of-n instance solutions of DLP, which is a generalized version of multiple DLP. By reducing the multiple DLP to the generalized version, they established lower bounds on the computational complexity of k-out-of-n DLP for different parameter values of k.</div><div>In this paper, we further reduce the reduction complexity presented in Ying and Kunihiro's work and increase the range of k and n for the tight lower bound of k-out-of-n DLP in the generic group model, which has applications in related cryptographic schemes. To achieve the goal, the key technique is to utilize a variant of fast multipoint evaluation. We divide the discussion into two cases. In the special case when n divides <math><mi>p</mi><mo>−</mo><mn>1</mn></math>, by leveraging Number Theory Transform (NTT) technique, we expand k and n to a larger range. In the general case, by using a variant of fast multipoint evaluation, we increase k and n to a moderately larger range.</div></div>\",\"PeriodicalId\":56290,\"journal\":{\"name\":\"Information Processing Letters\",\"volume\":\"188 \",\"pages\":\"Article 106535\"},\"PeriodicalIF\":0.7000,\"publicationDate\":\"2024-10-16\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Information Processing Letters\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S0020019024000656\",\"RegionNum\":4,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q4\",\"JCRName\":\"COMPUTER SCIENCE, INFORMATION SYSTEMS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Information Processing Letters","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0020019024000656","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

摘要

离散对数问题（DLP）是密码学中的基本难题之一。对于1≤k≤n，求解k-out-of-n DLP实例是公钥密码学某些场景中出现的重要问题。Ying和Kunihiro（ACSN 2017）率先研究了DLP的k-out-of-n实例解，这是多重DLP的广义版本。通过将多重 DLP 简化为广义版本，他们建立了不同参数值 k 的 k-out-of-n DLP 计算复杂度下限。本文进一步降低了 Ying 和 Kunihiro 工作中提出的简化复杂度，并增加了 k 和 n 的范围，从而在通用组模型中实现了 k-out-of-n DLP 的严格下限，这在相关密码方案中具有应用价值。为了实现这一目标，关键技术是利用快速多点评估的变体。我们将讨论分为两种情况。在 n 除以 p-1 的特殊情况下，利用数论变换（NTT）技术，我们可以将 k 和 n 扩展到更大的范围。在一般情况下，通过使用快速多点求值的变体，我们可以将 k 和 n 的范围适度扩大。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Tighter bound for generalized multiple discrete logarithm problem via MDS matrix method

Discrete logarithm problem (DLP) is one of the fundamental hard problems used in cryptography. For

1 \leq k \leq n

, solving the k-out-of-n DLP instances is an important problem emerging in certain scenarios in public-key cryptography. Ying and Kunihiro (ACNS 2017) pioneered in studying k-out-of-n instance solutions of DLP, which is a generalized version of multiple DLP. By reducing the multiple DLP to the generalized version, they established lower bounds on the computational complexity of k-out-of-n DLP for different parameter values of k.

In this paper, we further reduce the reduction complexity presented in Ying and Kunihiro's work and increase the range of k and n for the tight lower bound of k-out-of-n DLP in the generic group model, which has applications in related cryptographic schemes. To achieve the goal, the key technique is to utilize a variant of fast multipoint evaluation. We divide the discussion into two cases. In the special case when n divides

p - 1

, by leveraging Number Theory Transform (NTT) technique, we expand k and n to a larger range. In the general case, by using a variant of fast multipoint evaluation, we increase k and n to a moderately larger range.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Information Processing Letters 工程技术-计算机：信息系统

CiteScore

1.80

自引率

0.00%

发文量

审稿时长

7.3 months

期刊介绍： Information Processing Letters invites submission of original research articles that focus on fundamental aspects of information processing and computing. This naturally includes work in the broadly understood field of theoretical computer science; although papers in all areas of scientific inquiry will be given consideration, provided that they describe research contributions credibly motivated by applications to computing and involve rigorous methodology. High quality experimental papers that address topics of sufficiently broad interest may also be considered. Since its inception in 1971, Information Processing Letters has served as a forum for timely dissemination of short, concise and focused research contributions. Continuing with this tradition, and to expedite the reviewing process, manuscripts are generally limited in length to nine pages when they appear in print.