Results 21 to 30 of about 356 (107)

Disorientation faults in CSIDH [PDF]

, 2023
We investigate a new class of fault-injection attacks against the CSIDH family of cryptographic group actions. Our disorientation attacks effectively flip the direction of some isogeny steps.
Lange, Tanja, Sotáková, Jana, Trimoska, M., Panny, L., Lorenz Panny, Krämer, Juliane, Krämer, J., Sotáková, J. (Jana), Meyer, M. (Michael), Reijnders, K. (Krijn), Trimoska, M. (Monika), Tanja Lange, Reijnders, K., Reijnders, Krijn, Meyer, Michael, Sotáková, J., Banegas, Gustavo, Trimoska, Monika, Panny, L. (Lorenz), Banegas, G., T. Lange, Gustavo Banegas, Banegas, G. (Gustavo), Juliane Krämer, Michael Meyer, Panny, Lorenz, Hazay, C., Krijn Reijnders, Krämer, J. (Juliane), Jana Sotáková, Monika Trimoska   +30 more
core   +7 more sources

ЯК ПОБУДУВАТИ CSIDH НА КВАДРАТИЧНИХ І СКРУЧЕНИХ КРИВИХ ЕДВАРДСА

Кібербезпека: освіта, наука, техніка, 2022
В одної з відомих робіт виявлені некоректна постановка і невірне рішення задачі імплементації алгоритму CSIDH на кривих Едвардса . Дана розгорнена критика цієї роботи с доведенням неспроможності її концепції.
Anatoliy Bessalov
doaj   +2 more sources

CSIDH on the surface [PDF]

, 2020
For primes \(p \equiv 3 \bmod 4\), we show that setting up CSIDH on the surface, i.e., using supersingular elliptic curves with endomorphism ring \(Z[(1 + \sqrt{-p})/2]\), amounts to just a few sign switches in the underlying arithmetic. If \(p \equiv 7 \
Wouter Castryck, Thomas Decru
core   +4 more sources

Optimizations and Practicality of High-Security CSIDH [PDF]

IACR Communications in Cryptology
In this work, we assess the real-world practicality of CSIDH, an isogeny-based non-interactive key exchange. We provide the first thorough assessment of the practicality of CSIDH in higher parameter sizes for conservative estimates of quantum
Jesús-Javier Chi-Domínguez, Krijn Reijnders, Peter Schwabe, Fabio Campos, Thom Wiggers, Francisco Rodríguez-Henríquez, Jorge Chávez-Saab, Michael Meyer   +7 more
core   +3 more sources

The SQALE of CSIDH: sublinear Vélu quantum-resistant isogeny action with low exponents [PDF]

Journal of Cryptographic Engineering, 2021
Recent independent analyses by Bonnetain-Schrottenloher and Peikert in Eurocrypt 2020 significantly reduced the estimated quantum security of the isogeny-based commutative group action key-exchange protocol CSIDH.
Jorge Chavez-Saab, Jesus-Javier Chi-Domínguez, Samuel Jaques   +2 more
exaly   +2 more sources

Stronger and Faster Side-Channel Protections for CSIDH [PDF]

, 2019
This work has been accepted in LATINCRYPT-2019International audienceCSIDH is a recent quantum-resistant primitive based on the difficulty of finding isogeny paths between supersingular curves.
Chi-Domínguez, Jesús-Javier, Chenu, Mathilde, Mathilde Chenu, Jesús-Javier Chi-Domínguez, Luca De Feo, Benjamin Smith, de Feo, Luca, Daniel Cervantes-Vázquez, Cervantes-Vázquez, Daniel, Smith, Benjamin, Rodríguez-Henríquez, Francisco, Francisco Rodríguez-Henríquez   +11 more
core   +6 more sources

He Gives C-Sieves on the CSIDH [PDF]

, 2020
Recently, Castryck, Lange, Martindale, Panny, and Renes proposed CSIDH (pronounced sea-side ) as a candidate post-quantum commutative group action.
Chris Peikert
core   +3 more sources

Quantum Security Analysis of CSIDH [PDF]

, 2020
International audienceCSIDH is a recent proposal for post-quantum non-interactive key-exchange, presented at ASIACRYPT 2018. Based on supersingular elliptic curve isogenies, it is similar in design to a previous scheme by Couveignes, Rostovtsev and ...
André Schrottenloher, Bonnetain, Xavier, Schrottenloher, André, Xavier Bonnetain   +3 more
core   +2 more sources

A note on key control in CSIDH [PDF]

IACR Cryptol. ePrint Arch., 2022
In this short note we explore a particular behaviour of the CSIDH key exchange that leads to a very special form of (shared) key control via the use of the quadratic twists.
Antonio Sanso
core   +2 more sources

On Collisions Related to an Ideal Class of Order 3 in CSIDH [PDF]

, 2020
CSIDH is an isogeny-based key exchange, which is a candidate for post quantum cryptography. It uses the action of an ideal class group on Fp-isomorphic classes of supersingular elliptic curves.
Tsuyoshi Takagi, Hiroshi Onuki
core   +3 more sources