Faster Rotation-Based Gauss Sieve for Solving the SVP on General Ideal Lattices
The hardness in solving the shortest vector problem (SVP) is a fundamental assumption for the security of lattice-based cryptographic algorithms. In 2010, Micciancio and Voulgaris proposed an algorithm named the Gauss Sieve, which is a fast and heuristic algorithm for solving the SVP. Schneider pres...
Gespeichert in:
| Veröffentlicht in: | IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences Communications and Computer Sciences, 2021/01/01, Vol.E104.A(1), pp.79-88 |
|---|---|
| Hauptverfasser: | , , , |
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | 88 |
|---|---|
| container_issue | 1 |
| container_start_page | 79 |
| container_title | IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences |
| container_volume | E104.A |
| creator | NARISADA, Shintaro OKADA, Hiroki FUKUSHIMA, Kazuhide KIYOMOTO, Shinsaku |
| description | The hardness in solving the shortest vector problem (SVP) is a fundamental assumption for the security of lattice-based cryptographic algorithms. In 2010, Micciancio and Voulgaris proposed an algorithm named the Gauss Sieve, which is a fast and heuristic algorithm for solving the SVP. Schneider presented another algorithm named the Ideal Gauss Sieve in 2011, which is applicable to a special class of lattices, called ideal lattices. The Ideal Gauss Sieve speeds up the Gauss Sieve by using some properties of the ideal lattices. However, the algorithm is applicable only if the dimension of the ideal lattice n is a power of two or n+1 is a prime. Ishiguro et al. proposed an extension to the Ideal Gauss Sieve algorithm in 2014, which is applicable only if the prime factor of n is 2 or 3. In this paper, we first generalize the dimensions that can be applied to the ideal lattice properties to when the prime factor of n is derived from 2, p or q for two primes p and q. To the best of our knowledge, no algorithm using ideal lattice properties has been proposed so far with dimensions such as: 20, 44, 80, 84, and 92. Then we present an algorithm that speeds up the Gauss Sieve for these dimensions. Our experiments show that our proposed algorithm is 10 times faster than the original Gauss Sieve in solving an 80-dimensional SVP problem. Moreover, we propose a rotation-based Gauss Sieve that is approximately 1.5 times faster than the Ideal Gauss Sieve. |
| doi_str_mv | 10.1587/transfun.2020CIP0014 |
| format | Article |
| fullrecord | <record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_journals_2474566550</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>2474566550</sourcerecordid><originalsourceid>FETCH-LOGICAL-c516t-86e27e4d0f6f13f1ae8f44f7bccae3230b8b40c3da78677811a696a3117490c03</originalsourceid><addsrcrecordid>eNpNkEFPAjEQhRujiYj-Aw9NPC-22263HJEAkpBAQL02w-4Ulqy72HZJ_PcuQZTLzBze9ybvEfLIWY8nOn0ODipvm6oXs5gNpwvGuLwiHZ7KJOJCpNekw_pcRTph-pbceb9rFTrmskPmY_ABHV3WAUJRV9ELeMzpBBrv6arAA1JbO7qqy0NRbWjYIl19LGhd0QlW6KCk0xzbOYMQigz9PbmxUHp8-N1d8j4evQ1fo9l8Mh0OZlGWcBUirTBOUebMKsuF5YDaSmnTdZYBiliwtV5LlokcUq3SVHMOqq9A8DZTn2VMdMnTyXfv6q8GfTC7unFV-9LEss2tVJIcVfKkylztvUNr9q74BPdtODPH6sy5OnNRXYstT9jOB9jgHwSuzVjiPzTiTJqB4efjwuRPnG3BGazED7b5f9Y</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2474566550</pqid></control><display><type>article</type><title>Faster Rotation-Based Gauss Sieve for Solving the SVP on General Ideal Lattices</title><source>J-STAGE Free</source><creator>NARISADA, Shintaro ; OKADA, Hiroki ; FUKUSHIMA, Kazuhide ; KIYOMOTO, Shinsaku</creator><creatorcontrib>NARISADA, Shintaro ; OKADA, Hiroki ; FUKUSHIMA, Kazuhide ; KIYOMOTO, Shinsaku</creatorcontrib><description>The hardness in solving the shortest vector problem (SVP) is a fundamental assumption for the security of lattice-based cryptographic algorithms. In 2010, Micciancio and Voulgaris proposed an algorithm named the Gauss Sieve, which is a fast and heuristic algorithm for solving the SVP. Schneider presented another algorithm named the Ideal Gauss Sieve in 2011, which is applicable to a special class of lattices, called ideal lattices. The Ideal Gauss Sieve speeds up the Gauss Sieve by using some properties of the ideal lattices. However, the algorithm is applicable only if the dimension of the ideal lattice n is a power of two or n+1 is a prime. Ishiguro et al. proposed an extension to the Ideal Gauss Sieve algorithm in 2014, which is applicable only if the prime factor of n is 2 or 3. In this paper, we first generalize the dimensions that can be applied to the ideal lattice properties to when the prime factor of n is derived from 2, p or q for two primes p and q. To the best of our knowledge, no algorithm using ideal lattice properties has been proposed so far with dimensions such as: 20, 44, 80, 84, and 92. Then we present an algorithm that speeds up the Gauss Sieve for these dimensions. Our experiments show that our proposed algorithm is 10 times faster than the original Gauss Sieve in solving an 80-dimensional SVP problem. Moreover, we propose a rotation-based Gauss Sieve that is approximately 1.5 times faster than the Ideal Gauss Sieve.</description><identifier>ISSN: 0916-8508</identifier><identifier>EISSN: 1745-1337</identifier><identifier>DOI: 10.1587/transfun.2020CIP0014</identifier><language>eng</language><publisher>Tokyo: The Institute of Electronics, Information and Communication Engineers</publisher><subject>Algorithms ; Cryptography ; Gauss Sieve ; generalization ; Heuristic methods ; ideal lattice ; Lattices ; Properties (attributes) ; Rotation ; shortest vector problem</subject><ispartof>IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences, 2021/01/01, Vol.E104.A(1), pp.79-88</ispartof><rights>2021 The Institute of Electronics, Information and Communication Engineers</rights><rights>Copyright Japan Science and Technology Agency 2021</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><cites>FETCH-LOGICAL-c516t-86e27e4d0f6f13f1ae8f44f7bccae3230b8b40c3da78677811a696a3117490c03</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>314,776,780,1877,27901,27902</link.rule.ids></links><search><creatorcontrib>NARISADA, Shintaro</creatorcontrib><creatorcontrib>OKADA, Hiroki</creatorcontrib><creatorcontrib>FUKUSHIMA, Kazuhide</creatorcontrib><creatorcontrib>KIYOMOTO, Shinsaku</creatorcontrib><title>Faster Rotation-Based Gauss Sieve for Solving the SVP on General Ideal Lattices</title><title>IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences</title><addtitle>IEICE Trans. Fundamentals</addtitle><description>The hardness in solving the shortest vector problem (SVP) is a fundamental assumption for the security of lattice-based cryptographic algorithms. In 2010, Micciancio and Voulgaris proposed an algorithm named the Gauss Sieve, which is a fast and heuristic algorithm for solving the SVP. Schneider presented another algorithm named the Ideal Gauss Sieve in 2011, which is applicable to a special class of lattices, called ideal lattices. The Ideal Gauss Sieve speeds up the Gauss Sieve by using some properties of the ideal lattices. However, the algorithm is applicable only if the dimension of the ideal lattice n is a power of two or n+1 is a prime. Ishiguro et al. proposed an extension to the Ideal Gauss Sieve algorithm in 2014, which is applicable only if the prime factor of n is 2 or 3. In this paper, we first generalize the dimensions that can be applied to the ideal lattice properties to when the prime factor of n is derived from 2, p or q for two primes p and q. To the best of our knowledge, no algorithm using ideal lattice properties has been proposed so far with dimensions such as: 20, 44, 80, 84, and 92. Then we present an algorithm that speeds up the Gauss Sieve for these dimensions. Our experiments show that our proposed algorithm is 10 times faster than the original Gauss Sieve in solving an 80-dimensional SVP problem. Moreover, we propose a rotation-based Gauss Sieve that is approximately 1.5 times faster than the Ideal Gauss Sieve.</description><subject>Algorithms</subject><subject>Cryptography</subject><subject>Gauss Sieve</subject><subject>generalization</subject><subject>Heuristic methods</subject><subject>ideal lattice</subject><subject>Lattices</subject><subject>Properties (attributes)</subject><subject>Rotation</subject><subject>shortest vector problem</subject><issn>0916-8508</issn><issn>1745-1337</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2021</creationdate><recordtype>article</recordtype><recordid>eNpNkEFPAjEQhRujiYj-Aw9NPC-22263HJEAkpBAQL02w-4Ulqy72HZJ_PcuQZTLzBze9ybvEfLIWY8nOn0ODipvm6oXs5gNpwvGuLwiHZ7KJOJCpNekw_pcRTph-pbceb9rFTrmskPmY_ABHV3WAUJRV9ELeMzpBBrv6arAA1JbO7qqy0NRbWjYIl19LGhd0QlW6KCk0xzbOYMQigz9PbmxUHp8-N1d8j4evQ1fo9l8Mh0OZlGWcBUirTBOUebMKsuF5YDaSmnTdZYBiliwtV5LlokcUq3SVHMOqq9A8DZTn2VMdMnTyXfv6q8GfTC7unFV-9LEss2tVJIcVfKkylztvUNr9q74BPdtODPH6sy5OnNRXYstT9jOB9jgHwSuzVjiPzTiTJqB4efjwuRPnG3BGazED7b5f9Y</recordid><startdate>20210101</startdate><enddate>20210101</enddate><creator>NARISADA, Shintaro</creator><creator>OKADA, Hiroki</creator><creator>FUKUSHIMA, Kazuhide</creator><creator>KIYOMOTO, Shinsaku</creator><general>The Institute of Electronics, Information and Communication Engineers</general><general>Japan Science and Technology Agency</general><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>7SP</scope><scope>8FD</scope><scope>JQ2</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope></search><sort><creationdate>20210101</creationdate><title>Faster Rotation-Based Gauss Sieve for Solving the SVP on General Ideal Lattices</title><author>NARISADA, Shintaro ; OKADA, Hiroki ; FUKUSHIMA, Kazuhide ; KIYOMOTO, Shinsaku</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c516t-86e27e4d0f6f13f1ae8f44f7bccae3230b8b40c3da78677811a696a3117490c03</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2021</creationdate><topic>Algorithms</topic><topic>Cryptography</topic><topic>Gauss Sieve</topic><topic>generalization</topic><topic>Heuristic methods</topic><topic>ideal lattice</topic><topic>Lattices</topic><topic>Properties (attributes)</topic><topic>Rotation</topic><topic>shortest vector problem</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>NARISADA, Shintaro</creatorcontrib><creatorcontrib>OKADA, Hiroki</creatorcontrib><creatorcontrib>FUKUSHIMA, Kazuhide</creatorcontrib><creatorcontrib>KIYOMOTO, Shinsaku</creatorcontrib><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Electronics & Communications Abstracts</collection><collection>Technology Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><jtitle>IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>NARISADA, Shintaro</au><au>OKADA, Hiroki</au><au>FUKUSHIMA, Kazuhide</au><au>KIYOMOTO, Shinsaku</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Faster Rotation-Based Gauss Sieve for Solving the SVP on General Ideal Lattices</atitle><jtitle>IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences</jtitle><addtitle>IEICE Trans. Fundamentals</addtitle><date>2021-01-01</date><risdate>2021</risdate><volume>E104.A</volume><issue>1</issue><spage>79</spage><epage>88</epage><pages>79-88</pages><issn>0916-8508</issn><eissn>1745-1337</eissn><abstract>The hardness in solving the shortest vector problem (SVP) is a fundamental assumption for the security of lattice-based cryptographic algorithms. In 2010, Micciancio and Voulgaris proposed an algorithm named the Gauss Sieve, which is a fast and heuristic algorithm for solving the SVP. Schneider presented another algorithm named the Ideal Gauss Sieve in 2011, which is applicable to a special class of lattices, called ideal lattices. The Ideal Gauss Sieve speeds up the Gauss Sieve by using some properties of the ideal lattices. However, the algorithm is applicable only if the dimension of the ideal lattice n is a power of two or n+1 is a prime. Ishiguro et al. proposed an extension to the Ideal Gauss Sieve algorithm in 2014, which is applicable only if the prime factor of n is 2 or 3. In this paper, we first generalize the dimensions that can be applied to the ideal lattice properties to when the prime factor of n is derived from 2, p or q for two primes p and q. To the best of our knowledge, no algorithm using ideal lattice properties has been proposed so far with dimensions such as: 20, 44, 80, 84, and 92. Then we present an algorithm that speeds up the Gauss Sieve for these dimensions. Our experiments show that our proposed algorithm is 10 times faster than the original Gauss Sieve in solving an 80-dimensional SVP problem. Moreover, we propose a rotation-based Gauss Sieve that is approximately 1.5 times faster than the Ideal Gauss Sieve.</abstract><cop>Tokyo</cop><pub>The Institute of Electronics, Information and Communication Engineers</pub><doi>10.1587/transfun.2020CIP0014</doi><tpages>10</tpages><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 0916-8508 |
| ispartof | IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences, 2021/01/01, Vol.E104.A(1), pp.79-88 |
| issn | 0916-8508 1745-1337 |
| language | eng |
| recordid | cdi_proquest_journals_2474566550 |
| source | J-STAGE Free |
| subjects | Algorithms Cryptography Gauss Sieve generalization Heuristic methods ideal lattice Lattices Properties (attributes) Rotation shortest vector problem |
| title | Faster Rotation-Based Gauss Sieve for Solving the SVP on General Ideal Lattices |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-28T14%3A57%3A23IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Faster%20Rotation-Based%20Gauss%20Sieve%20for%20Solving%20the%20SVP%20on%20General%20Ideal%20Lattices&rft.jtitle=IEICE%20Transactions%20on%20Fundamentals%20of%20Electronics,%20Communications%20and%20Computer%20Sciences&rft.au=NARISADA,%20Shintaro&rft.date=2021-01-01&rft.volume=E104.A&rft.issue=1&rft.spage=79&rft.epage=88&rft.pages=79-88&rft.issn=0916-8508&rft.eissn=1745-1337&rft_id=info:doi/10.1587/transfun.2020CIP0014&rft_dat=%3Cproquest_cross%3E2474566550%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2474566550&rft_id=info:pmid/&rfr_iscdi=true |