Abstract
We propose an efficient commutative group action suitable
for non-interactive key exchange in a post-quantum setting. Our construction
follows the layout of the Couveignes–Rostovtsev–Stolbunov
cryptosystem, but we apply it to supersingular elliptic curves defined
over a large prime field Fp, rather than to ordinary elliptic curves. The
Diffie–Hellman scheme resulting from the group action allows for publickey
validation at very little cost, runs reasonably fast in practice, and
has public keys of only 64 bytes at a conjectured AES-128 security level,
matching NIST’s post-quantum security category I.
for non-interactive key exchange in a post-quantum setting. Our construction
follows the layout of the Couveignes–Rostovtsev–Stolbunov
cryptosystem, but we apply it to supersingular elliptic curves defined
over a large prime field Fp, rather than to ordinary elliptic curves. The
Diffie–Hellman scheme resulting from the group action allows for publickey
validation at very little cost, runs reasonably fast in practice, and
has public keys of only 64 bytes at a conjectured AES-128 security level,
matching NIST’s post-quantum security category I.
| Original language | English |
|---|---|
| Title of host publication | Advances in Cryptology - ASIACRYPT 2018 |
| Publisher | Springer |
| Pages | 395-427 |
| ISBN (Electronic) | 978-3-030-03332-3 |
| ISBN (Print) | 978-3-030-03331-6 |
| DOIs | |
| Publication status | E-pub ahead of print - 26 Oct 2018 |
Publication series
| Name | Lecture Notes in Computer Science |
|---|---|
| Volume | 11274 |
| ISSN (Electronic) | 1611-3349 |
