FESTA: Fast Encryption from Supersingular Torsion Attacks

Andrea Basso, Luciano Maino, Giacomo Pope

Research output: Chapter in Book/Report/Conference proceedingConference Contribution (Conference Proceeding)


We introduce FESTA, an efficient isogeny-based public-key encryption (PKE) protocol based on a constructive application of the SIDH attacks.
At its core, FESTA is based on a novel trapdoor function, which uses an improved version of the techniques proposed in the SIDH attacks to develop a trapdoor mechanism. Using standard transformations, we construct an efficient PKE that is IND-CCA secure in the QROM. Additionally, using a different transformation, we obtain the first isogeny-based PKE that is IND-CCA secure in the standard model.
Lastly, we propose a method to efficiently find parameters for FESTA, and we develop a proof-of-concept implementation of the protocol. We expect FESTA to offer practical performance that is competitive with existing isogeny-based constructions.
Original languageEnglish
Title of host publicationASIACRYPT 2023
PublisherInternational Association for Cryptologic Research (IACR).
Publication statusAccepted/In press - 2023
EventAsiacrypt 2023 - Guangzhou, China
Duration: 4 Dec 20238 Dec 2023


ConferenceAsiacrypt 2023


Dive into the research topics of 'FESTA: Fast Encryption from Supersingular Torsion Attacks'. Together they form a unique fingerprint.

Cite this