Paper 2004/209

The Security and Efficiency of Micciancio's Cryptosystem

Christoph Ludwig

Abstract

We report experiments on the security of the GGH-like cryptosystem proposed by Micciancio. Based on these experiments, we conclude that the system can be securely used only in lattice dimensions > 781. Further experiments on the efficiency of the system show that it requires key sizes of 1 MByte and more and that the key generation as well as the decryption take inacceptibly long. Therefore, Micciancio's cryptosystem seems currently far from being practical.

Metadata
Available format(s)
PDF PS
Category
Public-key cryptography
Publication info
Published elsewhere. Darmstadt University of Technology, Technical Report TI-7/02
Keywords
lattice techniques
Contact author(s)
cludwig @ cdc informatik tu-darmstadt de
History
2004-08-26: revised
2004-08-26: received
See all versions
Short URL
https://ia.cr/2004/209
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2004/209,
      author = {Christoph Ludwig},
      title = {The Security and Efficiency of Micciancio's Cryptosystem},
      howpublished = {Cryptology ePrint Archive, Paper 2004/209},
      year = {2004},
      note = {\url{https://eprint.iacr.org/2004/209}},
      url = {https://eprint.iacr.org/2004/209}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.