Kipnis-Shamir Attack on HFE Revisited

Authors:
Xin Jiang;Jintai Ding;Lei Hu
Affiliations:
State Key Lab of Information Security, Chinese Academy of Sciences, Beijing, China;University of Cincinnati, USA and Technical University of Darmstadt, Germany;State Key Lab of Information Security, Chinese Academy of Sciences, Beijing, China
Venue:
Information Security and Cryptology
Year:
2007

Citing 12
Cited 3

Public quadratic polynomial-tuples for efficient signature-verification and message-encryption

Lecture Notes in Computer Science on Advances in Cryptology-EUROCRYPT'88
Computers and Intractability: A Guide to the Theory of NP-Completeness

Computers and Intractability: A Guide to the Theory of NP-Completeness
QUARTZ, 128-Bit Long Digital Signatures

CT-RSA 2001 Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA
The Security of Hidden Field Equations (HFE)

CT-RSA 2001 Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA
Cryptanalysis of the HFE Public Key Cryptosystem by Relinearization

CRYPTO '99 Proceedings of the 19th Annual International Cryptology Conference on Advances in Cryptology
A new efficient algorithm for computing Gröbner bases without reduction to zero (F5)

Proceedings of the 2002 international symposium on Symbolic and algebraic computation
Multivariate Public Key Cryptosystems (Advances in Information Security)

Multivariate Public Key Cryptosystems (Advances in Information Security)
Hidden fields equations (HFE) and isomorphisms of polynomials (IP): Two new families of asymmetric algorithms

EUROCRYPT'96 Proceedings of the 15th annual international conference on Theory and application of cryptographic techniques
Efficient algorithms for solving overdefined systems of multivariate polynomial equations

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques
Cryptanalysis of HFEv and internal perturbation of HFE

PKC'05 Proceedings of the 8th international conference on Theory and Practice in Public Key Cryptography
All in the XL family: theory and practice

ICISC'04 Proceedings of the 7th international conference on Information Security and Cryptology
Inverting HFE is quasipolynomial

CRYPTO'06 Proceedings of the 26th annual international conference on Advances in Cryptology

Square, a New Multivariate Encryption Scheme

CT-RSA '09 Proceedings of the The Cryptographers' Track at the RSA Conference 2009 on Topics in Cryptology
Cryptanalysis of multivariate and odd-characteristic HFE variants

PKC'11 Proceedings of the 14th international conference on Practice and theory in public key cryptography conference on Public key cryptography
Secure variants of the square encryption scheme

PQCrypto'10 Proceedings of the Third international conference on Post-Quantum Cryptography

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we show the claims in the original Kipnis-Shamir attack on the HFE cryptosystems and the improved attack by Courtois that the complexity of the attacks is polynomial in terms of the number of variables are invalid. We present computer experiments and a theoretical argument using basic algebraic geometry to explain why it is so. Furthermore we show that even with the help of the powerful new Gröbner basis algorithm like F4, the Kipnis-Shamir attack still should be exponential but not polynomial. This again is supported by our theoretical argument.