Fast LLL-type lattice reduction

Authors:
Claus Peter Schnorr
Affiliations:
Fachbereiche Mathematik/Biologie-Informatik, Universität Frankfurt, PSF 111932, D-60054 Frankfurt am Main, Germany
Venue:
Information and Computation
Year:
2006

Citing 21
Cited 11

Algorithms to construct Minkowski reduced and Hermite reduced lattice bases

Theoretical Computer Science
Minkowski's convex body theorem and integer programming

Mathematics of Operations Research
A hierarchy of polynomial time lattice basis reduction algorithms

Theoretical Computer Science
A more efficient algorithm for lattice basis reduction

Journal of Algorithms
Polynomial time algorithms for finding integer relations among real numbers

SIAM Journal on Computing
An upper bound on the average number of iterations of the LLL algorithm

Theoretical Computer Science - Special issue on number theory, combinatorics and applications to computer science
Lattice basis reduction: improved practical algorithms and solving subset sum problems

Mathematical Programming: Series A and B
The shortest vector problem in L2 is NP-hard for randomized reductions (extended abstract)

STOC '98 Proceedings of the thirtieth annual ACM symposium on Theory of computing
On the complexity of computing short linearly independent vectors and short bases in a lattice

STOC '99 Proceedings of the thirty-first annual ACM symposium on Theory of computing
Finding smooth integers in short intervals using CRT decoding

STOC '00 Proceedings of the thirty-second annual ACM symposium on Theory of computing
A sieve algorithm for the shortest lattice vector problem

STOC '01 Proceedings of the thirty-third annual ACM symposium on Theory of computing
A linear space algorithm for computing the hermite normal form

Proceedings of the 2001 international symposium on Symbolic and algebraic computation
Complexity of Lattice Problems

Complexity of Lattice Problems
The Shortest Vector in a Lattice is Hard to Approximate to within Some Constant

SIAM Journal on Computing
Random lattices, threshold phenomena and efficient reduction algorithms

Theoretical Computer Science
Factorization of Univariate Integer Polynomials by Diophantine Aproximation and an Improved Basis Reduction Algorithm

Proceedings of the 11th Colloquium on Automata, Languages and Programming
Lattice Reduction by Random Sampling and Birthday Methods

STACS '03 Proceedings of the 20th Annual Symposium on Theoretical Aspects of Computer Science
Lattice Reduction in Cryptology: An Update

ANTS-IV Proceedings of the 4th International Symposium on Algorithmic Number Theory
The worst-case behavior of schnorr's algorithm approximating the shortest nonzero vector in a lattice

Proceedings of the thirty-fifth annual ACM symposium on Theory of computing
Noisy polynomial interpolation and noisy chinese remaindering

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques
Floating-Point LLL revisited

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques

Cryptanalysis of General Lu-Lee Type Systems

Information Security and Cryptology
Efficient Modular Arithmetic in Adapted Modular Number System Using Lagrange Representation

ACISP '08 Proceedings of the 13th Australasian conference on Information Security and Privacy
Broadcast Attacks against Lattice-Based Cryptosystems

ACNS '09 Proceedings of the 7th International Conference on Applied Cryptography and Network Security
Toward non-parallelizable client puzzles

CANS'07 Proceedings of the 6th international conference on Cryptology and network security
A digital signature scheme based on CV P∞

PKC'08 Proceedings of the Practice and theory in public key cryptography, 11th international conference on Public key cryptography
A deterministic single exponential time algorithm for most lattice problems based on voronoi cell computations

Proceedings of the forty-second ACM symposium on Theory of computing
Modular Las Vegas algorithms for polynomial absolute factorization

Journal of Symbolic Computation
Recursive lattice reduction

SCN'10 Proceedings of the 7th international conference on Security and cryptography for networks
An LLL-reduction algorithm with quasi-linear time complexity: extended abstract

Proceedings of the forty-third annual ACM symposium on Theory of computing
Improving BDD cryptosystems in general lattices

ISPEC'11 Proceedings of the 7th international conference on Information security practice and experience
A public key cryptosystem based on three new provable problems

Theoretical Computer Science

Quantified Score

Hi-index	0.00

Visualization

Abstract

We modify the concept of LLL-reduction of lattice bases in the sense of Lenstra, Lenstra, Lovasz, Factoring polynomials with rational coefficients, Math. Ann. 261 (1982) 515-534 towards a faster reduction algorithm. We organize LLL-reduction in segments of the basis. Our SLLL-bases approximate the successive minima of the lattice in nearly the same way as LLL-bases. For integer lattices of dimension n given by a basis of length 2^O^(^n^), SLLL-reduction runs in O(n^5^ ^+^@e) bit operations for every @e0, compared to O(n^7^ ^+^@e) for the original LLL and to O(n^6^ ^+^@e) for the LLL-algorithms of Schnorr, A more efficient algorithm for lattice reduction, Journal of Algorithm, 9 (1988) 47-62 and Storjohann, Faster Algorithms for Integer Lattice Basis Reduction. TR 249, Swiss Federal Institute of Technology, ETH-Zurich, Department of Computer Science, Zurich, Switzerland, July 1996. We present an even faster algorithm for SLLL-reduction via iterated subsegments running in O(n^3log n) arithmetic steps. Householder reflections are shown to provide better accuracy than Gram-Schmidt for orthogonalizing LLL-bases in floating point arithmetic. .