Open AccessPosted Content
Lattices that Admit Logarithmic Worst-Case to Average-Case Connection Factors.
Chris Peikert,Alon Rosen +1 more
Reads0
Chats0
TLDR
In particular, Peikert et al. as discussed by the authors showed that the problem of finding γ(n)-approximate shortest vectors in certain n-dimensional lattices can be solved in O( √ log n) time.Abstract:
We demonstrate an average-case problem which is as hard as finding γ(n)-approximate shortest vectors in certain n-dimensional lattices in the worst case, where γ(n) = O( √ log n). The previously best known factor for any class of lattices was γ(n) = O(n). To obtain our results, we focus on families of lattices having special algebraic structure. Specifically, we consider lattices that correspond to ideals in the ring of integers of an algebraic number field. The worst-case assumption we rely on is that in some `p length, it is hard to find approximate shortest vectors in these lattices, under an appropriate form of preprocessing of the number field. Our results build upon prior works by Micciancio (FOCS 2002), Peikert and Rosen (TCC 2006), and Lyubashevsky and Micciancio (ICALP 2006). For the connection factors γ(n) we achieve, the corresponding decisional promise problems on ideal lattices are not known to be NP-hard; in fact, they are in P. However, the search approximation problems still appear to be very hard. Indeed, ideal lattices are well-studied objects in computational number theory, and the best known algorithms for them seem to perform no better than the best known algorithms for general lattices. To obtain the best possible connection factor, we instantiate our constructions with infinite families of number fields having constant root discriminant. Such families are known to exist and are computable, though no efficient construction is yet known. Our work motivates the search for such constructions. Even constructions of number fields having root discriminant up to O(n2/3− ) would yield connection factors better than the current best of O(n). ∗SRI International, cpeikert@alum.mit.edu †Harvard CRCS, DEAS, alon@eecs.harvard.eduread more
Citations
More filters
Journal ArticleDOI
Scalable CCA-secure public-key authenticated encryption with keyword search from ideal lattices in cloud computing
TL;DR: Wang et al. as mentioned in this paper proposed a scalable PAEKS scheme based on ring-LWE and ring-ISIS by adopting the ring analog of lattice algorithms of both digital signature and searchable encryption schemes, in which signature algorithms are used to authenticate ciphertext.
Journal ArticleDOI
Scrollar invariants, syzygies and representations of the symmetric group
TL;DR: In this paper , it was shown that the splitting types of the syzygy bundles, together with the multi-set of scrollar invariants, belong to a much larger class of multi-sets of invariants that can be attached to C → 𝐏 1 {C\to\mathbf{P}^{1}} .
Explicit Approximations to Class Field Towers
Frauke M. Bleher,Ted Chinburg +1 more
TL;DR: In this article , the root discriminant D 1 / [ N : Q ] N is bounded above by a constant times [N : Q ], where N is the number of families of number of nodes.
Journal Article
Enhancing Ring-LWE Hardness using Dedekind Index Theorem
TL;DR: Bolboceanu et al. as discussed by the authors showed that all ideals I of an order are principal modulo qI, for any q that is co-prime to index of the order in the ring of integers.
References
More filters
Book
Sphere packings, lattices, and groups
TL;DR: The second edition of this book continues to pursue the question: what is the most efficient way to pack a large number of equal spheres in n-dimensional Euclidean space?
Journal ArticleDOI
Factoring Polynomials with Rational Coefficients
TL;DR: This paper presents a polynomial-time algorithm to solve the following problem: given a non-zeroPolynomial fe Q(X) in one variable with rational coefficients, find the decomposition of f into irreducible factors in Q (X).
Book
A Course in Computational Algebraic Number Theory
TL;DR: The first seven chapters guide readers to the heart of current research in computational algebraic number theory, including recent algorithms for computing class groups and units, as well as elliptic curve computations, while the last three chapters survey factoring and primality testing methods.
Proceedings ArticleDOI
On lattices, learning with errors, random linear codes, and cryptography
TL;DR: A public-key cryptosystem whose hardness is based on the worst-case quantum hardness of SVP and SIVP, and an efficient solution to the learning problem implies a quantum, which can be made classical.
Proceedings ArticleDOI
Generating hard instances of lattice problems (extended abstract)
TL;DR: A random class of lattices in Zn is given whose elements can be generated together with a short vector in them so that, if there is a probabilistic polynomial time algorithm which finds a long vector in a random lattice with a probability of at least ~ then there is also a prob probability-based algorithm which solves the following three lattice problems in ev-e~g lattice inZn with a probabilities exponentially close to one.