Litcius/Paper detail

SalsaPicante: A Machine Learning Attack on LWE with Binary Secrets

C. Li, Jana Sotáková, Emily Wenger, Mohamed Malhou, Evrard Garcelon, François Charton, Kristin Lauter

202312 citationsDOIOpen Access PDF

Abstract

Learning with Errors (LWE) is a hard math problem underpinning many proposed post-quantum cryptographic (PQC) systems. The only PQC Key Exchange Mechanism (KEM) standardized by NIST [13] is based on module LWE [2], and current publicly available PQ Homomorphic Encryption (HE) libraries are based on ring LWE. The security of LWE-based PQ cryptosystems is critical, but certain implementation choices could weaken them. One such choice is sparse binary secrets, desirable for PQ HE schemes for efficiency reasons. Prior work SALSA[51] demonstrated a machine learning-based attack on LWE with sparse binary secrets in small dimensions (n ≤ = 128) and low Hamming weights (h ≤ = 4). However, this attack assumes access to millions of eavesdropped LWE samples and fails at higher Hamming weights or dimensions.

Topics & Concepts

Learning with errorsCryptosystemComputer scienceCryptographyNISTHamming distanceTheoretical computer scienceBinary numberHomomorphic encryptionEncryptionHamming codeKey exchangePublic-key cryptographyComputer securityAlgorithmMathematicsArithmeticBlock codeNatural language processingDecoding methodsCryptography and Data SecurityCryptographic Implementations and SecurityCoding theory and cryptography
SalsaPicante: A Machine Learning Attack on LWE with Binary Secrets | Litcius