[Resource Topic] 2017/1025: Rounded Gaussians -- Fast and Secure Constant-Time Sampling for Lattice-Based Crypto

Welcome to the resource topic for 2017/1025

Title:
Rounded Gaussians – Fast and Secure Constant-Time Sampling for Lattice-Based Crypto

Authors: Andreas Hülsing, Tanja Lange, Kit Smeets

Abstract:

This paper suggests to use rounded Gaussians in place of dis- crete Gaussians in rejection-sampling-based lattice signature schemes like BLISS. We show that this distribution can efficiently be sampled from while additionally making it easy to sample in constant time, systematically avoiding recent timing-based side-channel attacks on lattice-based signatures. We show the effectiveness of the new sampler by applying it to BLISS, prove analogues of the security proofs for BLISS, and present an implementation that runs in constant time. Our implementation needs no precomputed tables and is twice as fast as the variable-time CDT sampler posted by the BLISS authors with precomputed tables.

ePrint: https://eprint.iacr.org/2017/1025

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .