[Resource Topic] 2019/298: Improved Classical Cryptanalysis of SIKE in Practice

Welcome to the resource topic for 2019/298

Improved Classical Cryptanalysis of SIKE in Practice

Authors: Craig Costello, Patrick Longa, Michael Naehrig, Joost Renes, Fernando Virdia


The main contribution of this work is an optimized implementation of the vanOorschot-Wiener (vOW) parallel collision finding algorithm. As is typical for cryptanalysis against conjectured hard problems (e. g. factoring or discrete logarithms), challenges can arise in the implementation that are not captured in the theory, making the performance of the algorithm in practice a crucial element of estimating security. We present a number of novel improvements, both to generic instantiations of the vOW algorithm finding collisions in arbitrary functions, and to its instantiation in the context of the supersingular isogeny key encapsulation (SIKE) protocol, that culminate in an improved classical cryptanalysis of the computational supersingular isogeny (CSSI) problem. In particular, we present a scalable implementation that can be applied to the Round-2 parameter sets of SIKE that can be used to give confidence in their security levels.

ePrint: https://eprint.iacr.org/2019/298

Talk: https://www.youtube.com/watch?v=QGIEbIzt6gk

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .