[Resource Topic] 2023/428: Security analysis of the Classic McEliece, HQC and BIKE schemes in low memory

Welcome to the resource topic for 2023/428

Title:
Security analysis of the Classic McEliece, HQC and BIKE schemes in low memory

Authors: Yu Li, Li-Ping Wang

Abstract:

With the advancement of NIST PQC standardization, three of the four candidates in Round 4 are code-based schemes, namely Classic McEliece, HQC and BIKE. Currently, one of the most important tasks is to further analyze their security levels for the suggested parameter sets. At PKC 2022 Esser and Bellini restated the major information set decoding (ISD) algorithms by using nearest neighbor search and then applied these ISD algorithms to estimate the bit security of Classic McEliece, HQC and BIKE under the suggested parameter sets. However, all major ISD algorithms consume a large amount of memory, which in turn affects their time complexities. In this paper, we reestimate the bit-security levels of the parameter sets suggested by these three schemes in low memory by applying K-list sum algorithms to ISD algorithms. Compared with Esser-Bellini’s results, our results achieve the best gains for Classic McEliece, HQC, and BIKE, with reductions in bit-security levels of 11.09, 12.64, and 12.19 bits, respectively.

ePrint: https://eprint.iacr.org/2023/428

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .