A Variant of Coppersmith's Algorithm with Improved Complexity and Efficient Exhaustive Search.
作者: Jean-Charles Faugère , Rina Zeitoun , Jean-Sébastien Coron , Guénaël Renault
DOI:
关键词:
摘要: Coppersmith described at Eurocrypt 96 a polynomial-time algorithm for finding small roots of univariate modular equations, based on lattice reduction. In this paper we describe the first improvement asymptotic complexity Coppersmith’s algorithm. Our method consists in taking advantage matrix structure, order to apply LLL whose elements are smaller than those original matrix. Using L algorithm, our is O(logN) any e > 0, instead previously. Furthermore, devise that allows speed up exhaustive search which usually performed reach theoretical bound. approach takes test one guess, reduce next guess. Experimental results confirm it leads considerable performance improvement.
参考文章(7)
Phong Q. Nguên, Damien Stehlé, Floating-Point LLL revisited theory and application of cryptographic techniques. pp. 215- 233 ,(2005) , 10.1007/11426639_13
Don Coppersmith, Finding a small root of a univariate modular equation theory and application of cryptographic techniques. pp. 155- 165 ,(1996) , 10.1007/3-540-68339-9_14
Daniel Bleichenbacher, Alexander May, New Attacks on RSA with Small Secret CRT-Exponents Public Key Cryptography - PKC 2006. pp. 1- 13 ,(2006) , 10.1007/11745853_1
Andrew Novocin, Damien Stehlé, Gilles Villard, An LLL-reduction algorithm with quasi-linear time complexity: extended abstract symposium on the theory of computing. pp. 403- 412 ,(2011) , 10.1145/1993636.1993691
A. K. Lenstra, H. W. Lenstra, L. Lovász, Factoring Polynomials with Rational Coefficients Mathematische Annalen. ,vol. 261, pp. 515- 534 ,(1982) , 10.1007/BF01457454
Don Coppersmith, Finding a small root of a bivariate integer equation; factoring with high bits known theory and application of cryptographic techniques. pp. 178- 189 ,(1996) , 10.1007/3-540-68339-9_16
Eric Brier, Christophe Clavier, Jean-Sébastien Coron, David Naccache, Cryptanalysis of RSA Signatures with Fixed-Pattern Padding international cryptology conference. pp. 433- 439 ,(2001) , 10.1007/3-540-44647-8_25