Lattice klepto: Turning post-quantum crypto against itself

Robin Kwant; Tanja Lange; Kimberley Thissen

doi:10.1007/978-3-319-72565-9_17

Lattice klepto: Turning post-quantum crypto against itself

Robin Kwant, Tanja Lange, Kimberley Thissen

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

8 Citations (Scopus)

Abstract

This paper studies ways to backdoor lattice-based systems following Young and Yung’s work on backdooring RSA and discrete-log based systems. For the NTRU encryption scheme we show how to build a backdoor and to change the system so that each ciphertext leaks information about the plaintext to the owner of the backdoor. For signature schemes the backdoor leaks information about the signing key to the backdoor owner. As in Young and Yung’s work the backdoor uses the freedom that random selections offer in the protocol to hide a secret message encrypted to the backdoor owner. The most interesting and very different part though is how to hide and retrieve the hidden messages.

Original language	English
Title of host publication	Selected Areas in Cryptography – SAC 2017 - 24th International Conference, Revised Selected Papers
Subtitle of host publication	24th International Conference, Ottawa, ON, Canada, August 16-18, 2017, Revised Selected Papers
Editors	Carlisle Adams, Jan Camenisch
Place of Publication	Dordrecht
Publisher	Springer
Pages	336-354
Number of pages	19
ISBN (Electronic)	978-3-319-72565-9
ISBN (Print)	978-3-319-72564-2
DOIs	https://doi.org/10.1007/978-3-319-72565-9_17
Publication status	Published - 2017
Event	24th International Conference on Selected Areas in Cryptography (SAC 2017) - Ottawa, Canada Duration: 16 Aug 2017 → 18 Aug 2017 Conference number: 24

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	10719 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	24th International Conference on Selected Areas in Cryptography (SAC 2017)
Abbreviated title	SAC 2017
Country/Territory	Canada
City	Ottawa
Period	16/08/17 → 18/08/17

Keywords

Kleptography
Lattice-based encryption
NTRU
Post-quantum cryptography
Signatures

Access to Document

10.1007/978-3-319-72565-9_17

https://eprint.iacr.org/2017/1140

Cite this

Kwant, R., Lange, T., & Thissen, K. (2017). Lattice klepto: Turning post-quantum crypto against itself. In C. Adams, & J. Camenisch (Eds.), Selected Areas in Cryptography – SAC 2017 - 24th International Conference, Revised Selected Papers: 24th International Conference, Ottawa, ON, Canada, August 16-18, 2017, Revised Selected Papers (pp. 336-354). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10719 LNCS). Springer. https://doi.org/10.1007/978-3-319-72565-9_17

Kwant, Robin ; Lange, Tanja ; Thissen, Kimberley. / Lattice klepto : Turning post-quantum crypto against itself. Selected Areas in Cryptography – SAC 2017 - 24th International Conference, Revised Selected Papers: 24th International Conference, Ottawa, ON, Canada, August 16-18, 2017, Revised Selected Papers. editor / Carlisle Adams ; Jan Camenisch. Dordrecht : Springer, 2017. pp. 336-354 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{b0f2bdc05bd34814906d94b0ac733285,

title = "Lattice klepto: Turning post-quantum crypto against itself",

abstract = "This paper studies ways to backdoor lattice-based systems following Young and Yung{\textquoteright}s work on backdooring RSA and discrete-log based systems. For the NTRU encryption scheme we show how to build a backdoor and to change the system so that each ciphertext leaks information about the plaintext to the owner of the backdoor. For signature schemes the backdoor leaks information about the signing key to the backdoor owner. As in Young and Yung{\textquoteright}s work the backdoor uses the freedom that random selections offer in the protocol to hide a secret message encrypted to the backdoor owner. The most interesting and very different part though is how to hide and retrieve the hidden messages.",

keywords = "Kleptography, Lattice-based encryption, NTRU, Post-quantum cryptography, Signatures",

author = "Robin Kwant and Tanja Lange and Kimberley Thissen",

year = "2017",

doi = "10.1007/978-3-319-72565-9_17",

language = "English",

isbn = "978-3-319-72564-2",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "336--354",

editor = "Carlisle Adams and Jan Camenisch",

booktitle = "Selected Areas in Cryptography – SAC 2017 - 24th International Conference, Revised Selected Papers",

address = "Germany",

note = "24th International Conference on Selected Areas in Cryptography (SAC 2017), SAC 2017 ; Conference date: 16-08-2017 Through 18-08-2017",

}

Kwant, R, Lange, T & Thissen, K 2017, Lattice klepto: Turning post-quantum crypto against itself. in C Adams & J Camenisch (eds), Selected Areas in Cryptography – SAC 2017 - 24th International Conference, Revised Selected Papers: 24th International Conference, Ottawa, ON, Canada, August 16-18, 2017, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 10719 LNCS, Springer, Dordrecht, pp. 336-354, 24th International Conference on Selected Areas in Cryptography (SAC 2017), Ottawa, Quebec, Canada, 16/08/17. https://doi.org/10.1007/978-3-319-72565-9_17

Lattice klepto: Turning post-quantum crypto against itself. / Kwant, Robin; Lange, Tanja; Thissen, Kimberley.
Selected Areas in Cryptography – SAC 2017 - 24th International Conference, Revised Selected Papers: 24th International Conference, Ottawa, ON, Canada, August 16-18, 2017, Revised Selected Papers. ed. / Carlisle Adams; Jan Camenisch. Dordrecht: Springer, 2017. p. 336-354 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10719 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Lattice klepto

T2 - 24th International Conference on Selected Areas in Cryptography (SAC 2017)

AU - Kwant, Robin

AU - Lange, Tanja

AU - Thissen, Kimberley

N1 - Conference code: 24

PY - 2017

Y1 - 2017

N2 - This paper studies ways to backdoor lattice-based systems following Young and Yung’s work on backdooring RSA and discrete-log based systems. For the NTRU encryption scheme we show how to build a backdoor and to change the system so that each ciphertext leaks information about the plaintext to the owner of the backdoor. For signature schemes the backdoor leaks information about the signing key to the backdoor owner. As in Young and Yung’s work the backdoor uses the freedom that random selections offer in the protocol to hide a secret message encrypted to the backdoor owner. The most interesting and very different part though is how to hide and retrieve the hidden messages.

AB - This paper studies ways to backdoor lattice-based systems following Young and Yung’s work on backdooring RSA and discrete-log based systems. For the NTRU encryption scheme we show how to build a backdoor and to change the system so that each ciphertext leaks information about the plaintext to the owner of the backdoor. For signature schemes the backdoor leaks information about the signing key to the backdoor owner. As in Young and Yung’s work the backdoor uses the freedom that random selections offer in the protocol to hide a secret message encrypted to the backdoor owner. The most interesting and very different part though is how to hide and retrieve the hidden messages.

KW - Kleptography

KW - Lattice-based encryption

KW - NTRU

KW - Post-quantum cryptography

KW - Signatures

UR - http://www.scopus.com/inward/record.url?scp=85041844926&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-72565-9_17

DO - 10.1007/978-3-319-72565-9_17

M3 - Conference contribution

SN - 978-3-319-72564-2

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 336

EP - 354

BT - Selected Areas in Cryptography – SAC 2017 - 24th International Conference, Revised Selected Papers

A2 - Adams, Carlisle

A2 - Camenisch, Jan

PB - Springer

CY - Dordrecht

Y2 - 16 August 2017 through 18 August 2017

ER -

Kwant R, Lange T, Thissen K. Lattice klepto: Turning post-quantum crypto against itself. In Adams C, Camenisch J, editors, Selected Areas in Cryptography – SAC 2017 - 24th International Conference, Revised Selected Papers: 24th International Conference, Ottawa, ON, Canada, August 16-18, 2017, Revised Selected Papers. Dordrecht: Springer. 2017. p. 336-354. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-319-72565-9_17

Lattice klepto: Turning post-quantum crypto against itself

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Lattice klepto : turning post-quantum crypto against itself

Cite this