TY - JOUR
T1 - Computational aspects of retrieving a representation of an algebraic geometry code
AU - Márquez-Corbella, I.
AU - Martínez-Moro, E.
AU - Pellikaan, G.R.
AU - Ruano, D.
PY - 2014
Y1 - 2014
N2 - Code-based cryptography is an interesting alternative to classic number-theoretic public key cryptosystem since it is conjectured to be secure against quantum computer attacks. Many families of codes have been proposed for these cryptosystems such as algebraic geometry codes. In (Márquez-Corbella et al., 2012) — for so called very strong algebraic geometry codes C=CL(X,P,E), where X is an algebraic curve over Fq, P is an n-tuple of mutually distinct Fq-rational points of X and E is a divisor of X with disjoint support from P — it was shown that an equivalent representation C=CL(Y,Q,F) can be found. The n-tuple of points is obtained directly from a generator matrix of C, where the columns are viewed as homogeneous coordinates of these points. The curve Y is given by I2(Y), the homogeneous elements of degree 2 of the vanishing ideal I(Y). Furthermore, it was shown that I2(Y) can be computed efficiently as the kernel of certain linear map. What was not shown was how to get the divisor F and how to obtain efficiently an adequate decoding algorithm for the new representation. The main result of this paper is an efficient computational approach to the first problem, that is getting F. The security status of the McEliece public key cryptosystem using algebraic geometry codes is still not completely settled and is left as an open problem.
Keywords: Public key cryptosystem; Code-based cryptography; Algebraic geometry codes; Gröbner basis
AB - Code-based cryptography is an interesting alternative to classic number-theoretic public key cryptosystem since it is conjectured to be secure against quantum computer attacks. Many families of codes have been proposed for these cryptosystems such as algebraic geometry codes. In (Márquez-Corbella et al., 2012) — for so called very strong algebraic geometry codes C=CL(X,P,E), where X is an algebraic curve over Fq, P is an n-tuple of mutually distinct Fq-rational points of X and E is a divisor of X with disjoint support from P — it was shown that an equivalent representation C=CL(Y,Q,F) can be found. The n-tuple of points is obtained directly from a generator matrix of C, where the columns are viewed as homogeneous coordinates of these points. The curve Y is given by I2(Y), the homogeneous elements of degree 2 of the vanishing ideal I(Y). Furthermore, it was shown that I2(Y) can be computed efficiently as the kernel of certain linear map. What was not shown was how to get the divisor F and how to obtain efficiently an adequate decoding algorithm for the new representation. The main result of this paper is an efficient computational approach to the first problem, that is getting F. The security status of the McEliece public key cryptosystem using algebraic geometry codes is still not completely settled and is left as an open problem.
Keywords: Public key cryptosystem; Code-based cryptography; Algebraic geometry codes; Gröbner basis
U2 - 10.1016/j.jsc.2013.12.007
DO - 10.1016/j.jsc.2013.12.007
M3 - Article
SN - 0747-7171
VL - 64
SP - 67
EP - 87
JO - Journal of Symbolic Computation
JF - Journal of Symbolic Computation
ER -