The SQALE of CSIDH: sublinear Vélu quantum-resistant isogeny action with low exponents
Keyword(s):
AbstractRecent independent analyses by Bonnetain–Schrottenloher and Peikert in Eurocrypt 2020 significantly reduced the estimated quantum security of the isogeny-based commutative group action key-exchange protocol CSIDH. This paper refines the estimates of a resource-constrained quantum collimation sieve attack to give a precise quantum security to CSIDH. Furthermore, we optimize large CSIDH parameters for performance while still achieving the NIST security levels 1, 2, and 3. Finally, we provide a C-code constant-time implementation of those CSIDH large instantiations using the square-root-complexity Vélu’s formulas recently proposed by Bernstein, De Feo, Leroux and Smith.
Keyword(s):
2021 ◽
Keyword(s):
2015 ◽
Vol 18
(3)
◽
pp. 254-259
Keyword(s):
2021 ◽
Keyword(s):
2010 ◽
Vol E93-A
(6)
◽
pp. 1086-1101
◽
2010 ◽
Vol 32
(8)
◽
pp. 1948-1952
2014 ◽
Vol 35
(9)
◽
pp. 2278-2282