摘要
NTRU是一种新的构建在环上的公钥密码体制,其安全性基于在大维数格中寻找最短向量的数学难题(shortest vector problem,SVP),然而该体制存在一个明显的缺陷:在参数选取不当的情况下容易造成解密失败.首先介绍了NTRU体制及其解密失败的原因,并分析了保证解密正确参数选取的理论基础.在此基础上,分析了两种基于解密失败的NTRU改进体制,并指出了这两种体制存在的问题.最后提出了一种改进体制,该体制不仅能避免前两种体制中存在的缺陷,解决NTRU解密失败问题,同时也保证其安全性同NTRU等价.
NTRU(number theory research unit) is a new public key cryptosystem based on SVP(shortest vector problem) in lattices.However,decryption by means of this system may fail because of improper parameter selection.To solve this problems,the scheme and its decryption failure were introduced,and the theory of parameter selection to guarantee correct decoding was presented.Then,two modified systems were analyzed and their deficiencies were pointed out.Finally,an improved scheme was proposed.This scheme can not only prevent the defects of the two modified systems and solve the decryption failure of NTRU,but also guarantee the same security of NTRU.
基金
国家自然科学基金(61070219)资助
关键词
后量子密码
格
NTRU
解密失败
post-quantum cryptography
lattice
NTRU
decryption failure