Dimension of the Linearization Equations of the Matsumoto-Imai Cryptosystems

14 years 6 months ago

Download www.ima.umn.edu

Abstract. The Matsumoto-Imai (MI) cryptosystem was the ﬁrst multivariate public key cryptosystem proposed for practical use. Though MI is now considered insecure due to Patarin’s linearization attack, the core idea of MI has been used to construct many variants such as Sﬂash, which has recently been accepted for use in the New European Schemes for Signatures, Integrity, and Encryption project. Linearization attacks take advantage of the algebraic structure of MI to produce a set of equations that can be used to recover the plaintext from a given ciphertext. In our paper, we present a solution to the problem of ﬁnding the dimension of the space of linearization equations, a measure of how much work the attack will require.

Adama Diene, Jintai Ding, Jason E. Gower, Timothy

Real-time Traffic

Cryptography | Linearization Attacks | Patarin’s Linearization Attack | Public Key Cryptosystem | WCC 2005 |

claim paper

Post Info
More Details (n/a)

Added	28 Jun 2010
Updated	28 Jun 2010
Type	Conference
Year	2005
Where	WCC
Authors	Adama Diene, Jintai Ding, Jason E. Gower, Timothy J. Hodges, Zhijun Yin

Comments (0)

Sciweavers

Dimension of the Linearization Equations of the Matsumoto-Imai Cryptosystems

Cryptography | Linearization Attacks | Patarin’s Linearization Attack | Public Key Cryptosystem | WCC 2005 |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers