McEliece Public Key system - PowerPoint PPT Presentation

1 / 9
About This Presentation
Title:

McEliece Public Key system

Description:

McEliece Public Key system. A.J. Han Vinck. Han Vinck February 2003 ... property: - S = k x k nonsingular matrix (scrambler) - P = n x n permutation matrix ... – PowerPoint PPT presentation

Number of Views:55
Avg rating:3.0/5.0
Slides: 10
Provided by: vin51
Category:

less

Transcript and Presenter's Notes

Title: McEliece Public Key system


1
McEliece Public Key system
  • A.J. Han Vinck

2
Content
  • - The system ( 1978, progress report JPL )
  • Encryption
  • Decryption
  • Some attacks
  • guessing
  • exhaustive search
  • guessing k independent coordinates

3
The system
Public key k x n binary matrix G property
G corrects ? t errors property decoder for G
has exponential complexity Encrypt C mG ?
r property r is vector of length n of weight t
r is used to avoid retrieval of m by direct
Gaussian elimination, O(k3)
4
Decrypt
Let G SGP property - S k x k
nonsingular matrix (scrambler) - P n x
n permutation matrix property decoder for G
has polynomial complexity Decrypt form C
mG ? r P-1 mSG ? r P-1 decode mS and
calculate mSS-1 m Suggestion k512/n1024
½ and t gt 50
5
Attacks guessing S and P
Knowledge of S and P gives G Guessing S O(
2k2) P O( n! )
6
Attacks exhaustive search
Look for closest of 2k codewords generated by
G C mG ? m
7
Attacks guess k correct positions
- k independent error free positions give m
with Gaussian elimination Prob( error free in k
positions) ( 1 t/n)k Example n 1024, k
512, t 50 ? ( 1 - 0.05 )512 ? 10-8 every
guess takes about (5123) steps This is
considered to be insufficient!
8
Weak point
encryption of the same message C mG ?
r C mG ? r C ? C r ? r Positions
where r and r are different can be
detected thus easier to find k independent
positions
9
Conclusion
Up to now difficult to find a general
solution Performance depends on code
parameters decoding complexity
Write a Comment
User Comments (0)
About PowerShow.com