Learning with Errors and Extrapolated Dihedral Cosets

Zvika Brakerski; Elena Kirshanova; Damien Stehlé; Weiqiang Wen

doi:10.1007/978-3-319-76581-5_24

Learning with Errors and Extrapolated Dihedral Cosets

Zvika Brakerski, Elena Kirshanova, Damien Stehlé, Weiqiang Wen

Department of Computer Science and Applied Mathematics

Weizmann Institute of Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The hardness of the learning with errors (LWE) problem is one of the most fruitful resources of modern cryptography. In particular, it is one of the most prominent candidates for secure post-quantum cryptography. Understanding its quantum complexity is therefore an important goal. We show that under quantum polynomial time reductions, LWE is equivalent to a relaxed version of the dihedral coset problem (DCP), which we call extrapolated DCP (eDCP). The extent of extrapolation varies with the LWE noise rate. By considering different extents of extrapolation, our result generalizes Regev’s famous proof that if DCP is in BQP (quantum poly-time) then so is LWE (FOCS 02). We also discuss a connection between eDCP and Childs and Van Dam’s algorithm for generalized hidden shift problems (SODA 07). Our result implies that a BQP solution for LWE might not require the full power of solving DCP, but rather only a solution for its relaxed version, eDCP, which could be easier.

Original language	English
Title of host publication	Public-Key Cryptography - PKC 2018
Editors	Michel Abdalla, Ricardo Dahab
Publisher	Springer-Verlag Italia
Pages	702-727
Number of pages	26
ISBN (Print)	9783319765778
DOIs	https://doi.org/10.1007/978-3-319-76581-5_24
State	Published Online - 1 Mar 2018
Event	21st IACR International Conference on Practice and Theory of Public-Key Cryptography, PKC 2018 - Rio de Janeiro, Brazil Duration: 25 Mar 2018 → 29 Mar 2018

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	10770 10769 LNCS
ISSN (Print)	0302-9743

Conference

Conference	21st IACR International Conference on Practice and Theory of Public-Key Cryptography, PKC 2018
Country/Territory	Brazil
City	Rio de Janeiro
Period	25/03/18 → 29/03/18

All Science Journal Classification (ASJC) codes

Theoretical Computer Science
General Computer Science

Access to Document

10.1007/978-3-319-76581-5_24

https://arxiv.org/abs/1710.08223License: Other

Cite this

Brakerski, Z., Kirshanova, E., Stehlé, D., & Wen, W. (2018). Learning with Errors and Extrapolated Dihedral Cosets. In M. Abdalla, & R. Dahab (Eds.), Public-Key Cryptography - PKC 2018 (pp. 702-727). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10770 10769 LNCS). Springer-Verlag Italia. Advance online publication. https://doi.org/10.1007/978-3-319-76581-5_24

Brakerski, Zvika ; Kirshanova, Elena ; Stehlé, Damien et al. / Learning with Errors and Extrapolated Dihedral Cosets. Public-Key Cryptography - PKC 2018. editor / Michel Abdalla ; Ricardo Dahab. Springer-Verlag Italia, 2018. pp. 702-727 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{7341ef8971914c6c9e1a2b67d191d1d0,

title = "Learning with Errors and Extrapolated Dihedral Cosets",

abstract = "The hardness of the learning with errors (LWE) problem is one of the most fruitful resources of modern cryptography. In particular, it is one of the most prominent candidates for secure post-quantum cryptography. Understanding its quantum complexity is therefore an important goal. We show that under quantum polynomial time reductions, LWE is equivalent to a relaxed version of the dihedral coset problem (DCP), which we call extrapolated DCP (eDCP). The extent of extrapolation varies with the LWE noise rate. By considering different extents of extrapolation, our result generalizes Regev{\textquoteright}s famous proof that if DCP is in BQP (quantum poly-time) then so is LWE (FOCS 02). We also discuss a connection between eDCP and Childs and Van Dam{\textquoteright}s algorithm for generalized hidden shift problems (SODA 07). Our result implies that a BQP solution for LWE might not require the full power of solving DCP, but rather only a solution for its relaxed version, eDCP, which could be easier.",

author = "Zvika Brakerski and Elena Kirshanova and Damien Stehl{\'e} and Weiqiang Wen",

note = "Z. Brakerski—Supported by the Israel Science Foundation (Grant No. 468/14) and Binational Science Foundation (Grants No. 2016726, 2014276) and ERC Project 756482 REACT. E. Kirshanova, D. Stehl{\'e}and W. Wen—Supported by ERC Starting Grant ERC-2013-StG-335086-LATTAC.; 21st IACR International Conference on Practice and Theory of Public-Key Cryptography, PKC 2018 ; Conference date: 25-03-2018 Through 29-03-2018",

year = "2018",

month = mar,

day = "1",

doi = "10.1007/978-3-319-76581-5_24",

language = "الإنجليزيّة",

isbn = "9783319765778",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer-Verlag Italia",

pages = "702--727",

editor = "Michel Abdalla and Ricardo Dahab",

booktitle = "Public-Key Cryptography - PKC 2018",

address = "إيطاليا",

}

Brakerski, Z, Kirshanova, E, Stehlé, D & Wen, W 2018, Learning with Errors and Extrapolated Dihedral Cosets. in M Abdalla & R Dahab (eds), Public-Key Cryptography - PKC 2018. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 10770 10769 LNCS, Springer-Verlag Italia, pp. 702-727, 21st IACR International Conference on Practice and Theory of Public-Key Cryptography, PKC 2018, Rio de Janeiro, Brazil, 25/03/18. https://doi.org/10.1007/978-3-319-76581-5_24

Learning with Errors and Extrapolated Dihedral Cosets. / Brakerski, Zvika; Kirshanova, Elena; Stehlé, Damien et al.
Public-Key Cryptography - PKC 2018. ed. / Michel Abdalla; Ricardo Dahab. Springer-Verlag Italia, 2018. p. 702-727 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10770 10769 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Learning with Errors and Extrapolated Dihedral Cosets

AU - Brakerski, Zvika

AU - Kirshanova, Elena

AU - Stehlé, Damien

AU - Wen, Weiqiang

N1 - Z. Brakerski—Supported by the Israel Science Foundation (Grant No. 468/14) and Binational Science Foundation (Grants No. 2016726, 2014276) and ERC Project 756482 REACT. E. Kirshanova, D. Stehléand W. Wen—Supported by ERC Starting Grant ERC-2013-StG-335086-LATTAC.

PY - 2018/3/1

Y1 - 2018/3/1

N2 - The hardness of the learning with errors (LWE) problem is one of the most fruitful resources of modern cryptography. In particular, it is one of the most prominent candidates for secure post-quantum cryptography. Understanding its quantum complexity is therefore an important goal. We show that under quantum polynomial time reductions, LWE is equivalent to a relaxed version of the dihedral coset problem (DCP), which we call extrapolated DCP (eDCP). The extent of extrapolation varies with the LWE noise rate. By considering different extents of extrapolation, our result generalizes Regev’s famous proof that if DCP is in BQP (quantum poly-time) then so is LWE (FOCS 02). We also discuss a connection between eDCP and Childs and Van Dam’s algorithm for generalized hidden shift problems (SODA 07). Our result implies that a BQP solution for LWE might not require the full power of solving DCP, but rather only a solution for its relaxed version, eDCP, which could be easier.

AB - The hardness of the learning with errors (LWE) problem is one of the most fruitful resources of modern cryptography. In particular, it is one of the most prominent candidates for secure post-quantum cryptography. Understanding its quantum complexity is therefore an important goal. We show that under quantum polynomial time reductions, LWE is equivalent to a relaxed version of the dihedral coset problem (DCP), which we call extrapolated DCP (eDCP). The extent of extrapolation varies with the LWE noise rate. By considering different extents of extrapolation, our result generalizes Regev’s famous proof that if DCP is in BQP (quantum poly-time) then so is LWE (FOCS 02). We also discuss a connection between eDCP and Childs and Van Dam’s algorithm for generalized hidden shift problems (SODA 07). Our result implies that a BQP solution for LWE might not require the full power of solving DCP, but rather only a solution for its relaxed version, eDCP, which could be easier.

UR - http://www.scopus.com/inward/record.url?scp=85043987289&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-76581-5_24

DO - 10.1007/978-3-319-76581-5_24

M3 - منشور من مؤتمر

SN - 9783319765778

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 702

EP - 727

BT - Public-Key Cryptography - PKC 2018

A2 - Abdalla, Michel

A2 - Dahab, Ricardo

PB - Springer-Verlag Italia

T2 - 21st IACR International Conference on Practice and Theory of Public-Key Cryptography, PKC 2018

Y2 - 25 March 2018 through 29 March 2018

ER -

Brakerski Z, Kirshanova E, Stehlé D, Wen W. Learning with Errors and Extrapolated Dihedral Cosets. In Abdalla M, Dahab R, editors, Public-Key Cryptography - PKC 2018. Springer-Verlag Italia. 2018. p. 702-727. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). Epub 2018 Mar 1. doi: 10.1007/978-3-319-76581-5_24

Learning with Errors and Extrapolated Dihedral Cosets

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Cite this