Abstract
Group-based cryptography is a relatively unexplored family in post-quantum cryptography, and the so-called Semidirect Discrete Logarithm Problem (SDLP) is one of its most central problems. However, the complexity of SDLP and its relationship to more well-known hardness problems, particularly with respect to its security against quantum adversaries, has not been well understood and was a significant open problem for researchers in this area. In this paper we give the first dedicated security analysis of SDLP. In particular, we provide a connection between SDLP and group actions, a context in which quantum subexponential algorithms are known to apply. We are therefore able to construct a subexponential quantum algorithm for solving SDLP, thereby classifying the complexity of SDLP and its relation to known computational problems.
| Original language | English |
|---|---|
| Title of host publication | Post-Quantum Cryptography 2024 |
| Subtitle of host publication | proceedings |
| Pages | 202–226 |
| ISBN (Electronic) | 978-3-031-62743-9 |
| DOIs | |
| Publication status | Published - 14 Jun 2024 |
| Event | Post-Quantum Cryptography 2024 - University of Oxford, Mathematical Institute, Oxford, United Kingdom Duration: 12 Jun 2024 → 14 Jun 2024 https://www.maths.ox.ac.uk/events/conferences/pqcrypto-2024 |
Publication series
| Name | Lecture Notes in Computer Science |
|---|---|
| Publisher | Springer |
| Volume | 14771 |
Conference
| Conference | Post-Quantum Cryptography 2024 |
|---|---|
| Abbreviated title | PQCrypto 2024 |
| Country/Territory | United Kingdom |
| City | Oxford |
| Period | 12/06/24 → 14/06/24 |
| Internet address |
Bibliographical note
This is an author-produced version of the published paper. Uploaded in accordance with the University’s Research Publications and Open Access policy.Keywords
- discrete logarithm
- semidirect product
- group-based cryptography
- semidirect-product key exchange
- key exchange