Journal of Cryptology

, Volume 11, Issue 3, pp 161–185

Lattice Reduction: A Toolbox for the Cryptanalyst

  • Antoine Joux
  • Jacques Stern
Article

DOI: 10.1007/s001459900042

Cite this article as:
Joux, A. & Stern, J. J. Cryptology (1998) 11: 161. doi:10.1007/s001459900042

Abstract.

In recent years, methods based on lattice reduction have been used repeatedly for the cryptanalytic attack of various systems. Even if they do not rest on highly sophisticated theories, these methods may look a bit intricate to practically oriented cryptographers, both from the mathematical and the algorithmic point of view. The aim of this paper is to explain what can be achieved by lattice reduction algorithms, even without understanding the actual mechanisms involved. Two examples are given. One is the attack devised by the second author against Knuth's truncated linear congruential generator. This attack was announced a few years ago and appears here for the first time in complete detail.

Key words. Lattices, Cryptanalysis, Knapsack cryptosystems. 

Copyright information

© International Association for Criptologic Research 1998

Authors and Affiliations

  • Antoine Joux
    • 1
  • Jacques Stern
    • 2
  1. 1.DGA/CELARBruzFrance
  2. 2.Laboratoire d'Informatique, Ecole Normale SupérieureParisFrance