# Time Space Tradeoffs for Attacks against One-Way Functions and PRGs

• Anindya De
• Luca Trevisan
Conference paper

DOI: 10.1007/978-3-642-14623-7_35

Part of the Lecture Notes in Computer Science book series (LNCS, volume 6223)
Cite this paper as:
De A., Trevisan L., Tulsiani M. (2010) Time Space Tradeoffs for Attacks against One-Way Functions and PRGs. In: Rabin T. (eds) Advances in Cryptology – CRYPTO 2010. CRYPTO 2010. Lecture Notes in Computer Science, vol 6223. Springer, Berlin, Heidelberg

## Abstract

We study time space tradeoffs in the complexity of attacks against one-way functions and pseudorandom generators.

Fiat and Naor [7] show that for every function f: [N]→[N], there is an algorithm that inverts f everywhere using (ignoring lower order factors) time, space and advice at most N3/4.

We show that an algorithm using time, space and advice at most
$$\max \{ \epsilon^{\frac 54} N^{\frac 34} \ , \ \sqrt{\epsilon N} \}$$
exists that inverts f on at least an ε fraction of inputs. A lower bound of $$\tilde \Omega(\sqrt { \epsilon N })$$ also holds, making our result tight in the “low end” of $$\epsilon \leq \sqrt[3]{\frac{1}{N}}$$.

(Both the results of Fiat and Naor and ours are formulated as more general trade-offs between the time and the space and advice length of the algorithm. The results quoted above correspond to the interesting special case in which time equals space and advice length.)

We also show that for every length-increasing generator G:[N] →[2N] there is a algorithm that achieves distinguishing probability ε between the output of G and the uniform distribution and that can be implemented in polynomial (in logN) time and with advice and space O(ε2 ·NlogN). We prove a lower bound of S·T ≥ Ω(ε2N) where T is the time used by the algorithm and S is the amount of advice. This lower bound applies even when the distinguisher has oracle access to G.

We prove stronger lower bounds in the common random string model, for families of one-way permutations and of pseudorandom generators.

### Keywords

One-way functions pseudorandom generators random permutations time-space tradeoffs

## Authors and Affiliations

• Anindya De
• 1
• Luca Trevisan
• 2