On the McEliece Public-Key Cryptosystem
Based on an idea by Hin, the method of obtaining the original message after selecting k of n coordinates at random in the McEliece public-key cryptosystem is improved. The attack, which is more efficient than the attacks previously proposed, is characterized by a systematic method of checking and by a random bit swapping procedure. An optimization procedure similar to the one proposed by Lee and Brickell is used to improve the attack. The attack is highly suitable for parallel and pipelined implementation. The work factor and the values, which yield ‘maximum’ security for the system are given.
It is shown that the public-key can be reduced to k × (n − k) bits.
KeywordsLinear Code Work Factor Permutation Matrix Error Pattern Original Message
- C. Adams and H. Meijer, “Security-Related Comments Regarding McEliece’s Public-Key Cryptosystem”, in: Advances in Cryptology-CRYPTO’ 87, Carl Pomerance ed., Lecture Notes in Computer Science # 293, Springer-Verlag, pp. 224–228, 1988.Google Scholar
- P.J.M. Hin, “Channel-Error-Correcting Privacy Cryptosystems”, M.Sc. Thesis, Delft University of Technology, 1986 (in Dutch).Google Scholar
- P.J.M. Hin, Private Communication, December 1986.Google Scholar
- D.E. Knuth, The art of computer Programming, Vol.2 / Seminumerical Algorithms, Addison-Wesley Publishing Company, 1981.Google Scholar
- P.J. Lee and E.F. Brickell, “An observation on the Security of McEliece’s Public-Key Cryptosystem”, Presented at Eurocrypt’88, Davos, May 1988.Google Scholar
- F.J. MacWilliams and N.J.A. Sloane, The Theory of Error-Correcting Codes, Amsterdam: North-Holland, 1978.Google Scholar
- R.J. McEliece, “A Public-Key Cryptosystem Based on Algebraic Coding Theory”, DSN Progress Report 42-44, JPL Pasadena, pp. 114–116, 1978.Google Scholar