On the Security of Diffie-Hellman Bits

Vasco, Maria Isabel González; Shparlinski, Igor E.

doi:10.1007/978-3-0348-8295-8_19

On the Security of Diffie-Hellman Bits

Maria Isabel González Vasco⁹ &
Igor E. Shparlinski¹⁰

Conference paper

583 Accesses
19 Citations

Part of the book series: Progress in Computer Science and Applied Logic ((PCS,volume 20))

Abstract

Boneh and Venkatesan have recently proposed a polynomial time algorithm for recovering a “hidden” element α of a finite field \(\mathbb{F}_p \) of p elements from rather short strings of the most significant bits of the remainder modulo p of αt for several values of t selected uniformly at random from \(\mathbb{F}_p^* \) We use some recent bounds of exponential sums to generalize this algorithm to the case when t is selected from a quite small subgroup of \(\mathbb{F}_p^* \). Namely, our results apply to subgroups of size at least p ^1/3+ɛ for all primes p and to subgroups of size at least p ^ɛ for almost all primes p, for any fixed ɛ > 0. We also use this generalization to improve (and correct) one of the statements of the aforementioned work about the computational security of the most significant bits of the Diffie-Hellman key.

This is a preview of subscription content, log in via an institution.

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

D. Boneh and R. Venkatesan, Hardness of computing the most significant bits of secret keys in Diffie-Hellman and related schemes, Lect. Notes in Comp. Sci., Springer-Verlag, Berlin, 1109 (1996), 129–142.
Google Scholar
D. Boneh and R. Venkatesan, Rounding in lattices and its cryptographic applications, Proc. 8-rd Annual ACM-SIAM Symp. on Discr. Algorithms, ACM, NY, 1997, 675–681.
Google Scholar
A. E. Brouwer, R. Pellikan, and E. R. Verheul, Doing more with fewer bits, Lect. Notes in Comp. Sci., Springer-Verlag, Berlin, 1716 (1999), 321–332.
Google Scholar
M. I. Gonzalez Vasco and M. Näslund, A survey of hard core functions, Proceedings of the Workshop on Comp. Number Theory and Cryptography, Birkhauser, 2000.
Google Scholar
M. I. González Vasco and I. E. Shparlinski, Security of the most significant bits of the Shamir message passing scheme, Math. Comp., (to appear).
Google Scholar
R. Kannan, Algorithmic geometry of numbers, Annual Review of Comp. Sci., 2 (1987), 231–267.
Article Google Scholar
S. V. Konyagin and I. E. Shparlinski, Character sums with exponential functions and their applications, Cambridge Univ. Press, Cambridge, 1999.
Book MATH Google Scholar
N. M. Korobov, Exponential sums and their applications, Kluwer Acad. Publ., Dordrecht, 1992.
MATH Google Scholar
A. K. Lenstra, H. W. Lenstra and L. Lovász, Factoring polynomials with rational coefficients,Mathematische Annalen, 261 (1982), 515–534.
Article MathSciNet MATH Google Scholar
A. K. Lenstra and E. R. Verheul, The XTR public key system, Lect. Notes in Comp. Sci., Springer-Verlag Berlin, 1880 (2000), 1–19.
Google Scholar
A. J. Menezes, P. C. van Oorschot and S. A. Vanstone, Handbook of Applied Cryptography, CRC Press, Boca Raton, FL, 1996.
Book Google Scholar
D. Micciancio, On the hardness of the shortest vector problem, PhD Thesis, MIT, 1998.
Google Scholar
P. Nguyen and J. Stern, Lattice reduction in cryptology: An update,Lect. Notes in Comp. Sci., Springer-Verlag, Berlin, 1838 (2000), 85–112.
Google Scholar
H. Niederreiter, Quasi-Monte Carlo methods and pseudo-random numbers, Bull. Amer. Math. Soc., 84 (1978), 957–1041.
Article MathSciNet MATH Google Scholar
K. Prachar, Primzahlverteilung,Springer-Verlag, Berlin, 1957.
MATH Google Scholar
C. P. Schnorr, A hierarchy of polynomial time basis reduction algorithms, Theor. Comp. Sci., 53 (1987), 201–224.
Article MathSciNet MATH Google Scholar
I. E. Shparlinski, Security of polynomial transformations of the Diffie-Hellman key,Preprint, 2000.
Google Scholar
E. R. Verheul, Certificates of recoverability with scalable recovery agent security, Lect. Notes in Comp. Sci., Springer-Verlag, Berlin, 1751 (2000), 258–275.
Google Scholar
I. M. Vinogradov, Elements of number theory, Dover Publ., New York, 1954.
MATH Google Scholar

Download references

Author information

Authors and Affiliations

Department of Mathematics, University of Oviedo, Oviedo, 33007, Spain
Maria Isabel González Vasco
Department of Computing, Macquarie University, Sydney, NSW, 2109, Australia
Igor E. Shparlinski

Authors

Maria Isabel González Vasco
View author publications
You can also search for this author in PubMed Google Scholar
Igor E. Shparlinski
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Department of Computer Science, National University of Singapore, 2 Science Drive 2, 117543, Singapore
Kwok-Yan Lam
Department of Computing, Macquarie University, NSW, 2109, Australia
Igor Shparlinski
Department of Computer Science, University of Wollongong, NSW, 2522, Australia
Huaxiong Wang
Department of Mathematics, National University of Singapore, 2 Science Drive 2, 117543, Singapore
Chaoping Xing

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Vasco, M.I.G., Shparlinski, I.E. (2001). On the Security of Diffie-Hellman Bits. In: Lam, KY., Shparlinski, I., Wang, H., Xing, C. (eds) Cryptography and Computational Number Theory. Progress in Computer Science and Applied Logic, vol 20. Birkhäuser, Basel. https://doi.org/10.1007/978-3-0348-8295-8_19

Download citation

DOI: https://doi.org/10.1007/978-3-0348-8295-8_19
Publisher Name: Birkhäuser, Basel
Print ISBN: 978-3-0348-9507-1
Online ISBN: 978-3-0348-8295-8
eBook Packages: Springer Book Archive

Publish with us

Policies and ethics