Skip to main content
Conference Proceedings

Dimension of the linearization equations of the Matsumoto-Imai cryptosystems

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2006) 3969 LNCS 242-251
DOI: 10.1007/11779360_20
6Citations
Citations of this article
2Readers
Mendeley users who have this article in their library.
Get full text

Abstract

The Matsumoto-Imai (MI) cryptosystem was the first multivariate public key cryptosystem proposed for practical use. Though MI is now considered insecure due to Patarin's linearization attack, the core idea of MI has been used to construct many variants such as Sflash, which has recently been accepted for use in the New European Schemes for Signatures, Integrity, and Encryption project. Linearization attacks take advantage of the algebraic structure of MI to produce a set of equations that can be used to recover the plaintext from a given ciphertext. In our paper, we present a solution to the problem of finding the dimension of the space of linearization equations, a measure of how much work the attack will require. © Springer-Verlag Berlin Heidelberg 2006.

Cite

CITATION STYLE

APA

Diene, A., Ding, J., Gower, J. E., Hodges, T. J., & Yin, Z. (2006). Dimension of the linearization equations of the Matsumoto-Imai cryptosystems. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 3969 LNCS, pp. 242–251). Springer Verlag. https://doi.org/10.1007/11779360_20

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free