Efficiency of SIDH-based signatures (yes, SIDH)

Ghantous Wissam; Pintore Federico; Veroni Mattia

doi:10.1515/jmc-2023-0023

Journal of Mathematical Cryptology (Mar 2024)

Efficiency of SIDH-based signatures (yes, SIDH)

Ghantous Wissam,
Pintore Federico,
Veroni Mattia

Affiliations

Ghantous Wissam: Mathematical Institute, University of Oxford, Oxford OX1 2JD, UK
Pintore Federico: Department of Mathematics, University of Bari, 70121 Bari BA, Italy
Veroni Mattia: NTNU – Norwegian University of Science and Technology, Trondheim, Norway

DOI: https://doi.org/10.1515/jmc-2023-0023
Journal volume & issue: Vol. 18, no. 1
pp. p. 64 – 93

Abstract

Read online

In this note, we assess the efficiency of a supersingular isogeny Diffie-Hellman (SIDH)-based digital signature built on a weaker variant of a recent identification protocol proposed by Basso et al. Despite the devastating attacks against (the mathematical problem underlying) SIDH, this identification protocol remains secure, as its security is backed by a different (and more standard) isogeny-finding problem. We conduct our analysis by applying some known cryptographic techniques to decrease the signature size by about 70% for all parameter sets (obtaining signatures of approximately 21 kB for SIKEp434{\mathsf{SIKE}}{\mathsf{p}}434). Moreover, we propose a minor optimisation to compute many isogenies in parallel from the same starting curve. Our assessment confirms that determining the most efficient methods for isogeny-based signature schemes, including optimisations such as those presented in this paper, is still a open problem, with much more work to be done.

Published in Journal of Mathematical Cryptology

ISSN: 1862-2976 (Print); 1862-2984 (Online)
Publisher: De Gruyter
Country of publisher: Poland
LCC subjects: Science: Mathematics
Website: https://www.degruyter.com/view/journals/jmc/jmc-overview.xml

About the journal

Abstract

Keywords