Optimization of non-spherical discrete Gaussian sampling based on NTRU lattice
With the rapid development of quantum computers,post-quantum cryptography has become a research hotspot.Lattice cryptography has become the mainstream in post-quantum cryptography due to its balanced performance,solid security foundation,and rich functions.Pre-image sampling is the core algorithm in lattice cryptography and is widely used in the construction of many advanced cryptog-raphy schemes.Hash-and-Sign digital signature on lattice is its simplest and most direct application.Technically,pre-image sampling algorithms are divided into GPV and Peikert.The former is charac-terized by high output quality,but the algorithm can usually only be executed serially;the latter sup-ports parallel operations,but the output quality is poor.This article applies non-spherical Gaussian technology to the Peikert sampling algorithm on the NTRU lattice,aiming to improve its efficiency.Specifically,two parameter modes were selected.Compared with the Peikert sampling algorithm on the original NTRU lattice,mode 1 can improve the security strength of digital signatures based on this sampling algorithm and reduce the size of the signature;mode 2 does not reduce security.Under the premise,the signature size can be further reduced.Experimental results show that in mode 1,the se-curity is improved by about 18%~20%and the signature size is reduced by about 15%;in mode 2,the security remains unchanged,but the signature size is reduced by about 30%~35%.
NETL
NSTL
万方数据
