电子与信息学报
電子與信息學報
전자여신식학보
JOURNAL OF ELECTRONICS & INFORMATION TECHNOLOGY
2013年
12期
2999-3004
,共6页
光焱%祝跃飞%顾纯祥%郑永辉%汤全有
光焱%祝躍飛%顧純祥%鄭永輝%湯全有
광염%축약비%고순상%정영휘%탕전유
全同态加密%密钥恢复攻击%容错学习(LWE)问题%二分逼近%线性同余方程组
全同態加密%密鑰恢複攻擊%容錯學習(LWE)問題%二分逼近%線性同餘方程組
전동태가밀%밀약회복공격%용착학습(LWE)문제%이분핍근%선성동여방정조
Fully Homomorphic Encryption (FHE)%Key recovery attack%Learning With Errors (LWE) issues%Dichotomy approximation%Linear congruent equations
全同态加密能够实现密文域上的各种运算,在云计算环境下具有重要的应用价值。然而,现有全同态加密体制在非适应性选择密文攻击下的安全性仍然是一个有待研究的问题。该文通过对基于容错学习(LWE)问题构造的全同态加密体制结构进行分析,指出其中存在的一个安全隐患,使其在遭受此类攻击时存在私钥泄露的风险。据此提出一种密钥恢复攻击方法,能够在拥有解密喻示的条件下,利用密文域二分逼近和求解线性同余方程组相结合的手段,对此类密码体制的私钥实施有效还原。
全同態加密能夠實現密文域上的各種運算,在雲計算環境下具有重要的應用價值。然而,現有全同態加密體製在非適應性選擇密文攻擊下的安全性仍然是一箇有待研究的問題。該文通過對基于容錯學習(LWE)問題構造的全同態加密體製結構進行分析,指齣其中存在的一箇安全隱患,使其在遭受此類攻擊時存在私鑰洩露的風險。據此提齣一種密鑰恢複攻擊方法,能夠在擁有解密喻示的條件下,利用密文域二分逼近和求解線性同餘方程組相結閤的手段,對此類密碼體製的私鑰實施有效還原。
전동태가밀능구실현밀문역상적각충운산,재운계산배경하구유중요적응용개치。연이,현유전동태가밀체제재비괄응성선택밀문공격하적안전성잉연시일개유대연구적문제。해문통과대기우용착학습(LWE)문제구조적전동태가밀체제결구진행분석,지출기중존재적일개안전은환,사기재조수차류공격시존재사약설로적풍험。거차제출일충밀약회복공격방법,능구재옹유해밀유시적조건하,이용밀문역이분핍근화구해선성동여방정조상결합적수단,대차류밀마체제적사약실시유효환원。
Fully Homomorphic Encryption (FHE) makes it possible to perform all sorts of calculation in cipher domain, and own great value in cloud computing. However, the security of existing FHE schemes under the non-adaptive chosen-ciphertext attacks remains an issue to be studied. In this paper the construction of the Learning With Errors-based FHE scheme is analyzed, and it is pointed out that this cryptosystem has a potential security flaw, which creates the risk of private key leakage when confronting non-adaptive chosen cipher attacks. According to this, a key recovery attack is proposed, which is capable of recovering the private keys of such cryptosystem with the help of decryption oracle, through blending the dichotomy approximation in cipher domain and the solution of linear congruent equations.
