Paper 2023/886
Reductions from module lattices to free module lattices, and application to dequantizing module-LLL
Abstract
In this article, we give evidence that free modules (i.e., modules which admit a basis) are no weaker than arbitrary modules, when it comes to solving cryptographic algorithmic problems (and when the rank of the module is at least 2). More precisely, we show that for three algorithmic problems used in cryptography, namely the shortest vector problem, the Hermite shortest vector problem and a variant of the closest vector problem, there is a reduction from solving the problem in any module of rank $n ≥ 2$ to solving the problem in any free module of the same rank $n$. As an application, we show that this can be used to dequantize the LLL algorithm for module lattices presented by Lee et al. (Asiacrypt 2019).
Metadata
- Available format(s)
-
PDF
- Category
- Foundations
- Publication info
- Published by the IACR in CRYPTO 2023
- Keywords
- latticesmodule latticesshortest vector problem
- Contact author(s)
-
gdemicheli @ ucsd edu
daniele @ cs ucsd edu
alice pellet-mary @ math u-bordeaux fr
ndt141 @ uowmail edu au - History
- 2023-06-12: approved
- 2023-06-08: received
- See all versions
- Short URL
- https://ia.cr/2023/886
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2023/886,
author = {Gabrielle De Micheli and Daniele Micciancio and Alice Pellet-Mary and Nam Tran},
title = {Reductions from module lattices to free module lattices, and application to dequantizing module-{LLL}},
howpublished = {Cryptology {ePrint} Archive, Paper 2023/886},
year = {2023},
url = {https://eprint.iacr.org/2023/886}
}