Modified versions of ML-KEM based on Brazilian cryptographic resources
Resumo
This paper outlines the Module-Lattice-Based Key-Encapsulation Mechanism Standard (ML-KEM) based on Brazilian cryptography to safeguard sensitive information. In this sense, it details two Brazilian cryptographic al gorithms, Forró and Xote, and discusses the modifications in the ML-KEM to enable their use as symmetric primitives. Relying on experimental results re garding execution time, we show that ML-KEM with Xote surpasses ML-KEM with SHAKE or Forró while maintaining an equivalent level of security in tasks such as key pair generation, encapsulation, and decapsulation.
Referências
Albrecht, M. R. and Deo, A. (2017). Large modulus ring-LWE ≥ module-LWE. In Proc. Int. Conf. on the Theory and Application of Cryptology and Information Security, pages 267–296. Springer.
ANSSI (2022). Anssi views on the post-quantum cryptography transition. Technical report, ANSSI.
Avanzi, R., Bos, J. W., Ducas, L., Eike Kiltz, T. L., Lyubashevsky, V., Schanck, J. M., Schwabe, P., Seiler, G., and Stehlé, D. (2021). CRYSTALS-Kyber algorithm specifications and supporting documentation (version 3.0). Technical report, NIST, Gaithersburg, MD.
Barbosa, M. and Hülsing, A. (2023). The security of kyber’s fo-transform. IACR Cryptology ePrint Archive, 2023(755).
Bernstein, D. J. (2008). The salsa20 family of stream ciphers. In New stream cipher designs: the eSTREAM finalists, pages 84–97. Springer.
Bernstein, D. J. et al. (2008). Chacha, a variant of salsa20. In Workshop record of SASC, volume 8, pages 3–5.
BSI, C. M. (2020). Recommendations and key lengths. Technical report, BSI.
Costa, V. L. R. D., Camponogara, Â., López, J., and Ribeiro, M. V. (2022). The feasibility of the crystals-kyber scheme for smart metering systems. IEEE Access, 10:131303–131317.
Coutinho, M. (2021). Forró and xote cipher. [link].
Coutinho, M., Passos, I., Grados Vásquez, J. C., de Mendonça, F. L. L., de Sousa, R. T., and Borges, F. (2022). Latin dances reloaded: Improved cryptanalysis against salsa and chacha, and the proposal of forró. In Agrawal, S. and Lin, D., editors, Advances in Cryptology – ASIACRYPT 2022, pages 256–286, Cham. Springer Nature Switzerland.
Da Costa, V. L., Camponogara, Â., López, J., and Ribeiro, M. V. (2022). The feasibility of the crystals-kyber scheme for smart metering systems. IEEE Access, 10:131303–131317.
Dworkin, M. (2015). Sha-3 standard: Permutation-based hash and extendable-output functions.
Jati, A., Gupta, N., Chattopadhyay, A., and Sanadhya, S. K. (2024). A configurable crystals-kyber hardware implementation with side-channel protection. ACM Trans. Embed. Comput. Syst., 23(2).
Lagrota, V. and Azevedo, B. (2024). Ml-kem instantiated with forró and xote cipher. [link].
Langlois, A. and Stehlé, D. (2015). Worst-case to average-case reductions for module lattices. Designs, Codes and Cryptography, 75(3):565–599.
National Institute of Standards and Technology (2024). Module-lattice-based key encapsulation mechanism standard. Federal Information Processing Standards Publication (FIPS) NIST FIPS 203, Department of Commerce, Washington, D.C.
NCSC (2020). Preparing for quantum-safe cryptography. Technical report, NCSC.
Nguyen, D. T. and Gaj, K. (2021). Optimized software implementations of crystals-kyber, ntru, and saber using neon-based special instructions of armv8. In Proceedings of the NIST 3rd PQC Standardization Conference (NIST PQC 2021).
Pacheco, R., Braga, D., Passos, I., Araújo, T., Lagrota, V., and Coutinho, M. (2022). libharpia: a new cryptographic library for brazilian elections. In Anais do XXII Simpósio Brasileiro em Segurança da Informação e de Sistemas Computacionais, pages 250–263. SBC.
Shor, P. W. (1994). Algorithms for quantum computation: Discrete logarithms and factoring. In Proc. 35th Annual Symposium on Foundations of Computer Science, pages 124–134.
Wan, L., Zheng, F., Fan, G., Wei, R., Gao, L., Wang, Y., Lin, J., and Dong, J. (2022). A novel high-performance implementation of crystals-kyber with ai accelerator. In Atluri, V., Di Pietro, R., Jensen, C. D., and Meng, W., editors, Computer Security – ESORICS 2022, pages 514–534, Cham. Springer Nature Switzerland.
Xing, Y. and Li, S. (2021). A compact hardware implementation of cca-secure key exchange mechanism crystals-kyber on fpga. IACR Transactions on Cryptographic Hardware and Embedded Systems, pages 328–356.
ANSSI (2022). Anssi views on the post-quantum cryptography transition. Technical report, ANSSI.
Avanzi, R., Bos, J. W., Ducas, L., Eike Kiltz, T. L., Lyubashevsky, V., Schanck, J. M., Schwabe, P., Seiler, G., and Stehlé, D. (2021). CRYSTALS-Kyber algorithm specifications and supporting documentation (version 3.0). Technical report, NIST, Gaithersburg, MD.
Barbosa, M. and Hülsing, A. (2023). The security of kyber’s fo-transform. IACR Cryptology ePrint Archive, 2023(755).
Bernstein, D. J. (2008). The salsa20 family of stream ciphers. In New stream cipher designs: the eSTREAM finalists, pages 84–97. Springer.
Bernstein, D. J. et al. (2008). Chacha, a variant of salsa20. In Workshop record of SASC, volume 8, pages 3–5.
BSI, C. M. (2020). Recommendations and key lengths. Technical report, BSI.
Costa, V. L. R. D., Camponogara, Â., López, J., and Ribeiro, M. V. (2022). The feasibility of the crystals-kyber scheme for smart metering systems. IEEE Access, 10:131303–131317.
Coutinho, M. (2021). Forró and xote cipher. [link].
Coutinho, M., Passos, I., Grados Vásquez, J. C., de Mendonça, F. L. L., de Sousa, R. T., and Borges, F. (2022). Latin dances reloaded: Improved cryptanalysis against salsa and chacha, and the proposal of forró. In Agrawal, S. and Lin, D., editors, Advances in Cryptology – ASIACRYPT 2022, pages 256–286, Cham. Springer Nature Switzerland.
Da Costa, V. L., Camponogara, Â., López, J., and Ribeiro, M. V. (2022). The feasibility of the crystals-kyber scheme for smart metering systems. IEEE Access, 10:131303–131317.
Dworkin, M. (2015). Sha-3 standard: Permutation-based hash and extendable-output functions.
Jati, A., Gupta, N., Chattopadhyay, A., and Sanadhya, S. K. (2024). A configurable crystals-kyber hardware implementation with side-channel protection. ACM Trans. Embed. Comput. Syst., 23(2).
Lagrota, V. and Azevedo, B. (2024). Ml-kem instantiated with forró and xote cipher. [link].
Langlois, A. and Stehlé, D. (2015). Worst-case to average-case reductions for module lattices. Designs, Codes and Cryptography, 75(3):565–599.
National Institute of Standards and Technology (2024). Module-lattice-based key encapsulation mechanism standard. Federal Information Processing Standards Publication (FIPS) NIST FIPS 203, Department of Commerce, Washington, D.C.
NCSC (2020). Preparing for quantum-safe cryptography. Technical report, NCSC.
Nguyen, D. T. and Gaj, K. (2021). Optimized software implementations of crystals-kyber, ntru, and saber using neon-based special instructions of armv8. In Proceedings of the NIST 3rd PQC Standardization Conference (NIST PQC 2021).
Pacheco, R., Braga, D., Passos, I., Araújo, T., Lagrota, V., and Coutinho, M. (2022). libharpia: a new cryptographic library for brazilian elections. In Anais do XXII Simpósio Brasileiro em Segurança da Informação e de Sistemas Computacionais, pages 250–263. SBC.
Shor, P. W. (1994). Algorithms for quantum computation: Discrete logarithms and factoring. In Proc. 35th Annual Symposium on Foundations of Computer Science, pages 124–134.
Wan, L., Zheng, F., Fan, G., Wei, R., Gao, L., Wang, Y., Lin, J., and Dong, J. (2022). A novel high-performance implementation of crystals-kyber with ai accelerator. In Atluri, V., Di Pietro, R., Jensen, C. D., and Meng, W., editors, Computer Security – ESORICS 2022, pages 514–534, Cham. Springer Nature Switzerland.
Xing, Y. and Li, S. (2021). A compact hardware implementation of cca-secure key exchange mechanism crystals-kyber on fpga. IACR Transactions on Cryptographic Hardware and Embedded Systems, pages 328–356.
Publicado
16/09/2024
Como Citar
LAGROTA, Vinícius; AZEVEDO, Beatriz L.; FILOMENO, Mateus de L.; RIBEIRO, Moisés V..
Modified versions of ML-KEM based on Brazilian cryptographic resources. In: SIMPÓSIO BRASILEIRO DE SEGURANÇA DA INFORMAÇÃO E DE SISTEMAS COMPUTACIONAIS (SBSEG), 24. , 2024, São José dos Campos/SP.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2024
.
p. 461-476.
DOI: https://doi.org/10.5753/sbseg.2024.241449.
