Crypto 2023 Best Paper Plenary - Fast Lattice Reduction and Adaptive Schnorr Signatures
Offered By: TheIACR via YouTube
Course Description
Overview
Syllabus
Intro
The "Two Faces" of lattice reduction [NS01]
Lattice reduction is a cryptanalytic bottleneck
Example: Gentry-Halevi FHE [GH11]
LLL reduction finds a good basis
Fast lattice reduction strategies
Towards faster lattice reduction [KEF21]
Lattice basis compression [SMSV14]
Lattice reduction with iterated compression
Is our algorithm numerically stable?
Is our algorithm fast?
Implementation - flatter
Experiment: q-ary lattices
Experiment: Gentry-Halevi FHE [GH11]
Experiment: RSA partial factorization [How01]
Further applications
Why Schnorr signatures?
What are threshold signatures?
Why multi-party Schnorr signatures? Why
Main Goals
2-Round Threshold Scheme
Concurrent Security: ROS Attacks NKDMOS
Recent Schnorr Threshold Signatures
Concurrent Adaptive Security
Adaptive Security is Challenging
Sparkle
Adaptive Security under (A)OMDL
Key Takeaways
Taught by
TheIACR
Related Courses
LadderLeakTheIACR via YouTube On Instantiating the Algebraic Group Model from Falsifiable Assumptions
TheIACR via YouTube Blind Schnorr Signatures and Signed ElGamal Encryption in the Algebraic Group Model
TheIACR via YouTube Cryptography in Distributed Systems
RSA Conference via YouTube Keeping Authorities "Honest or Bust" with Decentralized Witness Cosigning
IEEE via YouTube