REDOG parameter modification
55 views
Skip to first unread message
Jihoon Hong
Nov 5, 2024, 10:08:14 AM11/5/24
to KpqC-bulletin
Dear all,
We have reviewed the Pad Thai attack details you shared on September 20th and observed that this attack is particularly sensitive to the \( t_2 \) parameter. In response, we have adjusted the parameters to ensure that the security levels for 128, 192, and 256 bits are achieved. The updated parameters for each security level are as follows:
For parameters \( (n, k, \ell, q, m, r, \lambda, t_1, t_2) \):
- 128-bit security: (36, 6, 31, 2, 67, 15, 3, 6, 3) / Security level: 137.97
- 192-bit security: (47, 6, 43, 2, 89, 20, 3, 11, 3) / Security level: 192.71
- 256-bit security: (56, 10, 49, 2, 109, 24, 3, 11, 4) / Security level: 266.53
For further details, including key sizes for the newly proposed parameters, please refer to the attached PDF document.
Best regards,
Ji-Hoon Hong
We have reviewed the Pad Thai attack details you shared on September 20th and observed that this attack is particularly sensitive to the \( t_2 \) parameter. In response, we have adjusted the parameters to ensure that the security levels for 128, 192, and 256 bits are achieved. The updated parameters for each security level are as follows:
For parameters \( (n, k, \ell, q, m, r, \lambda, t_1, t_2) \):
- 128-bit security: (36, 6, 31, 2, 67, 15, 3, 6, 3) / Security level: 137.97
- 192-bit security: (47, 6, 43, 2, 89, 20, 3, 11, 3) / Security level: 192.71
- 256-bit security: (56, 10, 49, 2, 109, 24, 3, 11, 4) / Security level: 266.53
For further details, including key sizes for the newly proposed parameters, please refer to the attached PDF document.
Best regards,
Ji-Hoon Hong
Reply all
Reply to author
Forward
0 new messages