Information-Set Decoding for Linear Codes over Fq
نویسنده
چکیده
A code-based cryptosystem is considered secure if the best known attack against it is information-set decoding. Stern’s algorithm and its improvements are well optimized and the complexity is reasonably well understood. However, these algorithms only handle codes over F2. This paper presents a generalization of Stern’s information-set-decoding algorithm for decoding linear codes over arbitrary finite fields Fq and analyzes the complexity. This result makes it possible to compute the security of recently proposed code-based systems over non-binary fields. As an illustration, ranges of parameters for generalized McEliece cryptosystems using classical Goppa codes over F31 are suggested for which the new information-set-decoding algorithm needs 2 bit operations.
منابع مشابه
May-Ozerov Algorithm for Nearest-Neighbor Problem over 𝔽q and Its Application to Information Set Decoding
May and Ozerov proposed an algorithm for the nearest-neighbor problem of vectors over the binary field at EUROCRYPT 2015. They applied their algorithm to the decoding problem of random linear codes over the binary field and confirmed the performance improvement. We describe their algorithm generalized to work for vectors over the finite field Fq with arbitrary prime power q. We also apply the g...
متن کاملOn lower bounds for Information Set Decoding over Fq
Code-based cryptosystems are promising candidates for post-quantum cryptography. The increasing number of cryptographic schemes that are based on codes over fields different from F2 requires an analysis of their security. Information Set Decoding (ISD) is one of the most important generic attacks against code-based cryptosystems. We give lower bounds for ISD over Fq, thereby anticipating future...
متن کاملOptimal Rate List Decoding via Derivative Codes
The classical family of [n, k]q Reed-Solomon codes over a field Fq consist of the evaluations of polynomials f ∈ Fq[X ] of degree< k at n distinct field elements. In this work, we consider a closely related family of codes, called (orderm) derivative codes and defined over fields of large characteristic, which consist of the evaluations of f as well as its first m− 1 formal derivatives at n dis...
متن کاملForms and Linear Network Codes
We present a general theory to obtain linear network codes utilizing forms and obtain explicit families of equidimensional vector spaces, in which any pair of distinct vector spaces intersect in the same small dimension. The theory is inspired by the methods of the author utilizing the osculating spaces of Veronese varieties. Linear network coding transmits information in terms of a basis of a ...
متن کاملEnee 739c: Advanced Topics in Signal Processing: Coding Theory Instructor: Alexander Barg
In lectures 3-6 we looked at decoding of codes from a probabilistic perspective, ignoring the constructive aspect of our systems. Here we wish to change the point of view and study issues related to implementation complexity of decoding of linear codes. We will start with a technical topic of independent interest: properties of random matrices over Fq. The main use of these results will be in a...
متن کامل