On Ring Learning with Errors over the Tensor Product of Number Fields
نویسندگان
چکیده
The “Ring Learning with Errors” (RLWE) problem was formulated as a variant of the “Learning with Errors” (LWE) problem, with the purpose of taking advantage of an additional algebraic structure in the underlying considered lattices; this enables improvements on the efficiency and cipher expansion on those cryptographic applications which were previously based on the LWE problem. In Eurocrypt 2010, Lyubashevsky et al. introduced this hardness problem and showed its relation to some known hardness problems over lattices with a special structure. In this work, we generalize the results and the hardness problems presented by Lyubashevsky et al. to the more general case of multivariate rings, highlighting the main differences with respect to the security proof for the RLWE counterpart. We denote this hardness problem as “Multivariate Ring Learning with Errors” (m-RLWE or multivariate RLWE) and we show its relation to hardness problems over the tensor product of ideal lattices. Additionally, the m-RLWE problem is more adequate than its univariate version for cryptographic applications dealing with multidimensional structures.
منابع مشابه
A New Ring-Based SPHF and PAKE Protocol On Ideal Lattices
emph{ Smooth Projective Hash Functions } ( SPHFs ) as a specific pattern of zero knowledge proof system are fundamental tools to build many efficient cryptographic schemes and protocols. As an application of SPHFs, emph { Password - Based Authenticated Key Exchange } ( PAKE ) protocol is well-studied area in the last few years. In 2009, Katz and Vaikuntanathan described the first lattice-based ...
متن کاملOn Tensor Product of Graphs, Girth and Triangles
The purpose of this paper is to obtain a necessary and sufficient condition for the tensor product of two or more graphs to be connected, bipartite or eulerian. Also, we present a characterization of the duplicate graph $G 1 K_2$ to be unicyclic. Finally, the girth and the formula for computing the number of triangles in the tensor product of graphs are worked out.
متن کاملBessel multipliers on the tensor product of Hilbert $C^ast-$ modules
In this paper, we first show that the tensor product of a finite number of standard g-frames (resp. fusion frames, frames) is a standard g-frame (resp. fusion frame, frame) for the tensor product of Hilbert $C^ast-$ modules and vice versa, then we consider tensor products of g-Bessel multipliers, Bessel multipliers and Bessel fusion multipliers in Hilbert $C^ast-$modules. Moreover, we obtain so...
متن کاملAdjunctions between Hom and Tensor as endofunctors of (bi-) module category of comodule algebras over a quasi-Hopf algebra.
For a Hopf algebra H over a commutative ring k and a left H-module V, the tensor endofunctors V k - and - kV are left adjoint to some kinds of Hom-endofunctors of _HM. The units and counits of these adjunctions are formally trivial as in the classical case.The category of (bi-) modules over a quasi-Hopf algebra is monoidal and some generalized versions of Hom-tensor relations have been st...
متن کاملA tensor product approach to the abstract partial fourier transforms over semi-direct product groups
In this article, by using a partial on locally compact semi-direct product groups, we present a compatible extension of the Fourier transform. As a consequence, we extend the fundamental theorems of Abelian Fourier transform to non-Abelian case.
متن کامل