Real World Crypto 2021 - Session 4: Invited Talk
RWC2021 · Real World Crypto
Luca De Feo (IBM Research Zurich) / Are Isogenies for Real? video
Various papers cited: ia.cr/2020/1188 ia.cr/2019/166 ia.cr/2020/638
Isogeny-based crypto is a leading contender for PQ-cryptography
SIKE is Isogeny-based and is in third round of NIST’s PQ competition
Crypto problems:
- key exchange is based on the hardness of path-finding through isogeny graphs (rather than say discrete logarithm problem on elliptic curve)
- hash functions are based on finding cycles in the graphs
Supersingular isogency key exchange for beginners: paper
The TLS post-quantum experiment run by Cloudflare and Google
Cloudflare’s blog
The new algorithms are very expensive to run - involving many 100s of elliptic curve operations - and can generate huge signatures. There’s concern that these will not be practical to run on mobile devices. Don’t expect these in the real world in the next 10 years…