Random subgroups and analysis of the length-based and quotient attacks

DOI10.1515/JMC.2008.003MaRDI QIDQ3516765zbMATH OpenOpenAlexFDO

Authors Alexander Ushakov, Alexei Myasnikov

Publication date 11 August 2008

Published in Journal of Mathematical Cryptology (Search for Journal in Brave)

Full work available at URL https://arxiv.org/abs/0707.1501

length-based attack braid group cryptography commutator key-exchange quotient attack random subgroup of a braid group

Symbolic computation and algebraic computation (68W30) Cryptography (94A60) Braid groups; Artin groups (20F36) Asymptotic properties of groups (20F69) Probabilistic methods in group theory (20P05)

Abstract: In this paper we discuss generic properties of "random subgroups" of a given group G. It turns out that in many groups G (even in most exotic of them) the random subgroups have a simple algebraic structure and they "sit" inside G in a very particular way. This gives a strong mathematical foundation for cryptanalysis of several group-based cryptosystems and indicates on how to chose "strong keys". To illustrate our technique we analyze the Anshel-Anshel-Goldfeld (AAG) cryptosystem and give a mathematical explanation of recent success of some heuristic length-based attacks on it. Furthermore, we design and analyze a new type of attacks, which we term the quotient attacks. Mathematical methods we develop here also indicate how one can try to choose "parameters" in AAG to foil the attacks.

Recommendations

Cited in

(17)

This page was built for publication: Random subgroups and analysis of the length-based and quotient attacks

Report a bug (only for logged in users!)Click here to report a bug for this page (MaRDI item Q3516765)