| Article ID | Journal | Published Year | Pages | File Type |
|---|---|---|---|---|
| 420887 | Discrete Applied Mathematics | 2006 | 10 Pages |
Abstract
We present a chosen plaintext attack on the NTRU encryption system. We assume that the attacker can detect wrap errors, that the blinding polynomial is generated from three parts (as specified in the standards) and that the attacker has a large database of carefully selected plaintexts. The attack is based on the fact that wrap errors occur more frequently if blinding polynomials with larger coefficients are used.
Keywords
Related Topics
Physical Sciences and Engineering
Computer Science
Computational Theory and Mathematics
Authors
Tommi Meskanen, Ari Renvall,