Modeling Bit Flipping Decoding Based on Nonorthogonal Check Sums With Application to Iterative Decoding Attack of McEliece Cryptosystem

Author

Fossorier, Marc P C ; Kobara, Kazukuni ; Imai, Hideki

Author_Institution

Dept. of Electr. Eng., Hawaii Univ., Honolulu, HI

Volume

53

Issue

1

fYear

2007

Firstpage

402

Lastpage

411

Abstract

In this correspondence, iteration-1 of bit flipping decoding based on a set of nonorthogonal check sums is analyzed for both regular and irregular models. In particular, the tradeoff between the Hamming weight (and overlapping) of the check sums and the number of redundant check sums required to start converging under iterative decoding is investigated. The model is then applied to an iterative attack of McEliece public-key cryptosystem since a successful attack of this system can be achieved by algebraic bounded distance decoding of a random code. Based on this model, the attack can be decomposed into two phases: a preprocessing phase which, for one particular key kappa, consists of finding a sufficiently large set S of check sums up to a certain Hamming weight, and a bit flipping decoding phase which uses the set S for each message encrypted with the key kappa

Keywords

Hamming codes; algebraic codes; iterative decoding; public key cryptography; random codes; Hamming weight; McEliece public-key cryptosystem; algebraic bounded distance decoding; bit flipping decoding; iterative decoding attack; nonorthogonal check sums; preprocessing phase; random code; Algorithm design and analysis; Binary decision diagrams; Bipartite graph; Block codes; Hamming weight; Information security; Information theory; Iterative algorithms; Iterative decoding; Public key cryptography; Bit-flipping decoding; McEliece cryptosystem; iterative decoding; linear block codes; public key cryptography;

fLanguage

English

Journal_Title

Information Theory, IEEE Transactions on

Publisher

ieee

ISSN

0018-9448

Type

jour

DOI

10.1109/TIT.2006.887515

Filename

4039662