CRYSTALS-DILITHIUM

From PQC WIKI

Information

Authors

  • Roberto Avanzi, ARM Limited (DE)
  • Joppe Bos, NXP Semiconductors (BE)
  • Léo Ducas, CWI Amsterdam (NL)
  • Eike Kiltz, Ruhr University Bochum (DE)
  • Tancrède Lepoint, SRI International (US)
  • Vadim Lyubashevsky, IBM Research Zurich (CH)
  • John M. Schanck, University of Waterloo (CA)
  • Peter Schwabe, Radboud University (NL)
  • Gregor Seiler, IBM Research Zurich (CH)
  • Damien Stehle, ENS Lyon (FR)


Official Links

Related Articles

Exploiting Determinism in Lattice-based Signatures
Prasanna Ravi and Mahabir Prasad Jhanwar and James Howe and Anupam Chattopadhyay and Shivam Bhasin.
Asia CCS ’19.

On Security of Fiat-Shamir Signatures over Lattice in the Presence of Randomness Leakage
Yuejun Liu and Yongbin Zhou and Shuo Sun and Tianyu Wang and Rui Zhang.
Cryptology ePrint Archive, Report 2019/715, 2019.

Improving Speed of Dilithium’s Signing Procedure
Prasanna Ravi and Sourav Sen Gupta and Anupam Chattopadhyay and Shivam Bhasin.
Cryptology ePrint Archive, Report 2019/420, 2019.

Masking Dilithium: Efficient Implementation and Side-Channel Evaluation
Vincent Migliore and Benoı̂t Gérard and Mehdi Tibouchi and Pierre-Alain Fouque.
Cryptology ePrint Archive, Report 2019/394, 2019.

Side-channel Assisted Existential Forgery Attack on Dilithium - A NIST PQC candidate
Prasanna Ravi, Mahabir Prasad Jhanwar, James Howe, Anupam Chattopadhyay and Shivam Bhasin.
Cryptology ePrint Archive, Report 2018/821, 15 Sep 2018.

Number "Not Used" Once - Practical fault attack on pqm4 implementations of NIST candidates
Prasanna Ravi and Debapriya Basu Roy and Shivam Bhasin and Anupam Chattopadhyay and Debdeep Mukhopadhyay.
Cryptology ePrint Archive: Report 2018/211, 12 Mar 2019.

CRYSTALS -- Dilithium: Digital Signatures from Module Lattices
Leo Ducas and Tancrede Lepoint and Vadim Lyubashevsky and Peter Schwabe and Gregor Seiler and Damien Stehle.
Cryptology ePrint Archive: Report 2017/633, 10 Sep 2018.


Summary Table

CRYSTALS-DILITHIUM - ROUND 1,2

Description lattice

LWE on Module Lattices

Assumption MLWE, MSIS
Functionality Signature
Public Key

(bytes)

  • level 1: 1184
  • level 2: 1472
  • level 3: 1760
Secret Key

(bytes)

  • level 1: 2800
  • level 2: 3504
  • level 3: 3856
CIPH/SIG

(bytes)

  • level 1: 2044
  • level 2: 2701
  • level 3: 3366
Security

Type

SUF-CMA