报告名称：Lattice Klepto Revisited

主办单位：英国立博官网中文版

报告专家：潘彦斌

专家所在单位：中科院数学与系统科学研究院

报告时间：2020年6月19日15:00

报告地点：腾讯会议（会议ID：128 710 720）

专家简介：潘彦斌，于2005年南京大学数学系本科毕业后进入中国科学院数学与系统科学研究院学习密码学，2010年博士毕业后进入中科院数学与系统科学研究院工作，现任副研究员。研究兴趣主要包括格算法与格密码的安全性分析，计算数论等。

报告摘要：Kleptography was introduced by Young and Yung which is about using an embedded backdoor to perform attacks on a cryptosystems. At SAC'17, Kwant et al. proposed a kleptographic backdoor on NTRU encryption scheme and claimed that the backdoor can not be detected. However, in this paper we show that the user can detect the backdoor very efficiently and hence the problem of constructing a kleptographic backdoor on NTRU stays open. Moreover, we also design a universal method to embed a kleptographic backdoor for RLWE-based scheme, such as NewHope. Our construction is shown to be strongly undetectable, which reveals the threats of an algorithm substitution attacks on lattice-based schemes.

邀请人：陈媛