Introduction to Isogeny-Based Cryptography

As quantum computers advance, traditional cryptographic methods like RSA and ECC face significant threats. Post-Quantum Cryptography (PQC) aims to develop new cryptographic algorithms resistant to quantum attacks. Isogeny-based cryptography is a promising candidate within PQC, offering unique properties and security guarantees.

What are Isogenies?

At its core, isogeny-based cryptography leverages mathematical objects called elliptic curves and the concept of isogenies between them. An isogeny is a special type of map between elliptic curves that preserves their group structure. Think of it as a structured way to transform one elliptic curve into another.

Isogenies are maps between elliptic curves that preserve their group structure.

Isogenies are functions that take points on one elliptic curve and map them to corresponding points on another, maintaining the underlying mathematical group operations. This transformation is crucial for cryptographic protocols.

Mathematically, an isogeny between two elliptic curves E1 and E2 over a field F is a non-constant rational map φ: E1 → E2 such that φ(0) = 0 (where 0 is the point at infinity) and for any points P, Q on E1, φ(P + Q) = φ(P) + φ(Q). This additive property is what allows isogenies to be used in cryptographic schemes that rely on group operations.

The Computational Problem: Finding Isogenies

The security of isogeny-based cryptography relies on the difficulty of a specific computational problem: given two elliptic curves that are related by an isogeny, it is computationally hard to find that isogeny. This is known as the Isogeny Problem.

What is the core computational problem that makes isogeny-based cryptography secure?

The difficulty of finding an isogeny between two related elliptic curves (the Isogeny Problem).

Key Schemes: SIKE and Supersingular Isogeny Cryptography

The most prominent example of an isogeny-based cryptosystem is SIKE (Supersingular Isogeny Key Encapsulation). SIKE is a candidate in the NIST PQC standardization process. It utilizes supersingular elliptic curves and their isogenies to construct a key encapsulation mechanism.

SIKE's key exchange works by Alice and Bob choosing random isogenies between supersingular elliptic curves. Alice generates a secret isogeny 'a' and computes a public key by applying 'a' to a base curve. Bob does the same with his secret isogeny 'b'. They then exchange public keys and apply their own secret isogeny to the other's public key. Due to the properties of isogenies, both will arrive at the same shared secret key. The security relies on the difficulty of determining Alice's secret isogeny 'a' from her public key, or Bob's secret isogeny 'b' from his public key, which is the Isogeny Problem.

📚

Text-based content

Library pages focus on text content

Advantages and Disadvantages

Feature	Isogeny-Based Cryptography	Comparison (e.g., ECC)
Quantum Resistance	Believed to be resistant to quantum computer attacks.	Vulnerable to Shor's algorithm.
Key Size	Relatively small public keys and ciphertexts.	Generally smaller than lattice-based, comparable to or slightly larger than ECC.
Performance	Can be computationally intensive, especially for key generation and signing.	Generally faster for key generation and signing.
Maturity	A newer field with ongoing research and standardization.	Well-established and widely deployed.

The primary advantage of isogeny-based cryptography is its strong theoretical foundation for quantum resistance, making it a vital area of research for future-proofing our digital security.

Future Outlook

While isogeny-based cryptography shows great promise, it is still an active area of research. Challenges include optimizing performance and ensuring the security of specific constructions against all known classical and quantum attacks. As the field matures, it is expected to play a significant role in the post-quantum cryptographic landscape.

Learning Resources

NIST Post-Quantum Cryptography Standardization(documentation)

The official NIST page detailing the post-quantum cryptography standardization process, including information on candidate algorithms like SIKE.

Supersingular Isogeny Cryptography (SIKE) Explained(paper)

A foundational paper introducing the SIKE protocol, explaining its mathematical underpinnings and security properties.

An Introduction to Isogeny-Based Cryptography(video)

A video lecture providing an accessible introduction to the concepts of elliptic curves and isogenies in cryptography.

Isogeny-Based Cryptography: A Survey(paper)

A comprehensive survey paper covering the history, mathematical foundations, and various schemes within isogeny-based cryptography.

The Mathematics of Isogeny-Based Cryptography(wikipedia)

A Stack Exchange discussion providing mathematical context and definitions for isogenies on elliptic curves.

Post-Quantum Cryptography: Isogeny-Based Cryptography(blog)

A blog post offering a clear explanation of isogeny-based cryptography and its role in the post-quantum era.

SIKE: Supersingular Isogeny Key Encapsulation(documentation)

The official website for the SIKE project, offering technical details, implementations, and updates.

Elliptic Curve Cryptography (ECC) Basics(video)

A video explaining the fundamentals of Elliptic Curve Cryptography, which is a precursor to understanding isogeny-based methods.

Isogeny-Based Cryptography: A Gentle Introduction(video)

Another video tutorial that aims to provide a more intuitive understanding of isogeny-based cryptography.

Introduction to Post-Quantum Cryptography(blog)

A high-level overview of post-quantum cryptography, placing isogeny-based methods within the broader context of quantum-resistant algorithms.