Program

Sunday 29th

Opening (09:20 - 09:30)

Jean-Christophe Deneuville

Session 1 -- Works on NIST CBC finalist Classic McEliece (09:30 - 10:45)

Key-Recovery Fault Injection Attack on Classic McEliece KEM

Sabine Pircher, Johannes Geier, Daniel Mueller-Gritschneder and Antonia Wachter-Zeh

A case study in verification techniques applied to the Classic McEliece Reference Implementation

Wrenna Robson, Martin Brain and Carlos Cid

Towards Accelerating Classic McEliece with PUF-Based Key Storage [remote talk]

Brian Jarvis and Kris Gaj

Break (10:45 - 11:15)

Session 2 -- Works on NIST CBC candidates (11:15 - 12:30)

A Power Side-Channel Attack on the Reed-Muller Reed-Solomon Version of the HQC Cryptosystem

Thomas Schamberger, Lukas Holzbaur, Julian Renner, Antonia Wachter-Zeh and Georg Sigl

Automating Cryptographic Hardware Implementations in the case of HQC [remote talk]

Carlos Aguilar-Melchor, Arnaud Dion, Jean-Christophe Deneuville, Vincent Migliore, Romain Malmain, Kashif Nawaz and Mamuri Nawan

On the Decoding Failure Rate of BIKE

Sarah Arpin, Tyler Billingsley, Daniel Hast, Jun Bo Lau and Angela Robinson

Lunch break (12:30 - 14:15)

Invited Talk (14:15 - 15:15)

Andre Esser: Evaluating the security of code-based systems

The fourth round of the NIST standardization process requires agreement on secure parameters to be standardized. The central question is, how to choose these parameters to achieve necessary security guarantees under the best possible performance? There is an established methodology for parameter selection for pre-quantum primitives, which combines theoretical and practical results. In this talk, we outline this selection process using RSA as an example and determine how well code-based research has been able to adapt to it over the years. Eventually, we answer how far we are from a confident section of parameters for code-based NIST candidates and what remains to be done.

Break (15:15 - 15:45)

Session 3 -- Other works on McEliece (15:45 - 16:35)

Security Considerations for McEliece-like Cryptosystems Based on Linearized Reed-Solomon Codes in the Sum-Rank Metric

Felicitas Hörmann, Hannes Bartz and Anna-Lena Horlemann

Cryptanalysis of some McEliece Variants based on Monomial Codes [remote talk]

Vlad Dragoi and Andreea Szocs

Sunday evening party (from 18:00)

The FHE.org Conference organizers kindly invite attendees of all Eurocrypt affiliated events to join their after party, at the Clarion Hotel, Trondheim, from 6.00pm, in the Space Hall. We warmly thank them for this invitation!

Monday 30th

Session 4 -- Decoding I (09:30 - 10:45)

Generic Decoding of Interleaved Codes [remote talk]

Lukas Holzbaur, Hedongliang Liu, Anmoal Porwal, Julian Renner, Antonia Wachter-Zeh and Violetta Weger

On Decoding High-Order Interleaved Sum-Rank- and Skew-Metric Codes

Thomas Jerkovits, Felicitas Hörmann and Hannes Bartz

Decoding multivariate Goppa codes [remote talk]

Hiram H. López and Gretchen L. Matthews

Break (10:45 - 11:15)

Session 5 -- Key Exchange / KEM (11:15 - 12:05)

A Note on Non-Interactive Key Exchange from Code Equivalence

Lindsey Knowles, Edoardo Persichetti, Tovohery Randrianarisoa and Paolo Santini

Software Implementation of a Code-Based Key Encapsulation Mechanism from Binary QD Generalized Srivastava Code [remote talk]

Boly Seck, Cheikh Thiécoumba Gueye, Ousmane Ndiaye, Pierre-Louis Cayrel, Gilbert Nollane Dione and Jean Belo Klamti

Lunch break (12:05 - 13:50)

Session 6 -- Hard Problems (13:50 - 14:40)

A Coding Theory Approach to the Solution of the Permuted Kernel Problem [remote talk]

Paolo Santini, Marco Baldi and Franco Chiaraluce

Cryptography using Matrix Code Equivalence

Krijn Reijnders, Simona Samardjiska and Monika Trimoska

Break (14:40 - 15:10)

Session 7 -- Complexity & Security (15:10 - 16:00)

Using Linear Complexity to build Code-based Signature Schemes [remote talk]

Edoardo Persichetti and Tovohery Randrianarisoa

On the security of some cryptosytems based on subfield images of codes [remote talk]

Kirill Vedenev and Yury Kosolapov

Session 8 -- Decoding II (16:00 - 16:50)

Information Set Decoding for Lee-Metric Codes using Restricted Spheres

Jessica Bariffi, Karan Khathuria and Violetta Weger

Integer Syndrome Decoding Problem in the Presence of Noise [remote talk]

Pierre-Louis Cayrel, Brice Colombier, Vlad Dragoi and Vincent Grosso

Program

Sunday 29th

Opening (09:20 - 09:30)

Session 1 -- Works on NIST CBC finalist Classic McEliece (09:30 - 10:45)

Key-Recovery Fault Injection Attack on Classic McEliece KEM

A case study in verification techniques applied to the Classic McEliece Reference Implementation

Towards Accelerating Classic McEliece with PUF-Based Key Storage [remote talk]

Break (10:45 - 11:15)

Session 2 -- Works on NIST CBC candidates (11:15 - 12:30)

A Power Side-Channel Attack on the Reed-Muller Reed-Solomon Version of the HQC Cryptosystem

Automating Cryptographic Hardware Implementations in the case of HQC [remote talk]

On the Decoding Failure Rate of BIKE

Lunch break (12:30 - 14:15)

Invited Talk (14:15 - 15:15)

Andre Esser: Evaluating the security of code-based systems

Break (15:15 - 15:45)

Session 3 -- Other works on McEliece (15:45 - 16:35)

Security Considerations for McEliece-like Cryptosystems Based on Linearized Reed-Solomon Codes in the Sum-Rank Metric

Cryptanalysis of some McEliece Variants based on Monomial Codes [remote talk]

Sunday evening party (from 18:00)

The FHE.org Conference organizers kindly invite attendees of all Eurocrypt affiliated events to join their after party, at the Clarion Hotel, Trondheim, from 6.00pm, in the Space Hall. We warmly thank them for this invitation!

Monday 30th

Session 4 -- Decoding I (09:30 - 10:45)

Generic Decoding of Interleaved Codes [remote talk]

On Decoding High-Order Interleaved Sum-Rank- and Skew-Metric Codes

Decoding multivariate Goppa codes [remote talk]

Break (10:45 - 11:15)

Session 5 -- Key Exchange / KEM (11:15 - 12:05)

A Note on Non-Interactive Key Exchange from Code Equivalence

Software Implementation of a Code-Based Key Encapsulation Mechanism from Binary QD Generalized Srivastava Code [remote talk]

Lunch break (12:05 - 13:50)

Session 6 -- Hard Problems (13:50 - 14:40)

A Coding Theory Approach to the Solution of the Permuted Kernel Problem [remote talk]

Cryptography using Matrix Code Equivalence

Break (14:40 - 15:10)

Session 7 -- Complexity & Security (15:10 - 16:00)

Using Linear Complexity to build Code-based Signature Schemes [remote talk]

On the security of some cryptosytems based on subfield images of codes [remote talk]

Session 8 -- Decoding II (16:00 - 16:50)

Information Set Decoding for Lee-Metric Codes using Restricted Spheres

Integer Syndrome Decoding Problem in the Presence of Noise [remote talk]

Closing remarks (16:50 - 17:00)