Join Log in
Score:3
Tarick Welling avatar Crypto

Why was A doubled in size

nl flag
Tarick Welling

Why was the dimension of A doubled in kyber?

LWE encryption uses a public matrix A of dimension K but kyber uses a double matrix A resulting in $A ^{ k * k * n }$

When deriving the results of the definition of gen, enc en dec this results in:

$$ RA_0 S + RA_1 S + RE + E_3 + \frac{q}{2}m - RA_0 S + RA_1 S + ES \\ $$

Which reduces into: $$ RE + E_3 + \frac{q}{2}m - ES $$

Which is equivalent to the $A^k$ scheme. Why was the size of A increased by $k$?

51
0 + 3
in flag
yoyo
For some module dimension $k$ (a security parameter), $A\in R_q^{k\times k}$, a $k\times k$ matrix with entries in $R_q=\mathbb{Z}[x]/(q,x^{256}+1)$ with $q=3329$. In the specification, it is actually $\hat{A}$, the number theoretic transform of $A$ that is expanded from seed (or its transpose). For practical purposes, $A$ or $\hat{A}$ is a $k\times k$ matrix with entries that are 256-dimensional vectors over $\mathbb{Z}/q\mathbb{Z}$, or more simply a $k\times k \times256$ array with integer entries (say in the range $[0,q)$).
0
Reply
Tarick Welling avatar
nl flag
Tarick Welling
@yoyo exactly, but the theory already works for a $k \times 256$ array, so why was it made to be $k \times k \times 256$?
0
Reply
in flag
yoyo
You may want to compare different learning with errors key exchanges: LWE (like FRODO), RLWE (like NewHope), and MLWE (like Kyber). They're all very similar, but use algebraic structures of increasing complexity.
0
Reply
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.