{"id":"https://openalex.org/W4414107271","doi":"https://doi.org/10.1587/transfun.2025cip0016","title":"Polynomial-Time Attacks on Two Post-Quantum Key Agreement Protocols","display_name":"Polynomial-Time Attacks on Two Post-Quantum Key Agreement Protocols","publication_year":2025,"publication_date":"2025-09-10","ids":{"openalex":"https://openalex.org/W4414107271","doi":"https://doi.org/10.1587/transfun.2025cip0016"},"language":"en","primary_location":{"id":"doi:10.1587/transfun.2025cip0016","is_oa":true,"landing_page_url":"https://doi.org/10.1587/transfun.2025cip0016","pdf_url":"https://www.jstage.jst.go.jp/article/transfun/advpub/0/advpub_2025CIP0016/_pdf","source":{"id":"https://openalex.org/S166990724","display_name":"IEICE Transactions on Fundamentals of Electronics Communications and Computer Sciences","issn_l":"0916-8508","issn":["0916-8508","1745-1337"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4320800604","host_organization_name":"Institute of Electronics, Information and Communication Engineers","host_organization_lineage":["https://openalex.org/P4320800604"],"host_organization_lineage_names":["Institute of Electronics, Information and Communication Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"bronze","oa_url":"https://www.jstage.jst.go.jp/article/transfun/advpub/0/advpub_2025CIP0016/_pdf","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5105033896","display_name":"Genki Akimoto","orcid":null},"institutions":[{"id":"https://openalex.org/I74801974","display_name":"The University of Tokyo","ror":"https://ror.org/057zh3y96","country_code":"JP","type":"education","lineage":["https://openalex.org/I74801974"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Genki AKIMOTO","raw_affiliation_strings":["Graduate School of Information Science and Technology, The University of Tokyo","Graduate School of Information Science and Technology, University of Tokyo"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Graduate School of Information Science and Technology, The University of Tokyo","institution_ids":["https://openalex.org/I74801974"]},{"raw_affiliation_string":"Graduate School of Information Science and Technology, University of Tokyo","institution_ids":["https://openalex.org/I74801974"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5000004915","display_name":"Tsuyoshi Takagi","orcid":null},"institutions":[{"id":"https://openalex.org/I74801974","display_name":"The University of Tokyo","ror":"https://ror.org/057zh3y96","country_code":"JP","type":"education","lineage":["https://openalex.org/I74801974"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Tsuyoshi TAKAGI","raw_affiliation_strings":["Graduate School of Information Science and Technology, The University of Tokyo","Graduate School of Information Science and Technology, University of Tokyo"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Graduate School of Information Science and Technology, The University of Tokyo","institution_ids":["https://openalex.org/I74801974"]},{"raw_affiliation_string":"Graduate School of Information Science and Technology, University of Tokyo","institution_ids":["https://openalex.org/I74801974"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":{"value":0.1119448,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"E109.A","issue":"3","first_page":"176","last_page":"184"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10020","display_name":"Quantum Information and Cryptography","score":0.9853000044822693,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10020","display_name":"Quantum Information and Cryptography","score":0.9853000044822693,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10682","display_name":"Quantum Computing Algorithms and Architecture","score":0.9229999780654907,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10622","display_name":"Quantum Mechanics and Applications","score":0.9132000207901001,"subfield":{"id":"https://openalex.org/subfields/3107","display_name":"Atomic and Molecular Physics, and Optics"},"field":{"id":"https://openalex.org/fields/31","display_name":"Physics and Astronomy"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/chinese-remainder-theorem","display_name":"Chinese remainder theorem","score":0.6401000022888184},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.6359999775886536},{"id":"https://openalex.org/keywords/key-exchange","display_name":"Key exchange","score":0.5530999898910522},{"id":"https://openalex.org/keywords/rank","display_name":"Rank (graph theory)","score":0.48069998621940613},{"id":"https://openalex.org/keywords/finite-field","display_name":"Finite field","score":0.44040000438690186},{"id":"https://openalex.org/keywords/factorization","display_name":"Factorization","score":0.4244999885559082},{"id":"https://openalex.org/keywords/attack-model","display_name":"Attack model","score":0.40450000762939453},{"id":"https://openalex.org/keywords/prime","display_name":"Prime (order theory)","score":0.4023999869823456}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6420999765396118},{"id":"https://openalex.org/C151635116","wikidata":"https://www.wikidata.org/wiki/Q193878","display_name":"Chinese remainder theorem","level":2,"score":0.6401000022888184},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.6359999775886536},{"id":"https://openalex.org/C99674996","wikidata":"https://www.wikidata.org/wiki/Q1414155","display_name":"Key exchange","level":4,"score":0.5530999898910522},{"id":"https://openalex.org/C164226766","wikidata":"https://www.wikidata.org/wiki/Q7293202","display_name":"Rank (graph theory)","level":2,"score":0.48069998621940613},{"id":"https://openalex.org/C77926391","wikidata":"https://www.wikidata.org/wiki/Q603880","display_name":"Finite field","level":2,"score":0.44040000438690186},{"id":"https://openalex.org/C187834632","wikidata":"https://www.wikidata.org/wiki/Q188804","display_name":"Factorization","level":2,"score":0.4244999885559082},{"id":"https://openalex.org/C65856478","wikidata":"https://www.wikidata.org/wiki/Q3991682","display_name":"Attack model","level":2,"score":0.40450000762939453},{"id":"https://openalex.org/C184992742","wikidata":"https://www.wikidata.org/wiki/Q7243229","display_name":"Prime (order theory)","level":2,"score":0.4023999869823456},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.3984000086784363},{"id":"https://openalex.org/C90119067","wikidata":"https://www.wikidata.org/wiki/Q43260","display_name":"Polynomial","level":2,"score":0.37540000677108765},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.3433000147342682},{"id":"https://openalex.org/C311688","wikidata":"https://www.wikidata.org/wiki/Q2393193","display_name":"Time complexity","level":2,"score":0.3400000035762787},{"id":"https://openalex.org/C179799912","wikidata":"https://www.wikidata.org/wiki/Q205084","display_name":"Computational complexity theory","level":2,"score":0.3142000138759613},{"id":"https://openalex.org/C181149355","wikidata":"https://www.wikidata.org/wiki/Q897511","display_name":"Cryptanalysis","level":3,"score":0.31299999356269836},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3116999864578247},{"id":"https://openalex.org/C9652623","wikidata":"https://www.wikidata.org/wiki/Q190109","display_name":"Field (mathematics)","level":2,"score":0.29789999127388},{"id":"https://openalex.org/C106487976","wikidata":"https://www.wikidata.org/wiki/Q685816","display_name":"Matrix (chemical analysis)","level":2,"score":0.2953999936580658},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.29440000653266907},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.29350000619888306},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.29330000281333923},{"id":"https://openalex.org/C89694405","wikidata":"https://www.wikidata.org/wiki/Q7540343","display_name":"Slide attack","level":5,"score":0.29260000586509705},{"id":"https://openalex.org/C113429393","wikidata":"https://www.wikidata.org/wiki/Q49008","display_name":"Prime number","level":2,"score":0.2694999873638153},{"id":"https://openalex.org/C163173736","wikidata":"https://www.wikidata.org/wiki/Q3308558","display_name":"Key generation","level":3,"score":0.2599000036716461},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.2526000142097473}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1587/transfun.2025cip0016","is_oa":true,"landing_page_url":"https://doi.org/10.1587/transfun.2025cip0016","pdf_url":"https://www.jstage.jst.go.jp/article/transfun/advpub/0/advpub_2025CIP0016/_pdf","source":{"id":"https://openalex.org/S166990724","display_name":"IEICE Transactions on Fundamentals of Electronics Communications and Computer Sciences","issn_l":"0916-8508","issn":["0916-8508","1745-1337"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4320800604","host_organization_name":"Institute of Electronics, Information and Communication Engineers","host_organization_lineage":["https://openalex.org/P4320800604"],"host_organization_lineage_names":["Institute of Electronics, Information and Communication Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1587/transfun.2025cip0016","is_oa":true,"landing_page_url":"https://doi.org/10.1587/transfun.2025cip0016","pdf_url":"https://www.jstage.jst.go.jp/article/transfun/advpub/0/advpub_2025CIP0016/_pdf","source":{"id":"https://openalex.org/S166990724","display_name":"IEICE Transactions on Fundamentals of Electronics Communications and Computer Sciences","issn_l":"0916-8508","issn":["0916-8508","1745-1337"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4320800604","host_organization_name":"Institute of Electronics, Information and Communication Engineers","host_organization_lineage":["https://openalex.org/P4320800604"],"host_organization_lineage_names":["Institute of Electronics, Information and Communication Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G8972333614","display_name":null,"funder_award_id":"JPMJCR2113","funder_id":"https://openalex.org/F4320338075","funder_display_name":"Core Research for Evolutional Science and Technology"}],"funders":[{"id":"https://openalex.org/F4320338075","display_name":"Core Research for Evolutional Science and Technology","ror":"https://ror.org/00097mb19"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4414107271.pdf","grobid_xml":"https://content.openalex.org/works/W4414107271.grobid-xml"},"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W4236261679","https://openalex.org/W1965066623","https://openalex.org/W2807886783","https://openalex.org/W2501040892","https://openalex.org/W788508752","https://openalex.org/W1990501105","https://openalex.org/W2331610788","https://openalex.org/W4253951420","https://openalex.org/W4251477440","https://openalex.org/W4398403429"],"abstract_inverted_index":{"In":[0,96],"this":[1,79,97],"study,":[2],"we":[3,99],"propose":[4],"a":[5],"polynomial-time":[6,146],"recovery":[7,106],"attack":[8,52,80,102,147,155],"on":[9,28,82],"two":[10],"post-quantum":[11],"key":[12,87,111,132],"agreement":[13],"protocols.":[14],"One":[15],"of":[16,57,63,78,85,107],"these":[17],"protocols":[18],"is":[19,26,156],"the":[20,32,54,61,64,68,71,76,83,86,101,105,108,124,129,140,145,152],"strongly":[21],"asymmetric":[22],"algorithm-5":[23],"(SAA-5),":[24],"which":[25],"based":[27],"matrix":[29],"operations":[30],"over":[31],"finite":[33],"field":[34],"\ud835\udd3dp.":[35],"Our":[36],"previous":[37],"study":[38],"showed":[39],"that":[40,128],"weak":[41],"keys":[42,91],"exist":[43],"with":[44,123,139],"high":[45],"probability":[46],"in":[47,67,112,115],"SAA-5":[48],"and":[49,70,89],"proposed":[50,142,154],"an":[51],"using":[53,121],"prime":[55],"factorization":[56],"p":[58],"-":[59],"1,":[60],"rank":[62,84],"matrices":[65],"used":[66],"protocol,":[69],"Chinese":[72],"remainder":[73],"theorem.":[74],"However,":[75],"complexity":[77],"depends":[81],"matrices,":[88],"certain":[90],"remain":[92],"robust":[93],"against":[94],"it.":[95],"work,":[98],"refine":[100],"to":[103],"ensure":[104],"secret":[109,130],"shared":[110,131],"polynomial":[113],"time":[114],"all":[116],"cases.":[117],"Numerical":[118],"results":[119],"obtained":[120],"Magma":[122],"recommended":[125],"parameters":[126],"show":[127],"can":[133],"be":[134],"recovered":[135],"significantly":[136],"faster":[137],"than":[138],"previously":[141,153],"attack.":[143],"Furthermore,":[144],"remains":[148],"feasible":[149],"even":[150],"when":[151],"computationally":[157],"impractical.":[158]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}