Dong-Chan Kim, Chang-Yeol Jeon, Minji Kim, Dong Hyun Park, Dong Hyeon Kim, Yeonghyo Kim
Future cryptography Design Lab., Kookmin University
(last updated: 2024.03.16.)
We propose PALOMA, a new code-based KEM(Key Encapsulation Mechanism), which has the following features:
PALOMA provides three parameter sets: PALOMA-128, PALOMA-192, and PALOMA-256, which correspond to security strength levels of 128-bit, 192-bit, and 256-bit, respectively.
Security Level | n | t | k(=n-mt) | m | |
---|---|---|---|---|---|
PALOMA-128 | 128 | 3,904 | 64 | 3,072 | 13 |
PALOMA-192 | 192 | 5,568 | 128 | 3,904 | 13 |
PALOMA-256 | 256 | 6,592 | 128 | 4,928 | 13 |
Each parameter set was carefully chosen to meet the following conditions, ensuring efficient implementation.
Public Key | Secret Key | Ciphertext | Key | |
---|---|---|---|---|
PALOMA-128 | 319,488 | 94,528 | 136 | 32 |
PALOMA-192 | 812,032 | 357,568 | 240 | 32 |
PALOMA-256 | 1,025,024 | 359,616 | 240 | 32 |
PALOMA is implemented in ANSI C. A speed benchmark was performed on the following platform:
GenKeyPair | Encap | Decap | |
---|---|---|---|
PALOMA-128 | 27.81 (1,021,606) | 0.042 (1,014) | 1.75 (40,848) |
PALOMA-192 | 119.77 (2,939,786) | 0.051 (1,279) | 8.97 (212,087) |
PALOMA-256 | 150.03 (3,665,877) | 0.060 (1,368) | 9.43 (225,231) |