An Attack on $p$-adic Lattice Public-key Cryptosystems and Signature Schemes
Chi Zhang
TL;DR
The paper addresses the security of $p$-adic lattice based cryptosystems for signatures and public-key encryption, which rely on the hardness of the Longest Vector Problem and Closest Vector Problem in local fields. It introduces a deterministic polynomial-time orthogonalization approach in totally ramified local fields and uses it to recover a uniformizer, build an orthogonal basis, and solve $LVP$/$CVP$, thereby forgoing signatures and decrypting ciphertexts. The contributions include a concrete attack with complexity advantages in the totally ramified case, a more efficient variant when $\gcd(n,p)=1$, a toy example illustrating the steps, and a discussion of countermeasures such as enforcing non-totally-ramified extensions (adding residue degree). The findings highlight a critical vulnerability in these schemes under the tested conditions and guide future design toward more robust constructions that resist orthogonalization-based attacks.
Abstract
Lattices have many significant applications in cryptography. In 2021, the $p$-adic signature scheme and public-key encryption cryptosystem were introduced. They are based on the Longest Vector Problem (LVP) and the Closest Vector Problem (CVP) in $p$-adic lattices. These problems are considered to be challenging and there are no known deterministic polynomial time algorithms to solve them. In this paper, we improve the LVP algorithm in local fields. The modified LVP algorithm is a deterministic polynomial time algorithm when the field is totally ramified and $p$ is a polynomial in the rank of the input lattice. We utilize this algorithm to attack the above schemes so that we are able to forge a valid signature of any message and decrypt any ciphertext. Although these schemes are broken, this work does not mean that $p$-adic lattices are not suitable in constructing cryptographic primitives. We propose some possible modifications to avoid our attack at the end of this paper.