Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

An Error-Code Perspective on Metzner--Kapturowski-like Decoders

Thomas Jerkovits, Felicitas Hörmann, Hannes Bartz

TL;DR

This work introduces an error‑code perspective on Metzner–Kapturowski–like decoding for high‑order interleaved sum‑rank‑metric codes, enabling an intuitive interpretation of decoding as operating on the error code. It presents a two‑stage, linear‑algebraic decoder that first recovers the error support and then erases accordingly, achieving correction up to $t\le d-2$ in general and under additional conditions up to $t\le n-k-1$, with a complexity of $O(\max\{n^3, n^2 s\})$ over $\mathbb{F}_{q^m}$ that is independent of constituent code structure. The paper analyzes probabilistic decoding for uniform random errors, derives bounds and a DP‑based method to compute the success probability, and demonstrates high success probabilities beyond the unique decoding radius as parameters grow. The results provide practical insights for designing and security‑assessing code‑based cryptosystems using interleaved sum‑rank codes and unify MK‑style decoding across Hamming, rank, and sum‑rank metrics, while also outlining open problems such as horizontal interleaving adaptations.

Abstract

In this paper we consider a Metzner-Kapturowski-like decoding algorithm for high-order interleaved sum-rank-metric codes, offering a novel perspective on the decoding process through the concept of an error code. The error code, defined as the linear code spanned by the vectors forming the error matrix, provides a more intuitive understanding of the decoder's functionality and new insights. The proposed algorithm can correct errors of sum-rank weight up to $d-2$, where $d$ is the minimum distance of the constituent code, given a sufficiently large interleaving order. The decoder's versatility is highlighted by its applicability to any linear constituent code, including unstructured or random codes. The computational complexity is $O(\max\{n^3, n^2 s\})$ operations over $\mathbb{F}_{q^m}$, where $n$ is the code length and $s$ is the interleaving order. We further explore the success probability of the decoder for random errors, providing an efficient algorithm to compute an upper bound on this probability. Additionally, we derive bounds and approximations for the success probability when the error weight exceeds the unique decoding radius, showing that the decoder maintains a high success probability in this regime. Our findings suggest that this decoder could be a valuable tool for the design and security analysis of code-based cryptosystems using interleaved sum-rank-metric codes. The new insights into the decoding process and the high success probability of the algorithm even beyond the unique decoding radius underscore its potential to contribute to various coding-related applications.

An Error-Code Perspective on Metzner--Kapturowski-like Decoders

TL;DR

This work introduces an error‑code perspective on Metzner–Kapturowski–like decoding for high‑order interleaved sum‑rank‑metric codes, enabling an intuitive interpretation of decoding as operating on the error code. It presents a two‑stage, linear‑algebraic decoder that first recovers the error support and then erases accordingly, achieving correction up to in general and under additional conditions up to , with a complexity of over that is independent of constituent code structure. The paper analyzes probabilistic decoding for uniform random errors, derives bounds and a DP‑based method to compute the success probability, and demonstrates high success probabilities beyond the unique decoding radius as parameters grow. The results provide practical insights for designing and security‑assessing code‑based cryptosystems using interleaved sum‑rank codes and unify MK‑style decoding across Hamming, rank, and sum‑rank metrics, while also outlining open problems such as horizontal interleaving adaptations.

Abstract

In this paper we consider a Metzner-Kapturowski-like decoding algorithm for high-order interleaved sum-rank-metric codes, offering a novel perspective on the decoding process through the concept of an error code. The error code, defined as the linear code spanned by the vectors forming the error matrix, provides a more intuitive understanding of the decoder's functionality and new insights. The proposed algorithm can correct errors of sum-rank weight up to , where is the minimum distance of the constituent code, given a sufficiently large interleaving order. The decoder's versatility is highlighted by its applicability to any linear constituent code, including unstructured or random codes. The computational complexity is operations over , where is the code length and is the interleaving order. We further explore the success probability of the decoder for random errors, providing an efficient algorithm to compute an upper bound on this probability. Additionally, we derive bounds and approximations for the success probability when the error weight exceeds the unique decoding radius, showing that the decoder maintains a high success probability in this regime. Our findings suggest that this decoder could be a valuable tool for the design and security analysis of code-based cryptosystems using interleaved sum-rank-metric codes. The new insights into the decoding process and the high success probability of the algorithm even beyond the unique decoding radius underscore its potential to contribute to various coding-related applications.
Paper Structure (16 sections, 11 theorems, 139 equations, 9 figures, 2 algorithms)

This paper contains 16 sections, 11 theorems, 139 equations, 9 figures, 2 algorithms.

Table of Contents

  1. Introduction
  2. Preliminaries
  3. Notation
  4. Sum-Rank-Metric Codes
  5. Interleaved Sum-Rank-Metric Codes and Channel Model
  6. The Error Support
  7. Decoding of High-Order Interleaved Sum-Rank-Metric Codes
  8. Recovering the Error Support
  9. A Metzner--Kapturowski-like Decoding Algorithm
  10. Further Results and Remarks
  11. Probabilistic Decoding for Uniform Random Errors
  12. Decoding Radius
  13. Simulation Results
  14. Examples
  15. Special Cases of the Algorithm for Hamming and Rank Metric
  16. ...and 1 more sections

Key Result

Lemma 1

Let $\bm{B} = \mathop{\mathrm{diag}}\nolimits{(\bm{B}^{(1)},\dots,\bm{B}^{(\ell)})}\in\mathbb F_{q}^{t\times n}$ be a basis of the error support $\mathop{\mathrm{supp}}\nolimits_{\Sigma R}(\bm{E})$ of the error matrix $\bm{E}\in\mathbb F_{q^m}^{s\times n}$, and let $\bm{S} = \bm{H}\bm{E}^\top \in \m Furthermore, $\bm{E}$ can be computed in $O\mathopen{}\left((n-k)^3 m^2\right)\mathclose{}$ operati

Figures (9)

  • Figure 1: Logarithmic failure probability vs. $s-t$ for different values of $\ell$ with $q$, $m$, $n$ and $t$.
  • Figure 2: Illustration of the decoding regions for Algorithm \ref{['alg:decode_high_order_int_sum_rank']} if full-rank condition is satisfied.
  • Figure 3: Relationships between parameters, conditions and decoding success for uniform errors.
  • Figure 4: Success probability vs error weight $t$ for $q=2$, $m=2$, $n=24$, $k=8$, $\eta=1$, and $\ell=24$ with interleaving order $s = t$.
  • Figure 5: Success probability vs error weight $t$ for $q=2$, $m=2$, $n=24$, $k=8$, $\eta=2$, and $\ell=12$ with interleaving order $s = t$.
  • ...and 4 more figures

Theorems & Definitions (17)

  • Definition 1: Interleaved Sum-Rank-Metric Code
  • Lemma 1: Column-Erasure Decoder puchingerGenericDecodingSumRank2022
  • Remark 1
  • Lemma 2
  • Theorem 1
  • Remark 2
  • Remark 3
  • Theorem 2
  • Theorem 3
  • Lemma 3
  • ...and 7 more