Transactions on Cryptographic Hardware and Embedded Systems 2025
Constant time lattice reduction in dimension 4 with application to SQIsign
Otto Hanyecz
Eőtvős Loránd University, Budapest, Hungary
Alexander Karenin
Technology Innovation Institute, Abu Dhabi, UAE
Elena Kirshanova
Technology Innovation Institute, Abu Dhabi, UAE
Péter Kutas
Eőtvős Loránd University, Budapest, Hungary; University of Birmingham, Birmingham, UK
Sina Schaeffler
ETH Zürich, Zürich, Switzerland; IBM Research Europe, Zürich, Switzerland
Keywords: LLL, BKZ, constant time, isogenies, SQIsign
Abstract
In this paper we propose a constant time lattice reduction algorithm for integral dimension-4 lattices. Motivated by its application in the SQIsign postquantum signature scheme, we provide for the first time a constant time LLLlike algorithm with guarantees on the length of the shortest output vector. We implemented our algorithm and ensured through various tools that it indeed operates in constant time. Our experiments suggest that in practice our implementation outputs a Minkowski reduced basis and thus can replace a non constant time lattice reduction subroutine in SQIsign.
Publication
IACR Transactions on Cryptographic Hardware and Embedded Systems, Volume 2025, Issue 2
PaperArtifact
Artifact number
tches/2025/a13
Artifact published
July 18, 2025
Badge
✅ IACR CHES Artifacts Functional
License
This work is licensed under the GNU General Public License version 3.
Note that license information is supplied by the authors and has not been confirmed by the IACR.
BibTeX How to cite
Otto Hanyecz, Alexander Karenin, Elena Kirshanova, Péter Kutas, Sina Schaeffler. (2025). Constant time lattice reduction in dimension 4 with application to SQIsign. IACR Transactions on Cryptographic Hardware and Embedded Systems, 2025(2), 511–534. https://doi.org/10.46586/tches.v2025.i2.511-534. Artifact at https://artifacts.iacr.org/tches/2025/a13.