International Association for Cryptologic Research

International Association
for Cryptologic Research


Paper: CRYSTALS-Dilithium: A Lattice-Based Digital Signature Scheme

Léo Ducas , CWI
Eike Kiltz , Ruhr Universität Bochum
Tancrède Lepoint , SRI International
Vadim Lyubashevsky , IBM Research – Zurich
Peter Schwabe , Radboud University
Gregor Seiler , IBM Research – Zurich
Damien Stehlé , ENS de Lyon
DOI: 10.13154/tches.v2018.i1.238-268
Search ePrint
Search Google
Abstract: In this paper, we present the lattice-based signature scheme Dilithium, which is a component of the CRYSTALS (Cryptographic Suite for Algebraic Lattices) suite that was submitted to NIST’s call for post-quantum cryptographic standards. The design of the scheme avoids all uses of discrete Gaussian sampling and is easily implementable in constant-time. For the same security levels, our scheme has a public key that is 2.5X smaller than the previously most efficient lattice-based schemes that did not use Gaussians, while having essentially the same signature size. In addition to the new design, we significantly improve the running time of the main component of many lattice-based constructions – the number theoretic transform. Our AVX2-based implementation results in a speed-up of roughly a factor of 2 over the previously best algorithms that appear in the literature. The techniques for obtaining this speed-up also have applications to other lattice-based schemes.
  title={CRYSTALS-Dilithium: A Lattice-Based Digital Signature Scheme},
  journal={Transactions on Cryptographic Hardware and Embedded Systems},
  publisher={Ruhr-Universität Bochum},
  volume={2018, Issue 1},
  author={Léo Ducas and Eike Kiltz and Tancrède Lepoint and Vadim Lyubashevsky and Peter Schwabe and Gregor Seiler and Damien Stehlé},