Asymptotic Behaviour of the Index of Regularity of Quadratic Semi-Regular Polynomial Systems

We compute the asymptotic expansion of the index of regularity for overdetermined quadratic semi-regular sequences of algebraic equations. This implies bounds for the generic complexity of Gröbner bases algorithms, in particular the F5 [Fau02] algorithm. Bounds can also be derived for the XL [SPCK00] family of algorithms used by the cryptographic community. 1 Motivations and Results The worst-case complexity of Gröbner bases has been the object of extensive studies. In the most general case, it is well known after work by Mayr and Meyer that the complexity is doubly exponential in the number of variables. For subclasses of polynomial systems, the complexity may be much smaller. Of particular importance is the class of regular sequences of polynomials. There, it is known that after a generic linear change of variables the complexity of the computation for the degree-reverse-lexicographic order is simply exponential in the number of variables. Moreover, in characteristic 0, these systems are generic. Our goal is to give similar complexity bounds for overdetermined systems, for a class of systems that we call semi-regular. The interest in overdetermined systems is not purely academic: there are a number of applications, such as error correcting codes (decoding of cyclic codes), robotics, calibration, cryptography,. . . . The security of many cryptographical primitives depends on the difficulty of system-solving. Sometimes (in the case of “multivariate public-key cryptosystems”) the public keys themselves become the system to be solved. Sometimes primitives can be cracked if one can find a solution to an associated overdetermined system of algebraic equations over a finite field. This is known as Algebraic Cryptanalysis and is currently one of the hot topics in cryptography. In most cases, only the solutions over a finite field are required, rather than solutions in the algebraic closure. Often the finite field is F2, and we may then think of the problem as LIP6, 8 rue du Capitaine Scott, F-75015 PARIS, {Magali.Bardet,Jean-Charles.Faugere}@lip6.fr INRIA Rocquencourt Bat. 9, Domaine de Voluceau, BP 105, F-78153 Le Chesnay Cedex, Bruno.Salvy@inria.fr Mathematics Department, Tamkang University, Tamsui, Taiwan 251-37, by@moscito.org

[1]  Daniel Lazard,et al.  Gröbner-Bases, Gaussian elimination and resolution of systems of algebraic equations , 1983, EUROCAL.

[2]  Antoine Joux,et al.  Algebraic Cryptanalysis of Hidden Field Equation (HFE) Cryptosystems Using Gröbner Bases , 2003, CRYPTO.

[3]  Marina Weber,et al.  Using Algebraic Geometry , 2016 .

[4]  F. S. Macaulay,et al.  The Algebraic Theory of Modular Systems , 1972 .

[5]  Claus Diem,et al.  The XL-Algorithm and a Conjecture from Commutative Algebra , 2004, ASIACRYPT.

[6]  Hideki Imai,et al.  Comparison Between XL and Gröbner Basis Algorithms , 2004, ASIACRYPT.

[7]  Ralf Fröberg,et al.  An introduction to Gröbner bases , 1997, Pure and applied mathematics.

[8]  N. Courtois,et al.  Efficient Algorithms for Solving Overdefined Systems of Multivariate Polynomial Equations , 2000, EUROCRYPT.

[9]  Hsien-Kuei Hwang,et al.  Asymptotic Estimates of Elementary Probability Distributions , 1997 .

[10]  Ralf Fröberg,et al.  An inequality for Hilbert series of graded algebras. , 1985 .

[11]  Marc Giusti,et al.  Some Effectivity Problems in Polynomial Ideal Theory , 1984, EUROSAM.

[12]  Jean-Charles Faugère,et al.  Complexity of Gröbner basis computation for Semi-regular Overdetermined sequences over F_2 with solutions in F_2 , 2002 .

[13]  A. Szanto Multivariate Subresultants Using Jouanolou's Resultant Matrices , 2001 .

[14]  Daniel Lazard,et al.  Solving systems of algebraic equations , 2001, SIGS.

[15]  Magali Bardet,et al.  Étude des systèmes algébriques surdéterminés. Applications aux codes correcteurs et à la cryptographie , 2004 .

[16]  Jean Charles Faugère,et al.  A new efficient algorithm for computing Gröbner bases without reduction to zero (F5) , 2002, ISSAC '02.

[17]  C. Chester,et al.  An extension of the method of steepest descents , 1957, Mathematical Proceedings of the Cambridge Philosophical Society.

[18]  Bo-Yin Yang,et al.  All in the XL Family: Theory and Practice , 2004, ICISC.

[19]  J. Faugère A new efficient algorithm for computing Gröbner bases (F4) , 1999 .

[20]  Roderick Wong,et al.  Asymptotic approximations of integrals , 1989, Classics in applied mathematics.

[21]  Carlo Traverso,et al.  Effective methods in algebraic geometry , 1991 .

[22]  J. Faugère,et al.  On the complexity of Gröbner basis computation of semi-regular overdetermined algebraic equations , 2004 .