CryptoDB
Zeroed Out: Cryptanalysis of Weak PRFs in Alternating Moduli
| Authors: | |
|---|---|
| Download: | |
| Abstract: | The growing adoption of secure multi-party computation (MPC) has driven the development of efficient symmetric key primitives tailored for MPC. Recent advances, such as the alternating moduli paradigm, have shown promise but leave room for cryptographic and practical improvements. In this paper, we analyze a family of weak pseudorandom functions (wPRF) proposed at Crypto 2024, focusing on their One-to-One parameter sets. We demonstrate that these configurations fail to achieve their intended one-to-one mappings and exploit this observation to develop an efficient key recovery attack.Our analysis reveals critical vulnerabilities, reducing the complexity of key recovery to O(2λ/2 log2 λ) for the Standard One-to-One wPRF and O(20.84λ) for the Reversed Moduli variant – both substantially below their claimed λ-bit security. We validate our findings through experimental evaluation, confirming alignment between predicted and observed attack complexities. |
BibTeX
@article{tosc-2025-35838,
title={Zeroed Out: Cryptanalysis of Weak PRFs in Alternating Moduli},
journal={IACR Transactions on Symmetric Cryptology},
publisher={Ruhr-Universität Bochum},
volume={2025},
pages={1-15},
url={https://tosc.iacr.org/index.php/ToSC/article/view/12242},
doi={10.46586/tosc.v2025.i2.1-15},
author={Irati Manterola Ayala and Håvard Raddum},
year=2025
}