PDF files of articles are only available for institutions which have paid for the online version upon signing an Institutional User License.

On the key generation in SQISign

Volume 126 / 2023

Hiroshi Onuki Banach Center Publications 126 (2023), 89-104 MSC: Primary 11T71; Secondary 94A60. DOI: 10.4064/bc126-6


SQISign is an isogeny-based signature scheme that has short keys and signatures and is expected to be a post-quantum scheme. Its security depends on the hardness of the problem to find an isogeny between given two elliptic curves over $\mathbb{F}_{p^2}$, where $p$ is a large prime. For efficiency reasons, a public key in SQISign is taken from a set of supersingular elliptic curves with a particular property. In this paper, we investigate the security related to public keys in SQISign. First, we show some properties of the set of public keys. Next, we show that a key generation procedure used in implementing SQISign could not generate all public keys and propose a modification for the procedure. In addition, we confirm the latter result through an experiment.


  • Hiroshi OnukiDepartment of Mathematical Informatics
    The University of Tokyo
    Tokyo, Japan

Search for IMPAN publications

Query phrase too short. Type at least 4 characters.

Rewrite code from the image

Reload image

Reload image