Recent independent analyses by Bonnetain–Schrottenloher and Peikert in Eurocrypt 2020
significantly reduced the estimated quantum security of the isogeny-based commutative …

In this paper we study non-trivial self-pairings with cyclic domains that are compatible with
isogenies between elliptic curves oriented by an imaginary quadratic order O. We prove that …

For primes p ≡ 3\bmod 4, we show that setting up CSIDH on the surface, ie, using
supersingular elliptic curves with endomorphism ring Z (1+-p)/2, amounts to just a few sign …

The recent devastating attacks on SIDH rely on the fact that the protocol reveals the images
φ (P) and φ (Q) of the secret isogeny φ: E 0→ E on a basis {P, Q} of the N-torsion subgroup E …

This paper introduces a new key space for CSIDH and a new algorithm for constant-time
evaluation of the CSIDH group action. The key space is not useful with previous algorithms …

We propose two new supersingular isogeny-based public key encryptions: SiGamal and C-
SiGamal. They were developed by giving an additional point of the order 2^ r 2 r to CSIDH …

We optimise the verification of the SQIsign signature scheme. By using field extensions in
the signing procedure, we are able to significantly increase the amount of available rational …

Since its proposal in Asiacrypt 2018, the commutative isogeny-based key exchange protocol
(CSIDH) has spurred considerable attention to improving its performance and re-evaluating …

CSIDH is a recent post-quantum key establishment protocol based on constructing
isogenies between supersingular elliptic curves. Several recent works give constant-time …

We investigate a new class of fault-injection attacks against the CSIDH family of
cryptographic group actions. Our disorientation attacks effectively flip the direction of some …