Archivio Istituzionale della RicercaNeptune is a hash function proposed by Grassi et al. at ToSC 2022(3) for Zero-Knowledge (ZK) applications. In this note, we show that the linear layer of Neptune’s external rounds fails to guarantee the maximum growth of the degree, potentially affecting the security of Neptune against algebraic attacks. Here, we formally address this problem, by identifying sufficient conditions that ensure the expected degree growth is maintained.
Corrigendum to “Invertible Quadratic Non-Linear Layers for MPC-/FHE-/ZK-Friendly Schemes over Fnp : Application to Poseidon” / Urani, Matilda; Grassi, Lorenzo. - In: IACR TRANSACTION ON SYMMETRIC CRYPTOLOGY. - ISSN 2519-173X. - 2026:1(2026), pp. 527-532. [10.46586/tosc.v2026.i1.527-532]
Corrigendum to “Invertible Quadratic Non-Linear Layers for MPC-/FHE-/ZK-Friendly Schemes over Fnp : Application to Poseidon”
Urani, Matilda;
2026
Abstract
Neptune is a hash function proposed by Grassi et al. at ToSC 2022(3) for Zero-Knowledge (ZK) applications. In this note, we show that the linear layer of Neptune’s external rounds fails to guarantee the maximum growth of the degree, potentially affecting the security of Neptune against algebraic attacks. Here, we formally address this problem, by identifying sufficient conditions that ensure the expected degree growth is maintained.
| File | Dimensione | Formato | |
|---|---|---|---|
|
ToSC2026_1_19.pdf
accesso aperto
Tipologia:
2a Post-print versione editoriale / Version of Record
Licenza:
Creative commons
Dimensione
417.72 kB
Formato
Adobe PDF
|
417.72 kB | Adobe PDF | Visualizza/Apri |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/3008909