Algorithm for Solving Massively Underdefined Systems of Multivariate Quadratic Equations over Finite Fields

Abstract

Solving systems of m multivariate quadratic equations in n variables (MQ-problem) over finite fields is NP-hard. The security of many cryptographic systems is based on this problem. Up to now, the best algorithm for solving the underdefined MQ-problem is Hiroyuki Miura et al.'s algorithm, which is a polynomial-time algorithm when \[n m(m + 3)/2\] and the characteristic of the field is even. In order to get a wider applicable range, we reduce the underdefined MQ-problem to the problem of finding square roots over finite field, and then combine with the guess and determine method. In this way, the applicable range is extended to \[n m(m + 1)/2\], which is the widest range until now. Theory analysis indicates that the complexity of our algorithm is \[O(qnω m( 1pt 1pt q)2) 1pt \] when characteristic of the field is even and \[O(q2mnω m( 1pt 1pt q)2)\] when characteristic of the field is odd, where \[2 ω 3\] is the complexity of Gaussian elimination.