Title :
Reducing elliptic curve logarithms to logarithms in a finite field
Author :
Menezes, Alfred J. ; Okamoto, Tatsuaki ; Vanstone, Scott A.
Author_Institution :
Dept. of Discrete & Stat. Sci., Auburn Univ., AL, USA
fDate :
9/1/1993 12:00:00 AM
Abstract :
Elliptic curve cryptosystems have the potential to provide relatively small block size, high-security public key schemes that can be efficiently implemented. As with other known public key schemes, such as RSA and discrete exponentiation in a finite field, some care must be exercised when selecting the parameters involved, in this case the elliptic curve and the underlying field. Specific classes of curves that give little or no advantage over previously known schemes are discussed. The main result of the paper is to demonstrate the reduction of the elliptic curve logarithm problem to the logarithm problem in the multiplicative group of an extension of the underlying finite field. For the class of supersingular elliptic curves, the reduction takes probabilistic polynomial time, thus providing a probabilistic subexponential time algorithm for the former problem
Keywords :
information theory; probability; public key cryptography; Weil pairing; discrete logarithms; elliptic curve cryptosystems; elliptic curve logarithms; finite field; high-security public key schemes; isomorphism; multiplicative group; probabilistic polynomial time; probabilistic subexponential time algorithm; supersingular elliptic curves; underlying field; Combinatorial mathematics; Elliptic curve cryptography; Elliptic curves; Galois fields; Helium; Laboratories; Polynomials; Public key; Public key cryptography; Security;
Journal_Title :
Information Theory, IEEE Transactions on
