Co-factor Clearing and Subgroup Membership Testing on Pairing-Friendly Curves
نویسندگان
چکیده
An important cryptographic operation on elliptic curves is hashing to a point the curve. When curve not of prime order, multiplied by cofactor so that result has order. This avoid small subgroup attacks for example. A second operation, in composite-order case, testing whether belongs pairing bilinear map $$e :\mathbb G_1 \times \mathbb G_2 \rightarrow G_T$$ where $$\mathbb G_1$$ and G_2$$ are distinct subgroups order r an curve, multiplicative same finite field extension. Pairing-friendly rarely We investigate clearing membership these curves. First, we generalize faster BLS other pairing-friendly families polynomial form from taxonomy Freeman, Scott Teske. Second, . fix proof argument case appeared preprint late 2021 recently been implemented different libraries. then both apply it gives simple shared framework prove tests subgroups.
منابع مشابه
Heuristics on pairing-friendly elliptic curves
We present a heuristic asymptotic formula as x → ∞ for the number of isogeny classes of pairing-friendly elliptic curves over prime fields with fixed embedding degree k ≥ 3, with fixed discriminant, with rho-value bounded by a fixed ρ0 such that 1 < ρ0 < 2, and with prime subgroup order at most x.
متن کاملScalar Multiplication on Pairing Friendly Elliptic Curves
Efficient computation of elliptic curve scalar multiplication has been a significant problem since Koblitz [13] and Miller [14] independently proposed elliptic curve cryptography, and several efficient methods of scalar multiplication have been proposed (e.g., [8], [9], [12]). A standard approach for computing scalar multiplication is to use the Frobenius endomorphism. If we compute the s-multi...
متن کاملConstructing Families of Pairing-Friendly Elliptic Curves
We present a general method for constructing families of elliptic curves with prescribed embedding degree and prime order. We demonstrate this method by constructing curves of embedding degree k = 10, a value which has not previously appeared in the literature, and we show that our method applies to existing constructions for k = 3, 4, 6, and 12. We give evidence that our method is unlikely to ...
متن کاملPairing-Friendly Elliptic Curves of Prime Order
Previously known techniques to construct pairing-friendly curves of prime or near-prime order are restricted to embedding degree k 6 6. More general methods produce curves over Fp where the bit length of p is often twice as large as that of the order r of the subgroup with embedding degree k; the best published results achieve ρ ≡ log(p)/ log(r) ∼ 5/4. In this paper we make the first step towar...
متن کاملConstruction of Pairing-Friendly Elliptic Curves
The aim of this paper is to construct pairing friendly elliptic curves. In this paper, we explain a method of finding the polynomials representing √−D and ζk over the field containing √−D and ζk and how to construct a pairing friendly elliptic curves over the cyclotomic fields containing Q(ζk, √−D) for arbitrary k and D by CP method. By using the factorization of the cyclotomic polynomial combi...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Lecture Notes in Computer Science
سال: 2022
ISSN: ['1611-3349', '0302-9743']
DOI: https://doi.org/10.1007/978-3-031-17433-9_22