Towards the Equivalence of Breaking the Diie-hellman Protocol and Computing Discrete Logarithms ?
نویسنده
چکیده
Let G be an arbitrary cyclic group with generator g and order jGj with known factorization. G could be the subgroup generated by g within a larger group H. Based on an assumption about the existence of smooth numbers in short intervals, we prove that breaking the Diie-Hellman protocol for G and base g is equivalent to computing discrete logarithms in G to the base g when a certain side information string S of length 2 log jGj is given, where S depends only on jGj but not on the deenition of G and appears to be of no help for computing discrete logarithms in G. If every prime factor p of jGj is such that one of a list of expressions in p, including p ? 1 and p + 1, is smooth for an appropriate smoothness bound, then S can eeciently be constructed and therefore breaking the Diie-Hellman protocol is equivalent to computing discrete logarithms.
منابع مشابه
Diie-hellman Oracles
This paper consists of three parts. First, various types of Diie-Hellman oracles for a cyclic group G and subgroups of G are de-ned and their equivalence is proved. In particular, the security of using a subgroup of G instead of G in the Diie-Hellman protocol is investigated. Second, we derive several new conditions for the polynomial-time equivalence of breaking the Diie-Hellman protocol and c...
متن کاملOn the Complexity of Breaking the Diie-hellman Protocol
It is shown that for a class of nite groups, breaking the Diie-Hellman protocol is polynomial-time equivalent to computing discrete logarithms. Let G be a cyclic group with generator g and order jGj whose prime factorization is known. When for each large prime factor p of jGj an auxiliary group H p deened over GF (p) with smooth order is given, then breaking the Diie-Hellman protocol for G and ...
متن کاملTowards the Equivalence of Breaking
Let G be an arbitrary cyclic group with generator g and order jGj with known factorization. G could be the subgroup generated by g within a larger group H. Based on an assumption about the existence of smooth numbers in short intervals, we prove that breaking the Diie-Hellman protocol for G and base g is equivalent to computing discrete logarithms in G to the base g when a certain side informat...
متن کاملThe Relationship Between Breaking the Diffie-Hellman Protocol and Computing Discrete Logarithms
Both uniform and non-uniform results concerning the security of the Diie-Hellman key-exchange protocol are proved. First, it is shown that in a cyclic group G of order jGj = Q p ei i , where all the multiple prime factors of jGj are polynomial in log jGj, there exists an algorithm that reduces the computation of discrete logarithms in G to breaking the Diie-Hellman protocol in G and has complex...
متن کاملThe Relationship between Breaking the Diie-hellman Protocol and Computing Discrete Logarithms
Both uniform and non-uniform results concerning the security of the Diie-Hellman key-exchange protocol are proved. First, it is shown that in a cyclic group G of order jGj = Q p ei i , where all the multiple prime factors of jGj are polynomial in log jGj, there exists an algorithm that reduces the computation of discrete logarithms in G to breaking the Diie-Hellman protocol in G and has complex...
متن کامل