The Number Field Sieve in the Medium Prime Case
نویسندگان
چکیده
In this paper, we study several variations of the number field sieve to compute discrete logarithms in finite fields of the form Fpn , with p a medium to large prime. We show that when n is not too large, this yields a Lpn(1/3) algorithm with efficiency similar to that of the regular number field sieve over prime fields. This approach complements the recent results of Joux and Lercier on the function field sieve. Combining both results, we deduce that computing discrete logarithms have heuristic complexity Lpn(1/3) in all finite fields. To illustrate the efficiency of our algorithm, we computed discrete logarithms in a 120-digit finite field Fp3 .
منابع مشابه
A Generalisation of the Conjugation Method for Polynomial Selection for the Extended Tower Number Field Sieve Algorithm
In a recent work, Kim and Barbulescu showed how to combine previous polynomial selection methods with the extended tower number field sieve algorithm to obtain improved complexity for the discrete logarithm problem on finite fields Fpn for the medium prime case and where n is composite and not a prime-power. A follow up work by Sarkar and Singh presented a general polynomial selection method an...
متن کاملExtended Tower Number Field Sieve: A New Complexity for the Medium Prime Case
We introduce a new variant of the number field sieve algorithm for discrete logarithms in Fpn called exTNFS. The most important modification is done in the polynomial selection step, which determines the cost of the whole algorithm: if one knows how to select good polynomials to tackle discrete logarithms in Fpκ , exTNFS allows to use this method when tackling Fpηκ whenever gcd(η, κ) = 1. This ...
متن کاملA General Polynomial Selection Method and New Asymptotic Complexities for the Tower Number Field Sieve Algorithm
In a recent work, Kim and Barbulescu had extended the tower number field sieve algorithm to obtain improved asymptotic complexities in the medium prime case for the discrete logarithm problem on Fpn where n is not a prime power. Their method does not work when n is a composite prime power. For this case, we obtain new asymptotic complexities, e.g., Lpn(1/3, (64/9) ) (resp. Lpn(1/3, 1.88) for th...
متن کاملExtended Tower Number Field Sieve: A New Complexity for Medium Prime Case
In this paper, we extend the tower number field sieve (TNFS) proposed by Barbulescu, Gaudry, and Kleinjung in Asaicrypt 2015. Our generalization based on the JLSV algorithm (by Joux, Lercier, Smart, and Vercautern, Crypto 2006) shows that one can solve the discrete logarithm over the field FQ := Fpn in time complexity, LQ(1/3, (64/9) ), for p = LQ(`p) with some `p > 1/3. This should be compared...
متن کاملExtended Tower Number Field Sieve with Application to Finite Fields of Arbitrary Composite Extension Degree
In a recent work, Kim and Barbulescu (CRYPTO 2016) proposed an algorithm, called exTNFS, that improves asymptotic complexity for the discrete logarithm problems over Fpn in medium prime case, when the extension degree n = ηκ satisfies η, κ ∈ Z>1 and gcd(η, κ) = 1. Following to this work, Sarkar and Singh (preprint) recently observed that exTNFS algorithm also admits a variant that applies when ...
متن کامل