Arithmetic of pairings on algebraic curves for cryptography. (Étude de l'arithmétique des couplages sur les courbes algébriques pour la cryptographie)

نویسنده

  • Aurore Guillevic
چکیده

Since 2000 pairings became a very useful tool to design new protocols in cryptography. Short signaturesand identity-based encryption became also practical thanks to these pairings.This thesis contains two parts. One part is about optimized pairing implementation on different ellip-tic curves according to the targeted protocol. Pairings are implemented on supersingular elliptic curvesin large characteristic and on Barreto-Naehrig curves. The pairing library developed at Thales is usedin a broadcast encryption scheme prototype. The prototype implements pairings over Barreto-Naehrigcurves. Pairings over supersingular curves are much slower and have larger parameters. However thesecurves are interesting when implementing protocols which use composite-order elliptic curves (the grouporder is an RSA modulus). We implement two protocols that use pairings on composite-order groupsand compare the benchmarks and the parameter size with their counterpart in a prime-order setting. Thecomposite-order case is 30 up to 250 times much slower according to the considered step in the protocols:the efficiency difference in between the two cases is very important.A second part in this thesis is about two families of genus 2 curves. Their Jacobians are isogenousto the product of two elliptic curves over a small extension field. The properties of elliptic curves canbe translated to the Jacobians thanks to this isogeny. Point counting is as easy as for elliptic curves inthis case. We also construct two endomorphisms both on the Jacobians and the elliptic curves. These en-domorphisms can be used for scalar multiplication improved with a four-dimensional Gallant-Lambert-Vanstone method.keywords: elliptic curves, genus 2 curves, endomorphisms, pairings, implementation, composite-order groups.tel-00921940,version1-22Dec2013

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

A Crt Algorithm for Constructing Genus 2 Curves over Finite Fields

— We present a new method for constructing genus 2 curves over a finite field Fn with a given number of points on its Jacobian. This method has important applications in cryptography, where groups of prime order are used as the basis for discrete-log based cryptosystems. Our algorithm provides an alternative to the traditional CM method for constructing genus 2 curves. For a quartic CM field K ...

متن کامل

ON UNRAMIFIED COVERINGS OF MAXIMAL CURVES by

— We investigate unramified coverings of algebraic curves over a finite field, specially in relation with maximal curves and the question whether maximal curves are covered by the Hermitian curve. Résumé (Sur les revêtements non-ramifiés des courbes maximales). — Nous étudions les revêtements non-ramifiés de courbes algébriques sur un corps fini, en particulier de courbes maximales. Nous nous p...

متن کامل

ON CURVES OVER FINITE FIELDS by

— In these notes we present some basic results of the Theory of Curves over Finite Fields. Assuming a famous theorem of A. Weil, which bounds the number of solutions in a finite field (i.e., number of rational points) in terms of the genus and the cardinality of the finite field, we then prove several other related bounds (bounds of Serre, Ihara, Stohr-Voloch, etc.). We then treat Maximal Curve...

متن کامل

Denominators of Igusa Class Polynomials

— In [22], the authors proved an explicit formula for the arithmetic intersection number (CM(K).G1) on the Siegel moduli space of abelian surfaces, under some assumptions on the quartic CM field K. These intersection numbers allow one to compute the denominators of Igusa class polynomials, which has important applications to the construction of genus 2 curves for use in cryptography. One of the...

متن کامل

Complete Program Synthesis for Linear Arithmetics

Program synthesis, or their fragments, is a way to write programs by providing only its meaning, without worrying about the implementation details. It avoids the drawback of writing sequential code, which might be di cult to check, error-prone or tedious. Our contribution is to provide complete program synthesis algorithms with unbounded data types in decidable theories. We present synthesis al...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 2013