A Taxonomy of Pairing-Friendly Elliptic Curves

被引：238

作者：

Freeman, David ^{[1
,2
]}

Scott, Michael ^{[3
]}

Teske, Edlyn ^{[4
]}

机构：

[1] CWI, NL-1098 XG Amsterdam, Netherlands

[2] Leiden Univ, NL-1098 XG Amsterdam, Netherlands

[3] Dublin City Univ, Sch Comp Applicat, Dublin 9, Ireland

[4] Univ Waterloo, Dept Combinator & Optimizat, Waterloo, ON N2L 3G1, Canada

来源：

JOURNAL OF CRYPTOLOGY | 2010年 / 23卷 / 02期

基金：

美国国家科学基金会; 爱尔兰科学基金会;

关键词：

Elliptic curves; Pairing-based cryptosystems; Embedding degree; Efficient implementation; ABELIAN-VARIETIES; DIFFIE-HELLMAN; FINITE-FIELDS; COMPUTATION; LOGARITHMS; CRYPTOGRAPHY; ISOMORPHISM; ALGORITHMS; SIGNATURES; ISOGENIES;

D O I：

10.1007/s00145-009-9048-z

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

Elliptic curves with small embedding degree and large prime-order subgroup are key ingredients for implementing pairing-based cryptographic systems. Such "pairing-friendly" curves are rare and thus require specific constructions. In this paper we give a single coherent framework that encompasses all of the constructions of pairing-friendly elliptic curves currently existing in the literature. We also include new constructions of pairing-friendly curves that improve on the previously known constructions for certain embedding degrees. Finally, for all embedding degrees up to 50, we provide recommendations as to which pairing-friendly curves to choose to best satisfy a variety of performance and security requirements.

引用

页码：224 / 280

页数：57

共 88 条

[61]

Menezes A.J., 1993, ELLIPTIC CURVE PUBLI

[62] REDUCING ELLIPTIC CURVE LOGARITHMS TO LOGARITHMS IN A FINITE-FIELD [J].

MENEZES, AJ ;

OKAMOTO, T ;

VANSTONE, SA .

IEEE TRANSACTIONS ON INFORMATION THEORY, 1993, 39 (05) :1639-1646

[63] The Weil pairing, and its efficient calculation [J].

Miller, VS .

JOURNAL OF CRYPTOLOGY, 2004, 17 (04) :235-261

[64]

Miyaji A, 2001, IEICE T FUND ELECTR, VE84A, P1234

[65]

Morain F, 1997, UTILITAS MATHEMATICA, V52, P241

[66]

MURPHY A, 2005302 CRYPT

[67]

Naehrig M, 2008, LECT NOTES COMPUT SC, V5023, P371

[68]

ODLYZKO AM, 1985, LECT NOTES COMPUT SC, V209, P224

[69] A comparison of MNT curves and supersingular curves [J].

Page, D. ;

Smart, N. P. ;

Vercauteren, F. .

APPLICABLE ALGEBRA IN ENGINEERING COMMUNICATION AND COMPUTING, 2006, 17 (05) :379-392

[70]

Paterson KG, 2002, ELECTRON LETT, V38, P1025, DOI [10.1049/el:20020682, 10.1049/el:20026682]

← 1 2 3 4 5 6 7 8 9 →