ARITHMETIC ON NONSUPERSINGULAR ELLIPTIC-CURVES

被引:0
作者
BETH, T [1 ]
SCHAEFER, F [1 ]
机构
[1] UNIV KARLSRUHE, INST ALGORITHMEN & KOGNIT SYST, W-7500 KARLSRUHE 1, GERMANY
来源
LECTURE NOTES IN COMPUTER SCIENCE | 1991年 / 539卷
关键词
D O I
暂无
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
We discuss the different possibilities to choose elliptic curves over different finite fields with respect to application for public key cryptosystems. In 1985 it was proposed to use the multiplication on elliptic curves for the implementation of one way functions. Supersingular curves E with #E(F(q)) = q + 1 elements were proposed at that time. New results due to A. Menezes, T. Okamoto and S. Vanstone show, that these curves are not well suited for that purpose. They can be attacked with a new division algorithm recently presented. However, by using non-supersingular elliptic curves this attack can be avoided. We show how to construct suitable curves. Furthermore some aspects of a VLSI-implementation for such a cryptosystem are discussed.
引用
收藏
页码:74 / 81
页数:8
相关论文
共 15 条
[1]   ALGORITHM ENGINEERING FOR PUBLIC KEY ALGORITHMS [J].
BETH, T ;
GOLLMANN, D .
IEEE JOURNAL ON SELECTED AREAS IN COMMUNICATIONS, 1989, 7 (04) :458-466
[2]  
BETH T, 1990, ARITHMETICS ELLIPTIC, P28
[3]  
BETH T, IN PRESS P EUROCRYPT
[4]   FAST EVALUATION OF LOGARITHMS IN FIELDS OF CHARACTERISTIC 2 [J].
COPPERSMITH, D .
IEEE TRANSACTIONS ON INFORMATION THEORY, 1984, 30 (04) :587-594
[5]  
Deuring M., 1941, ABH MATH SEM HAMBURG, V14, P197, DOI 10.1007/BF02940746
[6]   NEW DIRECTIONS IN CRYPTOGRAPHY [J].
DIFFIE, W ;
HELLMAN, ME .
IEEE TRANSACTIONS ON INFORMATION THEORY, 1976, 22 (06) :644-654
[7]   A PUBLIC KEY CRYPTOSYSTEM AND A SIGNATURE SCHEME BASED ON DISCRETE LOGARITHMS [J].
ELGAMAL, T .
IEEE TRANSACTIONS ON INFORMATION THEORY, 1985, 31 (04) :469-472
[8]  
KOBLITZ N, 1987, MATH COMPUT, V48, P203, DOI 10.1090/S0025-5718-1987-0866109-5
[9]  
MENEZES A, 1990, LECT NOTES COMPUT SC, V453, P2
[10]  
MENEZES A, 1991, 22ND P ANN ACM S THE, P80
12