Looking beyond XTR

Bosma, Wieb; Hutton, James; Verheul, Eric R.

doi:10.1007/3-540-36178-2_3

Cited by 13 publications

(49 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While Lucas-based systems and XTR are essentially restricted to exponentiation, we are able to perform multiplication as well. We also disprove the open conjectures from [2], and give a new algebro-geometric interpretation of the approach in that paper and of LUC and XTR. …”

supporting

confidence: 56%

See 1 more Smart Citation

Torus-Based Cryptography

Rubin

Silverberg

2003

Advances in Cryptology - CRYPTO 2003

View full text Add to dashboard Cite

Abstract.We introduce the concept of torus-based cryptography, give a new public key system called CEILIDH, and compare it to other discrete log based systems including Lucas-based systems and XTR. Like those systems, we obtain small key sizes. While Lucas-based systems and XTR are essentially restricted to exponentiation, we are able to perform multiplication as well. We also disprove the open conjectures from [2], and give a new algebro-geometric interpretation of the approach in that paper and of LUC and XTR.

show abstract

supporting

confidence: 56%

“…We also show that a certain conjecture about algebraic tori has as a consequence new torus-based cryptosystems that would generalize and improve on CEILIDH and XTR. Further, we disprove the open conjectures from [2], and thereby show that the approach to generalizing XTR that was suggested in [2] cannot succeed.…”

Section: Introductionmentioning

confidence: 62%

Torus-Based Cryptography

Rubin

Silverberg

2003

Advances in Cryptology - CRYPTO 2003

View full text Add to dashboard Cite

show abstract

“…We now prove (2), one can also compute the prime factorizations of Φ p (p k ) and p k − 1 in time polynomial in . Let …”

Section: Reductionsmentioning

confidence: 88%

“…* There has been several researches on the torus-based cryptosystems [2], [7], [13]- [15], [17], and most of them are related to security arguments against subexponential attacks and to proposal for admissible parameters based on the arguments. On the other hand, there is few known asymptotic analysis on the hardness of the discrete logarithm problem over algebraic tori so far.…”

Section: Introductionmentioning

confidence: 99%

On the Complexity of Computing Discrete Logarithms over Algebraic Tori

Isobe

Koizumi

Nishigaki

et al. 2014

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYThis paper studies the complexity of computing discrete logarithms over algebraic tori. We show that the order certified version of the discrete logarithm problem over general finite fields (OCDL, in symbols) reduces to the discrete logarithm problem over algebraic tori (TDL, in symbols) with respect to the polynomial-time Turing reducibility. This reduction means that if the prime factorization can be computed in polynomial time, then TDL is equivalent to the discrete logarithm problem over general finite fields with respect to the Turing reducibility. key words: algebraic tori, order certified discrete logarithm, Turing reduction

show abstract

“…For n the product of the first k primes, φ(n)/n → 0 as k → ∞, so the savings get better and better. In [3,24], evidence that the techniques of [4] cannot generalize to arbitrary n was presented, and in [3,24], some specific versions of the conjecture in [4] made in [3] were shown to be false. Also in [24,25,23] it is shown that the group of order Φ n (q) is isomorphic to the well-studied algebraic torus T n (F q ) [30] and that a positive answer to the conjecture in [4] is possible if one can construct an efficient rational parameterization of T n (F q ).…”

Section: Introductionmentioning

confidence: 99%

Asymptotically Optimal Communication for Torus-Based Cryptography

Dijk

Woodruff²

2004

Advances in Cryptology – CRYPTO 2004

View full text Add to dashboard Cite

Abstract. We introduce a compact and efficient representation of elements of the algebraic torus. This allows us to design a new discretelog based public-key system achieving the optimal communication rate, partially answering the conjecture in [4]. For n the product of distinct primes, we construct efficient ElGamal signature and encryption schemes in a subgroup of F * q n in which the number of bits exchanged is only a φ(n)/n fraction of that required in traditional schemes, while the security offered remains the same. We also present a Diffie-Hellman key exchange protocol averaging only φ(n) log 2 q bits of communication per key. For the cryptographically important cases of n = 30 and n = 210, we transmit a 4/5 and a 24/35 fraction, respectively, of the number of bits required in XTR [14] and recent CEILIDH [24] cryptosystems.

show abstract

Looking beyond XTR

Cited by 13 publications

References 16 publications

Torus-Based Cryptography

Torus-Based Cryptography

On the Complexity of Computing Discrete Logarithms over Algebraic Tori

Asymptotically Optimal Communication for Torus-Based Cryptography

Contact Info

Product

Resources

About