{"title":"Batch point compression in the context of advanced pairing-based protocols","authors":"Dmitrii Koshelev","doi":"10.1007/s00200-023-00625-3","DOIUrl":null,"url":null,"abstract":"<div><p>This paper continues previous ones about compression of points on elliptic curves <span>\\(E_b\\!: y^2 = x^3 + b\\)</span> (with <i>j</i>-invariant 0) over a finite field <span>\\(\\mathbb {F}_{\\!q}\\)</span> of characteristic <span>\\(p > 3\\)</span>. It is shown in detail how any two (resp., three) points from <span>\\(E_b(\\mathbb {F}_{\\!q})\\)</span> can be quickly compressed to two (resp., three) elements of <span>\\(\\mathbb {F}_{\\!q}\\)</span> (apart from a few auxiliary bits) in such a way that the corresponding decompression stage requires to extract only one cubic (resp., sextic) root in <span>\\(\\mathbb {F}_{\\!q}\\)</span>. As a result, for many fields <span>\\(\\mathbb {F}_{\\!q}\\)</span> occurring in practice, the new compression-decompression methods are more efficient than the classical one with the two (resp., three) <i>x</i> or <i>y</i> coordinates of the points, which extracts two (resp., three) roots in <span>\\(\\mathbb {F}_{\\!q}\\)</span>. As a by-product, it is also explained how to sample uniformly at random two (resp., three) “independent” <span>\\(\\mathbb {F}_{\\!q}\\)</span>-points on <span>\\(E_b\\)</span> essentially at the cost of only one cubic (resp., sextic) root in <span>\\(\\mathbb {F}_{\\!q}\\)</span>. Finally, the cases of four and more points from <span>\\(E_b(\\mathbb {F}_{\\!q})\\)</span> are commented on as well.</p></div>","PeriodicalId":50742,"journal":{"name":"Applicable Algebra in Engineering Communication and Computing","volume":"36 4","pages":"611 - 629"},"PeriodicalIF":0.6000,"publicationDate":"2023-10-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Applicable Algebra in Engineering Communication and Computing","FirstCategoryId":"5","ListUrlMain":"https://link.springer.com/article/10.1007/s00200-023-00625-3","RegionNum":4,"RegionCategory":"工程技术","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS","Score":null,"Total":0}
引用次数: 0
Abstract
This paper continues previous ones about compression of points on elliptic curves \(E_b\!: y^2 = x^3 + b\) (with j-invariant 0) over a finite field \(\mathbb {F}_{\!q}\) of characteristic \(p > 3\). It is shown in detail how any two (resp., three) points from \(E_b(\mathbb {F}_{\!q})\) can be quickly compressed to two (resp., three) elements of \(\mathbb {F}_{\!q}\) (apart from a few auxiliary bits) in such a way that the corresponding decompression stage requires to extract only one cubic (resp., sextic) root in \(\mathbb {F}_{\!q}\). As a result, for many fields \(\mathbb {F}_{\!q}\) occurring in practice, the new compression-decompression methods are more efficient than the classical one with the two (resp., three) x or y coordinates of the points, which extracts two (resp., three) roots in \(\mathbb {F}_{\!q}\). As a by-product, it is also explained how to sample uniformly at random two (resp., three) “independent” \(\mathbb {F}_{\!q}\)-points on \(E_b\) essentially at the cost of only one cubic (resp., sextic) root in \(\mathbb {F}_{\!q}\). Finally, the cases of four and more points from \(E_b(\mathbb {F}_{\!q})\) are commented on as well.
期刊介绍:
Algebra is a common language for many scientific domains. In developing this language mathematicians prove theorems and design methods which demonstrate the applicability of algebra. Using this language scientists in many fields find algebra indispensable to create methods, techniques and tools to solve their specific problems.
Applicable Algebra in Engineering, Communication and Computing will publish mathematically rigorous, original research papers reporting on algebraic methods and techniques relevant to all domains concerned with computers, intelligent systems and communications. Its scope includes, but is not limited to, vision, robotics, system design, fault tolerance and dependability of systems, VLSI technology, signal processing, signal theory, coding, error control techniques, cryptography, protocol specification, networks, software engineering, arithmetics, algorithms, complexity, computer algebra, programming languages, logic and functional programming, algebraic specification, term rewriting systems, theorem proving, graphics, modeling, knowledge engineering, expert systems, and artificial intelligence methodology.
Purely theoretical papers will not primarily be sought, but papers dealing with problems in such domains as commutative or non-commutative algebra, group theory, field theory, or real algebraic geometry, which are of interest for applications in the above mentioned fields are relevant for this journal.
On the practical side, technology and know-how transfer papers from engineering which either stimulate or illustrate research in applicable algebra are within the scope of the journal.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
