addition laws on elliptic curves d j bernstein university
play

Addition laws on elliptic curves D. J. Bernstein University of - PDF document

Mar 17, 2023 •334 likes •983 views

Addition laws on elliptic curves D. J. Bernstein University of Illinois at Chicago Joint work with: Tanja Lange Technische Universiteit Eindhoven 2007.01.10, 09:00 (yikes!), Leiden University, part of Mathematics: Algorithms and

  1. Addition laws on elliptic curves D. J. Bernstein University of Illinois at Chicago Joint work with: Tanja Lange Technische Universiteit Eindhoven

  2. 2007.01.10, 09:00 (yikes!), Leiden University, part of “Mathematics: Algorithms and Proofs” week at Lorentz Center: Harold Edwards speaks on “Addition on elliptic curves.” Edwards

  3. � � � � What we think when we hear “addition on elliptic curves”: y � P + Q x � � � � � Q � � � � P � � � � � � � � � � � � � y 2 � 5 xy = x 3 � 7. Addition on

  4. � = ( y 2 � y 1 ) = ( x 2 � x 1 ), x 3 = � 2 � 5 � � x 1 � x 2 , y 3 = 5 x 3 � ( y 1 + � ( x 3 � x 1 )) ) ( x 1 ; y 1 ) + ( x 2 ; y 2 ) = ( x 3 ; y 3 ).

  5. � = ( y 2 � y 1 ) = ( x 2 � x 1 ), x 3 = � 2 � 5 � � x 1 � x 2 , y 3 = 5 x 3 � ( y 1 + � ( x 3 � x 1 )) ) ( x 1 ; y 1 ) + ( x 2 ; y 2 ) = ( x 3 ; y 3 ). x 1 x 2 . Oops, this requires 6 = � = (5 y 1 + 3 x 2 = (2 y 1 � 5 x 1 ), 1 ) x 3 = � 2 � 5 � � 2 x 1 , y 3 = 5 x 3 � ( y 1 + � ( x 3 � x 1 )) ) ( x 1 ; y 1 ) + ( x 1 ; y 1 ) = ( x 3 ; y 3 ).

  6. � = ( y 2 � y 1 ) = ( x 2 � x 1 ), x 3 = � 2 � 5 � � x 1 � x 2 , y 3 = 5 x 3 � ( y 1 + � ( x 3 � x 1 )) ) ( x 1 ; y 1 ) + ( x 2 ; y 2 ) = ( x 3 ; y 3 ). x 1 x 2 . Oops, this requires 6 = � = (5 y 1 + 3 x 2 = (2 y 1 � 5 x 1 ), 1 ) x 3 = � 2 � 5 � � 2 x 1 , y 3 = 5 x 3 � ( y 1 + � ( x 3 � x 1 )) ) ( x 1 ; y 1 ) + ( x 1 ; y 1 ) = ( x 3 ; y 3 ). y 1 6 = 5 x 1 . Oops, this requires 2 x 1 ; y 1 ) + ( x 1 ; 5 x 1 � y 1 ) = 1 . ( x 1 ; y 1 ) + 1 = ( x 1 ; y 1 ). ( 1 + ( x 1 ; y 1 ) = ( x 1 ; y 1 ). 1 + 1 = 1 .

  7. Despite 09:00, despite Dutch trains, we attend the talk. Edwards says: Euler–Gauss addition law x 2 + y 2 = 1 � x 2 y 2 is on x 1 ; y 1 ) + ( x 2 ; y 2 ) = ( x 3 ; y 3 ) with ( x 1 y 2 + y 1 x 2 x 3 = � x 1 x 2 y 1 y 2 , 1 y 1 y 2 � x 1 x 2 y 3 = x 1 x 2 y 1 y 2 . 1 + Euler Gauss

  8. Edwards, continued: Every elliptic curve over Q is birationally equivalent to x 2 + y 2 = a 2 (1 + x 2 y 2 ) a 2 Q � f 0 ; � 1 ; � i g . for some � the (Euler–Gauss curve “lemniscatic elliptic curve.”)

  9. Edwards, continued: Every elliptic curve over Q is birationally equivalent to x 2 + y 2 = a 2 (1 + x 2 y 2 ) a 2 Q � f 0 ; � 1 ; � i g . for some � the (Euler–Gauss curve “lemniscatic elliptic curve.”) x 2 + y 2 = a 2 (1 + x 2 y 2 ) has neutral element (0 ; a ), addition x 1 ; y 1 ) + ( x 2 ; y 2 ) = ( x 3 ; y 3 ) with ( x 1 y 2 + y 1 x 2 x 3 = a (1 + x 1 x 2 y 1 y 2 ), y 1 y 2 � x 1 x 2 y 3 = a (1 � x 1 x 2 y 1 y 2 ).

  10. Addition law is “unified”: x 1 ; y 1 ) + ( x 1 ; y 1 ) = ( x 3 ; y 3 ) with ( x 1 y 1 + y 1 x 1 x 3 = a (1 + x 1 x 1 y 1 y 1 ), y 1 y 1 � x 1 x 1 y 3 = a (1 � x 1 x 1 y 1 y 1 ). Have seen unification before. e.g., 1986 Chudnovsky 2 : 17 M unified addition formulas S : C : D : Z ) on Jacobi’s for ( S 2 + C 2 = Z 2 , k 2 S 2 + D 2 = Z 2 . Chudnovsky2 Jacobi

  11. � 09:30, 2007.01.10, Bernstein–Lange: Edwards addition law with X : Y : Z ), standard projective ( standard Karatsuba optimization, common-subexp elimination: 10 M + 1 S + 1 A . Faster than anything seen before! M : field multiplication. S : field squaring. a . A : multiplication by Karatsuba

  12. Edwards paper: Bulletin AMS 44 (2007), 393–422. Many papers in 2007, 2008, 2009 have now used Edwards curves to set speed records for critical computations in elliptic-curve cryptography. Also new speed records for ECM factorization: see Lange’s talk here on Saturday. Also expect speedups in verifying elliptic-curve primality proofs.

  13. Back to B.–L., early 2007. x 2 + y 2 = a 2 (1 + x 2 y 2 ) Edwards doesn’t rationally include x 2 + y 2 = 1 � x 2 y 2 . Euler–Gauss Common generalization, presumably more curves over Q , q : presumably more curves over F x 2 + y 2 = 2 (1 + dx 2 y 2 ) has neutral element (0 ; ), addition x 1 ; y 1 ) + ( x 2 ; y 2 ) = ( x 3 ; y 3 ) with ( x 1 y 2 + y 1 x 2 x 3 = (1 + dx 1 x 2 y 1 y 2 ), y 1 y 2 � x 1 x 2 y 3 = (1 � dx 1 x 2 y 1 y 2 ).

  14. = 1 Convenient to take for speed, simplicity. Covers same set of curves up to birational equivalence: ; d ) � (1 ; d 4 ). ( x 2 + y 2 = 1 + dx 2 y 2 has neutral element (0 ; 1), addition x 1 ; y 1 ) + ( x 2 ; y 2 ) = ( x 3 ; y 3 ) with ( x 1 y 2 + y 1 x 2 x 3 = dx 1 x 2 y 1 y 2 , 1 + y 1 y 2 � x 1 x 2 y 3 = � dx 1 x 2 y 1 y 2 . 1

  15. Hmmm, does this really work? Easiest way to check the generalized addition law: pull out the computer! p ; e.g. 47. Pick a prime d 2 F p . Pick curve param Enumerate all affine points x; y ) 2 F � F p p satisfying ( x 2 + y 2 = 1 + dx 2 y 2 . Use generalized addition law to make an addition table for all pairs of points. Check associativity etc.

  16. Warning: Don’t expect complete addition table. Addition law works generically but can fail for some exceptional pairs of points. Unified addition law works for generic additions and for generic doublings but can fail for some exceptional pairs of points. Basic problem: Denominators � dx 1 x 2 y 1 y 2 can be zero. 1

  17. Even if we switched to projective coordinates, would expect addition law to fail for some points, producing (0 : 0 : 0). 1995 Bosma–Lenstra theorem: “The smallest cardinality of a complete system of addition laws E equals two.” on Bosma Lenstra

  18. p = 47, d = 25: Try � dx 1 x 2 y 1 y 2 denominator 1 is nonzero for most points x 1 ; y 1 ), ( x 2 ; y 2 ) on curve. ( Edwards addition law is associative whenever defined.

  19. p = 47, d = 25: Try � dx 1 x 2 y 1 y 2 denominator 1 is nonzero for most points x 1 ; y 1 ), ( x 2 ; y 2 ) on curve. ( Edwards addition law is associative whenever defined. p = 47, d = � 1: Try � dx 1 x 2 y 1 y 2 denominator 1 is nonzero for all points x 1 ; y 1 ), ( x 2 ; y 2 ) on curve. ( Addition law is a group law!

  20. p = 47, d = 25: Try � dx 1 x 2 y 1 y 2 denominator 1 is nonzero for most points x 1 ; y 1 ), ( x 2 ; y 2 ) on curve. ( Edwards addition law is associative whenever defined. p = 47, d = � 1: Try � dx 1 x 2 y 1 y 2 denominator 1 is nonzero for all points x 1 ; y 1 ), ( x 2 ; y 2 ) on curve. ( Addition law is a group law! vs. Z60T

  21. 2007 Bernstein–Lange completeness proof d : for all non-square x 2 y 2 dx 2 y 2 If 1 + 1 = 1 + x 2 y 2 dx 2 1 1 y 2 and 2 + 2 = 1 + dx 1 x 2 y 1 y 2 = � 1 2 2 and

  22. 2007 Bernstein–Lange completeness proof d : for all non-square x 2 y 2 dx 2 y 2 If 1 + 1 = 1 + x 2 y 2 dx 2 1 1 y 2 and 2 + 2 = 1 + dx 1 x 2 y 1 y 2 = � 1 2 2 and dx 2 y 2 x 2 + y 2 ) 2 then 1 ( 1 dx 2 y 2 x 2 y 2 2 + 2 x 2 y 2 ) = 1 ( 2 + dx 2 1 y 2 dx 2 y 2 x 2 y 2 ) = 1 ( 2 + 1 + 2 1 2

  23. 2007 Bernstein–Lange completeness proof d : for all non-square x 2 y 2 dx 2 y 2 If 1 + 1 = 1 + x 2 y 2 dx 2 1 1 y 2 and 2 + 2 = 1 + dx 1 x 2 y 1 y 2 = � 1 2 2 and dx 2 y 2 x 2 + y 2 ) 2 then 1 ( 1 dx 2 y 2 x 2 y 2 2 + 2 x 2 y 2 ) = 1 ( 2 + dx 2 1 y 2 dx 2 y 2 x 2 y 2 ) = 1 ( 2 + 1 + 2 d 2 x 2 1 y 2 x 2 2 y 2 2 + dx 2 y 2 1 +2 dx 2 y 2 x 2 y 2 = 1 1 2 1 1 1

  24. 2007 Bernstein–Lange completeness proof d : for all non-square x 2 y 2 dx 2 y 2 If 1 + 1 = 1 + x 2 y 2 dx 2 1 1 y 2 and 2 + 2 = 1 + dx 1 x 2 y 1 y 2 = � 1 2 2 and dx 2 y 2 x 2 + y 2 ) 2 then 1 ( 1 dx 2 y 2 x 2 y 2 2 + 2 x 2 y 2 ) = 1 ( 2 + dx 2 1 y 2 dx 2 y 2 x 2 y 2 ) = 1 ( 2 + 1 + 2 d 2 x 2 1 y 2 x 2 2 y 2 2 + dx 2 y 2 1 +2 dx 2 y 2 x 2 y 2 = 1 dx 2 1 y 2 2 � 2 x 1 1 y 1 1 1 = 1 + 1 1

  25. 2007 Bernstein–Lange completeness proof d : for all non-square x 2 y 2 dx 2 y 2 If 1 + 1 = 1 + x 2 y 2 dx 2 1 1 y 2 and 2 + 2 = 1 + dx 1 x 2 y 1 y 2 = � 1 2 2 and dx 2 y 2 x 2 + y 2 ) 2 then 1 ( 1 dx 2 y 2 x 2 y 2 2 + 2 x 2 y 2 ) = 1 ( 2 + dx 2 1 y 2 dx 2 y 2 x 2 y 2 ) = 1 ( 2 + 1 + 2 d 2 x 2 1 y 2 x 2 2 y 2 2 + dx 2 y 2 1 +2 dx 2 y 2 x 2 y 2 = 1 dx 2 1 y 2 2 � 2 x 1 1 y 1 1 1 = 1 + 1 1 x 2 y 2 � 2 x 1 y 1 = ( x 1 � y 1 ) 2 . = 1 + 1

  26. 2007 Bernstein–Lange completeness proof d : for all non-square x 2 y 2 dx 2 y 2 If 1 + 1 = 1 + x 2 y 2 dx 2 1 1 y 2 and 2 + 2 = 1 + dx 1 x 2 y 1 y 2 = � 1 2 2 and dx 2 y 2 x 2 + y 2 ) 2 then 1 ( 1 dx 2 y 2 x 2 y 2 2 + 2 x 2 y 2 ) = 1 ( 2 + dx 2 1 y 2 dx 2 y 2 x 2 y 2 ) = 1 ( 2 + 1 + 2 d 2 x 2 1 y 2 x 2 y 2 2 2 + dx 2 y 2 1 +2 dx 2 y 2 x 2 y 2 = 1 dx 2 1 y 2 2 � 2 x 1 1 y 1 1 1 = 1 + 1 1 x 2 y 2 � 2 x 1 y 1 = ( x 1 � y 1 ) 2 . = 1 + 1 x 2 + y 2 x 2 � y 2 Have 6 = 0 or 6 = 0; d is a square. Q.E.D. either way

  27. 1995 Bosma–Lenstra theorem: “The smallest cardinality of a complete system of addition laws E equals two.” on

  28. 1995 Bosma–Lenstra theorem: “The smallest cardinality of a complete system of addition laws E equals two.” : : : meaning: on Any addition formula E for a Weierstrass curve in projective coordinates must have exceptional cases E ( k ) � E ( k ), where in k = algebraic closure of k .

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Complete addition laws for all elliptic curves over finite fields D. J. Bernstein University of

Complete addition laws for all elliptic curves over finite fields D. J. Bernstein University of

Complete addition laws for all elliptic curves over finite fields D. J. Bernstein University of Illinois at Chicago NSF ITR0716498 Joint work with: Tanja Lange Technische Universiteit Eindhoven Memories of graduate school Early 1990s,

768 views • 40 slides
Complete addition laws for elliptic curves D. J. Bernstein University of Illinois at Chicago

Complete addition laws for elliptic curves D. J. Bernstein University of Illinois at Chicago

Complete addition laws for elliptic curves D. J. Bernstein University of Illinois at Chicago Tanja Lange Technische Universiteit Eindhoven Weierstrass coordinates k with 2 Fix a field 6 = 0. a; b 2 k with 4 a 3 + 27 b 2 Fix 6 = 0.

1.02k views • 50 slides
Efficient arithmetic on elliptic curves in large characteristic D. J. Bernstein University of

Efficient arithmetic on elliptic curves in large characteristic D. J. Bernstein University of

Efficient arithmetic on elliptic curves in large characteristic D. J. Bernstein University of Illinois at Chicago Fix a field and an elliptic curve. e.g. NIST P-224: the elliptic curve a 6 over Z =p . y 2 = x 3 3 x + p = 2 224 2 96 + 1

417 views • 23 slides
Edwards coordinates for elliptic curves, part 2 D. J. Bernstein University of Illinois at

Edwards coordinates for elliptic curves, part 2 D. J. Bernstein University of Illinois at

Edwards coordinates for elliptic curves, part 2 D. J. Bernstein University of Illinois at Chicago (Joint work with Tanja Lange) Cohen Schoof ECPC Lenstra ECM Miller Bosma Koblitz Goldwasser/Kilian ECC

294 views • 27 slides
Faster rho for elliptic curves D. J. Bernstein University of Illinois at Chicago Breaking

Faster rho for elliptic curves D. J. Bernstein University of Illinois at Chicago Breaking

Faster rho for elliptic curves D. J. Bernstein University of Illinois at Chicago Breaking ECC2K-130, joint work by many authors: ECDL attack in progress against Koblitz curve over F 2 131 using many CPUs, GPUs, FPGAs. Vertically

288 views • 17 slides
The elliptic-curve zoo D. J. Bernstein University of Illinois at Chicago EC point counting 1983

The elliptic-curve zoo D. J. Bernstein University of Illinois at Chicago EC point counting 1983

The elliptic-curve zoo D. J. Bernstein University of Illinois at Chicago EC point counting 1983 (published 1985) Schoof: Algorithm to count points on elliptic curves over finite fields. Input: prime power q ; F q such that 6(4

784 views • 47 slides
New Curves in DNSSEC Ond ej Sur, CZ.NIC SafeCurves(.cr.yp.to) Work by Daniel J. Bernstein

New Curves in DNSSEC Ond ej Sur, CZ.NIC SafeCurves(.cr.yp.to) Work by Daniel J. Bernstein

New Curves in DNSSEC Ond ej Sur, CZ.NIC SafeCurves(.cr.yp.to) Work by Daniel J. Bernstein and Tanja Lange Difference between security of: Elliptic-Curve Cryptography (ECC) Elliptic-Curve Discrete-Logarithm Problem (ECDLP)

384 views • 6 slides
ELLIPTIC CURVES By Jessica and Sushi WHAT ARE ELLIPTIC CURVES?! ADDING POINTS! Adding points

ELLIPTIC CURVES By Jessica and Sushi WHAT ARE ELLIPTIC CURVES?! ADDING POINTS! Adding points

ELLIPTIC CURVES By Jessica and Sushi WHAT ARE ELLIPTIC CURVES?! ADDING POINTS! Adding points is not the same addition as 1+1=2. The addition of points is the production of a third point using two already known points Properties of

503 views • 22 slides
Rational Points on Modular Elliptic Curves I. Elliptic Curves Hedrick Lecture Series MAA

Rational Points on Modular Elliptic Curves I. Elliptic Curves Hedrick Lecture Series MAA

Rational Points on Modular Elliptic Curves I. Elliptic Curves Hedrick Lecture Series MAA MathFest Boulder, Colorado August 2003 http://www.math.mcgill.ca/darmon /slides/slides.html Elliptic Curves Definition : An elliptic curve over the

494 views • 26 slides
Complete addition formulas for prime order elliptic curves Joost Renes 1 Craig Costello 2 Lejla

Complete addition formulas for prime order elliptic curves Joost Renes 1 Craig Costello 2 Lejla

Complete addition formulas for prime order elliptic curves Joost Renes 1 Craig Costello 2 Lejla Batina 1 1 Radboud University, Digital Security, Nijmegen, The Netherlands j.renes,lejla@cs.ru.nl 2 Microsoft Research, Redmond, USA

481 views • 27 slides
Weierstra Equations 2 d 4 16 ( 1 t 2 / 4 ) Singular points

Weierstra Equations 2 d 4 16 ( 1 t 2 / 4 ) Singular points

Elliptic curves over F q Introduction History length of ellipses why Elliptic curves? Fields Weierstra Equations Singular points The Discriminant E LLIPTIC CURVES OVER FINITE FIELDS Elliptic curves / F 2 Elliptic curves / F 3 The sum of

660 views • 32 slides
Complete addition formulas for prime order elliptic curves Joost Renes 1 Craig Costello 2 Lejla

Complete addition formulas for prime order elliptic curves Joost Renes 1 Craig Costello 2 Lejla

Complete addition formulas for prime order elliptic curves Joost Renes 1 Craig Costello 2 Lejla Batina 1 j.renes@cs.ru.nl 1 Radboud University, Nijmegen, The Netherlands 2 Microsoft Research, Redmond, USA 16 February 2016 16 February 2016 1 /

642 views • 62 slides
SafeCurves: Cryptography choosing safe curves for Public-key signatures: elliptic-curve

SafeCurves: Cryptography choosing safe curves for Public-key signatures: elliptic-curve

SafeCurves: Cryptography choosing safe curves for Public-key signatures: elliptic-curve cryptography e.g., RSA, DSA, ECDSA. Daniel J. Bernstein Some uses: signed OS updates, University of Illinois at Chicago & SSL certificates,

1.85k views • 165 slides
Faltings Heights of CM Elliptic Curves Tyler Genao Florida Atlantic University In collaboration

Faltings Heights of CM Elliptic Curves Tyler Genao Florida Atlantic University In collaboration

Faltings Heights of CM Elliptic Curves Tyler Genao Florida Atlantic University In collaboration with Adrian Barquero-Sanchez, Lindsay Cadwallader, Olivia Cannon, Riad Masri Tyler Genao Faltings Heights of CM Elliptic Curves Elliptic Curves

571 views • 41 slides
Forms of elliptic curves Wouter Castryck Forms of elliptic curves First definitions Well-known

Forms of elliptic curves Wouter Castryck Forms of elliptic curves First definitions Well-known

Well-known forms of elliptic curves Toric forms of elliptic curves Forms of elliptic curves Wouter Castryck Forms of elliptic curves First definitions Well-known forms of elliptic curves Projective coordinates Toric forms of elliptic curves

478 views • 46 slides
Verifiably random secure curves Daniel J. Bernstein Tung Chou Chitchanok Chuengsatiansup

Verifiably random secure curves Daniel J. Bernstein Tung Chou Chitchanok Chuengsatiansup

Verifiably random secure curves Daniel J. Bernstein Tung Chou Chitchanok Chuengsatiansup Andreas H ulsing Tanja Lange Ruben Niederhagen Christine van Vredendaal May 13, 2014 NSA/NIST FUD The NIST elliptic curves are behind the state of

433 views • 26 slides
Verbal Self Defense Why improve your verbal self-defense? Goal: Your goal is to stand in your

Verbal Self Defense Why improve your verbal self-defense? Goal: Your goal is to stand in your

Verbal Self Defense Why improve your verbal self-defense? Goal: Your goal is to stand in your own truth. Be yourself, dont hide. Your goal is not to change someone elses mind. The more that you speak for yourself, the more power

999 views • 21 slides
Information Security Identification and authentication Advanced User Authentication I 2018-02-02

Information Security Identification and authentication Advanced User Authentication I 2018-02-02

Information Security Identification and authentication Advanced User Authentication I 2018-02-02 Amund Hunstad Guest Lecturer, amund@foi.se Agenda for this part of the course Background Statistics in user authentication Biometric systems

568 views • 41 slides
Systematic Reviews 8 March 2007 Simon Gates Contents Reviewing of research Why we need

Systematic Reviews 8 March 2007 Simon Gates Contents Reviewing of research Why we need

Systematic Reviews 8 March 2007 Simon Gates Contents Reviewing of research Why we need reviews Traditional narrative reviews Systematic reviews Components of systematic reviews Conclusions Key reference Systematic

793 views • 40 slides
Novel insights targeting inflammation in CVD: the LoDoCo 2 trial Alkmaar, The Netherlands Jan

Novel insights targeting inflammation in CVD: the LoDoCo 2 trial Alkmaar, The Netherlands Jan

Novel insights targeting inflammation in CVD: the LoDoCo 2 trial Alkmaar, The Netherlands Jan Hein Cornel, MD, PhD Nijmegen, The Netherlands Professor of Cardiology Disclosures Grant from ZonMw and Dutch heart foundation. Further LDL-C

521 views • 34 slides
Applications of modules on unital quantales P . Eklund, U. Hhle, J. Kortelainen LINZ 2017,

Applications of modules on unital quantales P . Eklund, U. Hhle, J. Kortelainen LINZ 2017,

Motivation Three-valuedness as a starting point for many-valuedness Actions Health classifications Conclusion Applications of modules on unital quantales P . Eklund, U. Hhle, J. Kortelainen LINZ 2017, Austria February 710, 2017

1.02k views • 57 slides
HMS Research Administrators Open Forum October 9, 2019 Faculty Reporting on Federal Awards

HMS Research Administrators Open Forum October 9, 2019 Faculty Reporting on Federal Awards

HMS Research Administrators Open Forum October 9, 2019 Faculty Reporting on Federal Awards Rachel Cahoon HMS Chief of Research Administration Federal Reporting Requirements Reminders of NIH Policies on Other Support and on Policies

377 views • 8 slides
1 TIVI Phase One-Set T one & Rules Introductions Set the tone for the interview

1 TIVI Phase One-Set T one & Rules Introductions Set the tone for the interview

Trauma Informed Victim Interviews (TIVI) for the Justice System Part Two Battered Womens Justice Project January 11, 2019 This project was supported by Grant No. 2015 TA AX K027 awarded by the Office on Violence Against Women,

338 views • 9 slides
Crucial Problems of Nuclear Power Prof. Michael Golay

Crucial Problems of Nuclear Power Prof. Michael Golay

Crucial Problems of Nuclear Power Prof. Michael Golay golay@mit.edu Regula<on of prolifera<on risks of nuclear energy systems Quan<fica<on of

215 views • 3 slides

More recommend