hyper and elliptic curve clock r the commutative group x
play

Hyper-and-elliptic-curve Clock( R ): the commutative group ( x; y - PowerPoint PPT Presentation

Aug 26, 2023 •414 likes •1.43k views

Hyper-and-elliptic-curve Clock( R ): the commutative group ( x; y ) R R : x 2 + y 2 = 1 cryptography under the operations Daniel J. Bernstein 0: () (0 ; 1); University of Illinois at Chicago &

  1. � � Hyper-and-elliptic-curve Clock( R ): the commutative group ( x; y ) ∈ R × R : x 2 + y 2 = 1 ˘ ¯ cryptography under the operations Daniel J. Bernstein “0”: () �→ (0 ; 1); University of Illinois at Chicago & “ − ”: ( x; y ) �→ ( − x; y ); Technische Universiteit Eindhoven “+”: ( x 1 ; y 1 ) ; ( x 2 ; y 2 ) �→ Includes recent joint work with: ( x 1 y 2 + y 1 x 2 ; y 1 y 2 − x 1 x 2 ). Tanja Lange y Technische Universiteit Eindhoven neutral = (0 ; 1) • cr.yp.to/papers.html#hyperand P 1 = ( x 1 ; y 1 ) • ✂ ✂ ✂ P 2 = ( x 2 ; y 2 ) ✂ • ✐ ✂ ✐ ✐ ✐ ✂ ✐ ✐ x P ✐ ✂ P P P P P P • P 3 = ( x 3 ; y 3 )

  2. � � er-and-elliptic-curve Clock( R ): the commutative group More clo ( x; y ) ∈ R × R : x 2 + y 2 = 1 ˘ ¯ cryptography “A parametrize under the operations J. Bernstein t �→ (sin “0”: () �→ (0 ; 1); University of Illinois at Chicago & is a group “ − ”: ( x; y ) �→ ( − x; y ); echnische Universiteit Eindhoven inducing “+”: ( x 1 ; y 1 ) ; ( x 2 ; y 2 ) �→ Includes recent joint work with: ( x 1 y 2 + y 1 x 2 ; y 1 y 2 − x 1 x 2 ). Lange y echnische Universiteit Eindhoven neutral = (0 ; 1) • cr.yp.to/papers.html#hyperand P 1 = ( x 1 ; y 1 ) • ✂ ✂ ✂ P 2 = ( x 2 ; y 2 ) ✂ • ✐ ✂ ✐ ✐ ✐ ✂ ✐ ✐ x ✐ P ✂ P P P P P P • P 3 = ( x 3 ; y 3 )

  3. � � er-and-elliptic-curve Clock( R ): the commutative group More clock perspectives: ( x; y ) ∈ R × R : x 2 + y 2 = 1 ˘ ¯ “A parametrized clo under the operations Bernstein t �→ (sin t; cos t ) “0”: () �→ (0 ; 1); Illinois at Chicago & is a group hom R “ − ”: ( x; y ) �→ ( − x; y ); Universiteit Eindhoven inducing R = 2 ı Z , ։ “+”: ( x 1 ; y 1 ) ; ( x 2 ; y 2 ) �→ joint work with: ( x 1 y 2 + y 1 x 2 ; y 1 y 2 − x 1 x 2 ). y Universiteit Eindhoven neutral = (0 ; 1) • cr.yp.to/papers.html#hyperand P 1 = ( x 1 ; y 1 ) • ✂ ✂ ✂ P 2 = ( x 2 ; y 2 ) ✂ • ✐ ✂ ✐ ✐ ✐ ✂ ✐ ✐ x P ✐ ✂ P P P P P P • P 3 = ( x 3 ; y 3 )

  4. � � Clock( R ): the commutative group More clock perspectives: ( x; y ) ∈ R × R : x 2 + y 2 = 1 ˘ ¯ “A parametrized clock”: under the operations t �→ (sin t; cos t ) “0”: () �→ (0 ; 1); Chicago & is a group hom R ։ Clock( R “ − ”: ( x; y ) �→ ( − x; y ); Eindhoven inducing R = 2 ı Z , ։ Clock( R “+”: ( x 1 ; y 1 ) ; ( x 2 ; y 2 ) �→ with: ( x 1 y 2 + y 1 x 2 ; y 1 y 2 − x 1 x 2 ). y Eindhoven neutral = (0 ; 1) • cr.yp.to/papers.html#hyperand P 1 = ( x 1 ; y 1 ) • ✂ ✂ ✂ P 2 = ( x 2 ; y 2 ) ✂ • ✐ ✂ ✐ ✐ ✐ ✂ ✐ ✐ x P ✐ ✂ P P P P P P • P 3 = ( x 3 ; y 3 )

  5. � � Clock( R ): the commutative group More clock perspectives: ( x; y ) ∈ R × R : x 2 + y 2 = 1 ˘ ¯ “A parametrized clock”: under the operations t �→ (sin t; cos t ) “0”: () �→ (0 ; 1); is a group hom R ։ Clock( R ) “ − ”: ( x; y ) �→ ( − x; y ); inducing R = 2 ı Z , ։ Clock( R ). “+”: ( x 1 ; y 1 ) ; ( x 2 ; y 2 ) �→ ( x 1 y 2 + y 1 x 2 ; y 1 y 2 − x 1 x 2 ). y neutral = (0 ; 1) • P 1 = ( x 1 ; y 1 ) • ✂ ✂ ✂ P 2 = ( x 2 ; y 2 ) ✂ • ✐ ✂ ✐ ✐ ✐ ✂ ✐ ✐ x P ✐ ✂ P P P P P P • P 3 = ( x 3 ; y 3 )

  6. � � Clock( R ): the commutative group More clock perspectives: ( x; y ) ∈ R × R : x 2 + y 2 = 1 ˘ ¯ “A parametrized clock”: under the operations t �→ (sin t; cos t ) “0”: () �→ (0 ; 1); is a group hom R ։ Clock( R ) “ − ”: ( x; y ) �→ ( − x; y ); inducing R = 2 ı Z , ։ Clock( R ). “+”: ( x 1 ; y 1 ) ; ( x 2 ; y 2 ) �→ “Complex numbers of norm 1”: ( x 1 y 2 + y 1 x 2 ; y 1 y 2 − x 1 x 2 ). { u ∈ C : uu = 1 } is a group under y 1; u �→ u ; u 1 ; u 2 �→ u 1 u 2 . neutral = (0 ; 1) ( x; y ) �→ y + ix is a group hom • P 1 = ( x 1 ; y 1 ) • Clock( R ) , ։ { u ∈ C : uu = 1 } . ✂ ✂ ✂ P 2 = ( x 2 ; y 2 ) ✂ • ✐ ✂ ✐ ✐ ✐ ✂ ✐ ✐ x ✐ P ✂ P P P P P P • P 3 = ( x 3 ; y 3 )

  7. � � Clock( R ): the commutative group More clock perspectives: ( x; y ) ∈ R × R : x 2 + y 2 = 1 ˘ ¯ “A parametrized clock”: under the operations t �→ (sin t; cos t ) “0”: () �→ (0 ; 1); is a group hom R ։ Clock( R ) “ − ”: ( x; y ) �→ ( − x; y ); inducing R = 2 ı Z , ։ Clock( R ). “+”: ( x 1 ; y 1 ) ; ( x 2 ; y 2 ) �→ “Complex numbers of norm 1”: ( x 1 y 2 + y 1 x 2 ; y 1 y 2 − x 1 x 2 ). { u ∈ C : uu = 1 } is a group under y 1; u �→ u ; u 1 ; u 2 �→ u 1 u 2 . neutral = (0 ; 1) ( x; y ) �→ y + ix is a group hom • P 1 = ( x 1 ; y 1 ) • Clock( R ) , ։ { u ∈ C : uu = 1 } . ✂ ✂ ✂ P 2 = ( x 2 ; y 2 ) ✂ • ✐ ✂ ✐ ✐ ✐ “2-dimensional rotations”: ✂ ✐ ✐ x P ✐ ✂ “ y P P P x ” P P ( x; y ) �→ is a P • P 3 = ( x 3 ; y 3 ) − x y group hom Clock( R ) , ։ SO 2 ( R ).

  8. � � R ): the commutative group More clock perspectives: Clocks over ) ∈ R × R : x 2 + y 2 = 1 ¯ “A parametrized clock”: Clock( F 7 the operations ˘ t �→ (sin t; cos t ) ( x; y ) ∈ () �→ (0 ; 1); is a group hom R ։ Clock( R ) Group op ( x; y ) �→ ( − x; y ); inducing R = 2 ı Z , ։ Clock( R ). · ( x 1 ; y 1 ) ; ( x 2 ; y 2 ) �→ · “Complex numbers of norm 1”: + y 1 x 2 ; y 1 y 2 − x 1 x 2 ). { u ∈ C : uu = 1 } is a group under · y 1; u �→ u ; u 1 ; u 2 �→ u 1 u 2 . · neutral = (0 ; 1) ( x; y ) �→ y + ix is a group hom · • P 1 = ( x 1 ; y 1 ) • Clock( R ) , ։ { u ∈ C : uu = 1 } . · ✂ ✂ ✂ P 2 = ( x 2 ; y 2 ) ✂ • · ✐ ✂ ✐ ✐ ✐ “2-dimensional rotations”: ✂ ✐ ✐ x P ✐ ✂ “ y P P P Diagram x ” P P ( x; y ) �→ is a P • P 3 = ( x 3 ; y 3 ) − x y − 3 ; − 2 ; − group hom Clock( R ) , ։ SO 2 ( R ).

  9. � commutative group More clock perspectives: Clocks over finite fields : x 2 + y 2 = 1 ¯ “A parametrized clock”: Clock( F 7 ) = erations ˘ t �→ (sin t; cos t ) ( x; y ) ∈ F 7 × F 7 1); is a group hom R ։ Clock( R ) Group operations as − x; y ); inducing R = 2 ı Z , ։ Clock( R ). · · · · 2 ; y 2 ) �→ · • · · · “Complex numbers of norm 1”: y 2 − x 1 x 2 ). { u ∈ C : uu = 1 } is a group under · · · • · 1; u �→ u ; u 1 ; u 2 �→ u 1 u 2 . · · • · · neutral = (0 ; 1) ( x; y ) �→ y + ix is a group hom · · · • · P 1 = ( x 1 ; y 1 ) • Clock( R ) , ։ { u ∈ C : uu = 1 } . · • · · · ✂ ✂ P 2 = ( x 2 ; y 2 ) • · · · · ✐ ✐ ✐ ✐ “2-dimensional rotations”: x “ y Diagram plots F 7 as x ” P P ( x; y ) �→ is a P • P 3 = ( x 3 ; y 3 ) − x y − 3 ; − 2 ; − 1 ; 0 ; 1 ; 2 ; group hom Clock( R ) , ։ SO 2 ( R ).

  10. commutative group More clock perspectives: Clocks over finite fields ¯ = 1 “A parametrized clock”: Clock( F 7 ) = ( x; y ) ∈ F 7 × F 7 : x 2 + y 2 ˘ t �→ (sin t; cos t ) is a group hom R ։ Clock( R ) Group operations as before. inducing R = 2 ı Z , ։ Clock( R ). · · · · · · · · • · · · · • · · “Complex numbers of norm 1”: ). { u ∈ C : uu = 1 } is a group under · · · • · · · · 1; u �→ u ; u 1 ; u 2 �→ u 1 u 2 . · · • · · • · · · (0 ; 1) ( x; y ) �→ y + ix is a group hom · · · • · · · · ( x 1 ; y 1 ) Clock( R ) , ։ { u ∈ C : uu = 1 } . · • · · · · • · · = ( x 2 ; y 2 ) · · · · · · · “2-dimensional rotations”: x “ y Diagram plots F 7 as x ” ( x; y ) �→ is a ( x 3 ; y 3 ) − x y − 3 ; − 2 ; − 1 ; 0 ; 1 ; 2 ; 3. group hom Clock( R ) , ։ SO 2 ( R ).

  11. More clock perspectives: Clocks over finite fields “A parametrized clock”: Clock( F 7 ) = ( x; y ) ∈ F 7 × F 7 : x 2 + y 2 = 1 ˘ ¯ t �→ (sin t; cos t ) . is a group hom R ։ Clock( R ) Group operations as before. inducing R = 2 ı Z , ։ Clock( R ). · · · · · · · · • · · · · • · · “Complex numbers of norm 1”: { u ∈ C : uu = 1 } is a group under · · · • · · · · 1; u �→ u ; u 1 ; u 2 �→ u 1 u 2 . · · • · · • · · · ( x; y ) �→ y + ix is a group hom · · · • · · · · Clock( R ) , ։ { u ∈ C : uu = 1 } . · • · · · · • · · · · · · · · · “2-dimensional rotations”: “ y Diagram plots F 7 as x ” ( x; y ) �→ is a − x y − 3 ; − 2 ; − 1 ; 0 ; 1 ; 2 ; 3. group hom Clock( R ) , ։ SO 2 ( R ).

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Hyper-and-elliptic-curve cryptography (which is not the same as: hyperelliptic-curve

Hyper-and-elliptic-curve cryptography (which is not the same as: hyperelliptic-curve

Hyper-and-elliptic-curve cryptography (which is not the same as: hyperelliptic-curve cryptography and elliptic-curve cryptography) Daniel J. Bernstein University of Illinois at Chicago & Technische Universiteit Eindhoven Tanja Lange

318 views • 29 slides
Hyper-and-elliptic-curve cryptography (which is not the same as: hyperelliptic-curve

Hyper-and-elliptic-curve cryptography (which is not the same as: hyperelliptic-curve

Hyper-and-elliptic-curve cryptography (which is not the same as: hyperelliptic-curve cryptography and elliptic-curve cryptography) Daniel J. Bernstein Through our inefficient use of University of Illinois at Chicago & energy (gas

1.07k views • 76 slides
Elliptic Curves over the Rational Mordells Theorem Numbers Q An elliptic curve is a

Elliptic Curves over the Rational Mordells Theorem Numbers Q An elliptic curve is a

Elliptic Curves over the Rational Mordells Theorem Numbers Q An elliptic curve is a nonsingular plane cu- Theorem (Mordell). The group E ( Q ) of rational points on an bic curve with a rational point (possibly at elliptic curve is a

402 views • 7 slides
Quick Review: Quadratic Residues Koblitzs Method We want to solve equations like: All of the

Quick Review: Quadratic Residues Koblitzs Method We want to solve equations like: All of the

Elliptic Curves Suppose F is a field and a 1 , . . . , a 6 F . Elliptic Curve Cryptography Definition 1. An elliptic curve E over a field F is a curve given by an equation: Jim Royer Y 2 + a 1 XY + a 3 Y X 3 + a 2 X 2 + a 4 X + a 6 = (1)

337 views • 5 slides
Elliptic Curve Cryptography Applications of Elliptic Curve Cryptography Elliptic Curve

Elliptic Curve Cryptography Applications of Elliptic Curve Cryptography Elliptic Curve

Cryptography Elliptic Curve Cryptography Overview of Elliptic Curve Cryptography Elliptic Curve Cryptography Applications of Elliptic Curve Cryptography Elliptic Curve Cryptography Cryptography in OpenSSL School of Engineering and

857 views • 17 slides
Next-generation elliptic-curve cryptography (ECC) Daniel J. Bernstein Cryptographic

Next-generation elliptic-curve cryptography (ECC) Daniel J. Bernstein Cryptographic

Next-generation elliptic-curve cryptography (ECC) Daniel J. Bernstein Cryptographic Implementations group: eindhoven.cr.yp.to working closely with the Coding Theory and Cryptology group: www.win.tue.nl/cc/ Next-generation elliptic-curve

456 views • 18 slides
Motivation Given an elliptic curve E over a finite field F q . Is the Discrete Logarithm Problem

Motivation Given an elliptic curve E over a finite field F q . Is the Discrete Logarithm Problem

Counting points on elliptic curves over F q Christiane Peters DIAMANT-Summer School on Elliptic and Hyperelliptic Curve Cryptography September 17, 2008 Motivation Given an elliptic curve E over a finite field F q . Is the Discrete Logarithm

587 views • 30 slides
The AGM- X 0 ( N ) Algorithm Heegner point lifting with application to elliptic curve point

The AGM- X 0 ( N ) Algorithm Heegner point lifting with application to elliptic curve point

The AGM- X 0 ( N ) Algorithm Heegner point lifting with application to elliptic curve point counting David R. Kohel School of Mathematics and Statistics University of Sydney I Elliptic Curves in Cryptography An elliptic curve E/ F p r for

415 views • 18 slides
Elliptic Curve Cryptography Meghana Doddapaneni University of Maryland 5 December 2018

Elliptic Curve Cryptography Meghana Doddapaneni University of Maryland 5 December 2018

Elliptic Curve Cryptography Meghana Doddapaneni University of Maryland 5 December 2018 Introduction y 2 = x 3 + ax + b en.wikipedia.org/wiki/Elliptic curve Elliptic Curve Addition P = ( x p .y p ), Q = ( x q , y q ), R = ( x r .y r ) =

187 views • 16 slides
Elliptic Curves over Q Peter Birkner Technische Universiteit Eindhoven DIAMANT Summer School on

Elliptic Curves over Q Peter Birkner Technische Universiteit Eindhoven DIAMANT Summer School on

Elliptic Curves over Q Peter Birkner Technische Universiteit Eindhoven DIAMANT Summer School on Elliptic and Hyperelliptic Curve Cryptography 16 September 2008 What is an elliptic curve? (1) An elliptic curve E over a field k in Weierstra

298 views • 25 slides
Elliptic-curve cryptography Tanja Lange Technische Univesiteit Eindhoven The Netherlands July

Elliptic-curve cryptography Tanja Lange Technische Univesiteit Eindhoven The Netherlands July

Elliptic-curve cryptography Tanja Lange Technische Univesiteit Eindhoven The Netherlands July 23, 2014 1 / 12 Elliptic-curve cryptography: signatures and key exchange Given: some elliptic curve E , point P on E of known order . Key

885 views • 16 slides
Efficient Finite Field and Elliptic Curve Arithmetic Laurent Imbert CNRS, LIRMM, Universit e

Efficient Finite Field and Elliptic Curve Arithmetic Laurent Imbert CNRS, LIRMM, Universit e

Efficient Finite Field and Elliptic Curve Arithmetic Laurent Imbert CNRS, LIRMM, Universit e Montpellier 2 Summer School ECC 2011 Nancy, September 12-16, 2011 Part 2 Elliptic curve arithmetic 1/41 The two facets of an elliptic curve

606 views • 42 slides
Further Reading A. H. Koblitz, N. Koblitz, A. Menezes, Elliptic curve cryptography: The

Further Reading A. H. Koblitz, N. Koblitz, A. Menezes, Elliptic curve cryptography: The

Twenty-Three Years of Elliptic Curve Cryptography Alfred Menezes University of Waterloo September 3 2008 1 Further Reading A. H. Koblitz, N. Koblitz, A. Menezes, Elliptic curve cryptography: The serpentine course of a paradigm

300 views • 18 slides
1 / 25 Elliptic Curve Cryptography EC crypto consists of geometric points with an addition

1 / 25 Elliptic Curve Cryptography EC crypto consists of geometric points with an addition

1 / 25 Elliptic Curve Cryptography EC crypto consists of geometric points with an addition operator. Such a set is a group. Any group element G can be multiplied by an integer n by adding G to itself repeatedly. G + G + + G

363 views • 25 slides
Elliptic Curve Cryptography An Introduction Dr. F . Vercauteren Katholieke Universiteit Leuven

Elliptic Curve Cryptography An Introduction Dr. F . Vercauteren Katholieke Universiteit Leuven

Cryptography Elliptic Curves EC Cryptographic Primitives Pairings Elliptic Curve Cryptography An Introduction Dr. F . Vercauteren Katholieke Universiteit Leuven 22 April 2008 Dr. F. Vercauteren Elliptic Curve Cryptography An Introduction

491 views • 32 slides
On Using Torsion Points in the Elliptic Curve Index Calculus Gu ena el Renault Sorbonne

On Using Torsion Points in the Elliptic Curve Index Calculus Gu ena el Renault Sorbonne

On Using Torsion Points in the Elliptic Curve Index Calculus Gu ena el Renault Sorbonne Universit es UPMC, INRIA, CNRS LIP6 1/43 General Context Discrete Logarithm Problem (DLP) Given a finite cyclic group ( G = g , +) and h

595 views • 56 slides
Secure Your Things: Verification of IoT Software with Frama-C Tutorial at HPCS 2018 Allan

Secure Your Things: Verification of IoT Software with Frama-C Tutorial at HPCS 2018 Allan

Secure Your Things: Verification of IoT Software with Frama-C Tutorial at HPCS 2018 Allan Blanchard, Nikolai Kosmatov, Fr ed eric Loulergue some slides authored by Julien Signoles Email: allan.blanchard@inria.fr, nikolai.kosmatov@cea.fr,

1.52k views • 151 slides
2HDM interpretations Nick Amin April 1, 2019 Overview Slides looking into using a new MG

2HDM interpretations Nick Amin April 1, 2019 Overview Slides looking into using a new MG

2HDM interpretations Nick Amin April 1, 2019 Overview Slides looking into using a new MG model file for type2 2HDM from last year are in backup Summary of those slides I got consistency between ttH xsecs from (1) ATLAS (2) Nates

635 views • 24 slides
Toshifumi Noumi (Math Phys Lab, RIKEN) Effective field theory approach to quasi-single field

Toshifumi Noumi (Math Phys Lab, RIKEN) Effective field theory approach to quasi-single field

August 21st 2013 Toshifumi Noumi (Math Phys Lab, RIKEN) Effective field theory approach to quasi-single field inflation and effects of heavy fields reference: JHEP 1306 (2013) 051 [arXiv:1211.1624] with Masahide

666 views • 44 slides
-Decay & Colliders I M.J. Ramsey-Musolf U Mass Amherst

-Decay & Colliders I M.J. Ramsey-Musolf U Mass Amherst

TeV Scale LNV: 0 -Decay & Colliders I M.J. Ramsey-Musolf U Mass Amherst http://www.physics.umass.edu/acfi/ Collaborators: Tao Peng, Peter Winslow; V. Cirigliano, M. Graesser, M. Horoi, P. Vogel ACFI Neutrino Workshop July 2017

1.4k views • 92 slides
TDDB84: Lecture 5 Singleton, Builder, Proxy, Mediator fredag 27 september 13 Creational

TDDB84: Lecture 5 Singleton, Builder, Proxy, Mediator fredag 27 september 13 Creational

TDDB84: Lecture 5 Singleton, Builder, Proxy, Mediator fredag 27 september 13 Creational Singleton Abstract Factory Builder Structural Bridge Composite Proxy Adapter Template method Behavioral Iterator Chain of responsibility

1.41k views • 92 slides
CS 423 Operating System Design: Log-Structured File Systems Professor Tianyin Xu CS 423:

CS 423 Operating System Design: Log-Structured File Systems Professor Tianyin Xu CS 423:

CS 423 Operating System Design: Log-Structured File Systems Professor Tianyin Xu CS 423: Operating Systems Design MP1/MP2/Midterm Stats CS 423: Operating Systems Design 2 Recap File Disk block Inode To read/write a file, we

353 views • 10 slides
Context: Extended Number Hierarchy Object Magnitude Natural Number Integer Fraction Float

Context: Extended Number Hierarchy Object Magnitude Natural Number Integer Fraction Float

Context: Extended Number Hierarchy Object Magnitude Natural Number Integer Fraction Float LargeInteger SmallInteger LargePositiveInteger LargeNegativeInteger Review: Information revealed to self Object knows its own representation

486 views • 30 slides
Today. Types of graphs. Today. Types of graphs. Complete Graphs. Trees. Hypercubes. Today.

Today. Types of graphs. Today. Types of graphs. Complete Graphs. Trees. Hypercubes. Today.

Today. Types of graphs. Today. Types of graphs. Complete Graphs. Trees. Hypercubes. Today. Types of graphs. Complete Graphs. Trees. Hypercubes. Complete Graph. K n complete graph on n vertices. Complete Graph. K n complete graph on n

1.92k views • 163 slides

More recommend