magical parallel variant of sidh
play

Magical parallel variant of SIDH Daniel Cervantes-V azquez - PowerPoint PPT Presentation

Feb 16, 2024 •218 likes •411 views

A Magical parallel variant of SIDH Daniel Cervantes-V azquez Eduardo Ochoa-Jim enez Francisco Rodr guez-Henr quez September 10, 2018 A Cervantes-Ochoa-Rodr guez Magical

  1. A ✘✘✘✘ Magical parallel variant of SIDH ❳❳❳❳ ✘ ❳ Daniel Cervantes-V´ azquez Eduardo Ochoa-Jim´ enez Francisco Rodr´ ıguez-Henr´ quez September 10, 2018 A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 1 / 6

  2. Story plot We present here a ✘✘✘ magical parallel variant of the Supersingular Isogeny ❳❳❳ ✘ ❳ Diffie-Hellman (SIDH) protocol, which is also applicable to the Supersingular Isogeny Key Encapsulation (SIKE) protocol. A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 2 / 6

  3. Story plot We present here a ✘✘✘ magical parallel variant of the Supersingular Isogeny ❳❳❳ ✘ ❳ Diffie-Hellman (SIDH) protocol, which is also applicable to the Supersingular Isogeny Key Encapsulation (SIKE) protocol. This variant is illustrated by Hermione, Ron and Harry, who have learned from their charm class how to cast the “Curvaverto” spell. A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 2 / 6

  4. Story plot We present here a ✘✘✘ magical parallel variant of the Supersingular Isogeny ❳❳❳ ✘ ❳ Diffie-Hellman (SIDH) protocol, which is also applicable to the Supersingular Isogeny Key Encapsulation (SIKE) protocol. This variant is illustrated by Hermione, Ron and Harry, who have learned from their charm class how to cast the “Curvaverto” spell. Given a magical stone called Kernel (a bunch of points belonging to an Elliptic Curve), then the Curvaverto spell transforms an Elliptic Curve and two magical stones into another Curve. A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 2 / 6

  5. Story plot We present here a ✘✘✘ magical parallel variant of the Supersingular Isogeny ❳❳❳ ✘ ❳ Diffie-Hellman (SIDH) protocol, which is also applicable to the Supersingular Isogeny Key Encapsulation (SIKE) protocol. This variant is illustrated by Hermione, Ron and Harry, who have learned from their charm class how to cast the “Curvaverto” spell. Given a magical stone called Kernel (a bunch of points belonging to an Elliptic Curve), then the Curvaverto spell transforms an Elliptic Curve and two magical stones into another Curve. Bye! Don’t ruin it! A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 2 / 6

  6. Parameters 5 e 5 f − 1 2 e 2 3 e 3 p := Such that 3 e 3 5 e 5 ≈ 2 e 2 and 3 e 3 ≈ 5 e 5

  7. Parameters Choose P 3 and Q 3 such that � P 3 , Q 3 � = E [3 e 3 ] Choose P 2 and Q 2 Choose P 5 and Q 5 such that � P 2 , Q 2 � = E [2 e 2 ] such that � P 5 , Q 5 � = E [5 e 5 ] 5 e 5 f − 1 2 e 2 3 e 3 p := Such that 3 e 3 5 e 5 ≈ 2 e 2 and 3 e 3 ≈ 5 e 5 Define S := P 3 + P 5 and T := Q 3 + Q 5 to be the public parameters of Ron and Harry A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 3 / 6

  8. eSIDH K 2 := P 2 + [ n 2 ] Q 2 Get φ H and E H E H E 0 A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 4 / 6

  9. eSIDH Parallel K 3 := P 3 + [ n 3 ] Q 3 K 5 := P 5 + [ n 5 ] Q 5 Get φ R and E R . Send φ R ( K 5 ) to Harry. E H E 0 E R A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 4 / 6

  10. eSIDH Use φ R ( K 5 ) to get E RH and φ RH E H E 0 E R E RH A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 4 / 6

  11. eSIDH ( E RH , φ RH ( P 2 ) , φ RH ( Q 2 )) E H E 0 E R E RH A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 4 / 6

  12. eSIDH ( E H , φ H ( S ) , φ H ( T )) E H E RH E 0 E R E RH E H A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 4 / 6

  13. eSIDH K ′ 2 := φ RH ( P 2 ) + [ n 2 ] φ RH ( Q 2 ) Get E RHH E H E RH E 0 E RHH E R E RH E H A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 4 / 6

  14. eSIDH Parallel 3 := [5 e 5 ]( φ H ( S ) + [ n 3 ] φ H ( T )) 5 := [3 e 3 ]( φ H ( S ) + [ n 5 ] φ H ( T )) K ′ K ′ Get φ ′ R and E ′ R . Send φ ′ R ( K ′ 5 ) to Harry. E H E RH E 0 E RHH E R E RH E H E HR A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 4 / 6

  15. eSIDH Use φ ′ R ( K ′ 5 ) to get E HRH E H E RH E RHH ∼ E 0 = E HRH E R E RH E H E HR A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 4 / 6

  16. Primes and Times Our proposals [SIKE17] proposals P 509 = 2 250 3 79 5 55 2 6 − 1 P 503 = 2 250 3 159 − 1 P 765 = 2 372 3 119 5 81 2 16 − 1 P 751 = 2 372 3 239 − 1 P 1013 = 2 486 3 157 5 108 2 26 − 1 P 964 = 2 486 3 301 − 1 Table: Our proposals for eSIDH primes in comparison with the current state-of the art SIKE17 Ours SIKE17 Ours Ours p 503 p 509 p 751 p 765 p 1013 Protocol phase Non Parallel Non Parallel Non Parallel AF AF Alice 8.24 7.48 1.10 23.68 22.21 1.06 49.24 KeyGen Bob 9.26 8.26 1.12 26.67 24.53 1.08 55.18 Alice 6.71 6.08 1.10 19.44 18.20 1.06 40.83 KeyAgr Bob 7.82 7.73 1.01 22.76 22.98 0.99 52.05 Table: Performance comparison of this proposal against SIKE17 (using the version 3 of the CLN library). Reported running time (in 10 6 clock cycles) was measured in an Intel Skylake proccessor at 4.0 GHz. We report here the sequential version performance using 1 core. A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 5 / 6

  17. Primes and Times Our proposals [SIKE17] proposals P 509 = 2 250 3 79 5 55 2 6 − 1 P 503 = 2 250 3 159 − 1 P 765 = 2 372 3 119 5 81 2 16 − 1 P 751 = 2 372 3 239 − 1 P 1013 = 2 486 3 157 5 108 2 26 − 1 P 964 = 2 486 3 301 − 1 Table: Our proposals for eSIDH primes in comparison with the current state-of the art SIKE17 Ours SIKE17 Ours Ours p 503 p 509 p 751 p 765 p 1013 Protocol phase Parallel Parallel Parallel AF AF Alice 8.24 5.91 1.39 23.68 16.68 1.42 36.35 KeyGen Bob 9.26 5.58 1.66 26.67 15.99 1.67 34.73 Alice 6.71 5.40 1.24 19.44 15.20 1.28 32.88 KeyAgr Bob 7.82 5.74 1.36 22.76 16.55 1.37 35.75 Table: Performance comparison of this proposal against SIKE17 (using the version 3 of the CLN library). Reported running time (in 10 6 clock cycles) was measured in an Intel Skylake proccessor at 4.0 GHz. We report here the parallel version performance using 3 cores. A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 5 / 6

  18. Work in Progress Working on Ron-Harry side (Bob’s side), extend this proposal to other combinations of small primes [instead of the current (3 , 5)]. Look for more Montgomery-friendly primes. Further optimize the single-core version of this proposal. A ✘✘ ❳❳ Cervantes-Ochoa-Rodr´ ıguez Magical parallel variant of SIDH September 10, 2018 6 / 6

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

How to Think Algorithmically in Parallel? Or, Parallel Programming through Parallel Algorithms

How to Think Algorithmically in Parallel? Or, Parallel Programming through Parallel Algorithms

How to Think Algorithmically in Parallel? Or, Parallel Programming through Parallel Algorithms Uzi Vishkin Context Will review variant of context part in August 22 talk given at Hot Interconnects, Stanford, CA. Please relax and listen. This

1.02k views • 72 slides
Chris Hopkins, PhD, MBA and CSO patient variant drug p.R292H pathogenicity Is this variant in

Chris Hopkins, PhD, MBA and CSO patient variant drug p.R292H pathogenicity Is this variant in

Chris Hopkins, PhD, MBA and CSO patient variant drug p.R292H pathogenicity Is this variant in my patient pathogenic or benign? "The Doctor" by Sir Luke Fildes (1891) Drop in genome price drives increase in patient variant

500 views • 22 slides
<? <?php php $ret = $ret = foo foo($a ($a); ); // C++ // C++ Variant v_ret Variant

<? <?php php $ret = $ret = foo foo($a ($a); ); // C++ // C++ Variant v_ret Variant

<? <?php php $ret = $ret = foo foo($a ($a); ); // C++ // C++ Variant v_ret Variant v_ret; ; Variant Variant v_a v_a; ; v_ret v_ret = = f_foo f_foo(v_a (v_a); ); Facebook 2010 (confidential) <?php <?

287 views • 12 slides
IDN Variant TLDs Program Update IDN Variant TLDs Program Origins No variants of gTLDs will be

IDN Variant TLDs Program Update IDN Variant TLDs Program Origins No variants of gTLDs will be

IDN Variant TLDs Program Update IDN Variant TLDs Program Origins No variants of gTLDs will be delegated until appropriate variant management solutions are developed http://www.icann.org/en/groups/board/do

533 views • 31 slides
Variant Effect Predictor Demo: The Variant Effect Predictor (VEP)

Variant Effect Predictor Demo: The Variant Effect Predictor (VEP)

Variant Effect Predictor Demo: The Variant Effect Predictor (VEP) We have identified five variants on human chromosome nine, an A deletion at 128328461, C->A

301 views • 7 slides
SIDH on ARM: Faster Modular Multiplications for Faster Post-Quantum Supersingular Isogeny Key

SIDH on ARM: Faster Modular Multiplications for Faster Post-Quantum Supersingular Isogeny Key

SIDH on ARM: Faster Modular Multiplications for Faster Post-Quantum Supersingular Isogeny Key Exchange. Hwajeong Seo (Hansung University), Zhe Liu (Nanjing University of Aeronautics and Astronautics), Patrick Longa (Microsoft Research), Zhi

593 views • 36 slides
Variant-Related Issues Variant TLD Issues Project Goal

Variant-Related Issues Variant TLD Issues Project Goal

Variant-Related Issues Variant TLD Issues Project Goal Iden0fy and agree on issues related to variants that should be included in the report 2

218 views • 10 slides
Jorge Jimnez Variant calling jjimeneza@cipf.es Index 1. Variant calling pipeline 2.

Jorge Jimnez Variant calling jjimeneza@cipf.es Index 1. Variant calling pipeline 2.

Jorge Jimnez Variant calling jjimeneza@cipf.es Index 1. Variant calling pipeline 2. Alignment processing 3. SNP calling 4. Short indel calling 5. VCF format 6. Structural Variation Jorge Jimnez Variant calling jjimeneza@cipf.es

1.12k views • 40 slides
Efficient compression of SIDH public keys Craig Costello 1 David Jao 2 Patrick Longa 1 Michael

Efficient compression of SIDH public keys Craig Costello 1 David Jao 2 Patrick Longa 1 Michael

Efficient compression of SIDH public keys Craig Costello 1 David Jao 2 Patrick Longa 1 Michael Naehrig 1 Joost Renes 3 David Urbanik 2 1 Microsoft Research, Redmond, USA 2 University of Waterloo, Ontario, Canada 3 Radboud University, Nijmegen, The

835 views • 44 slides
1 Variant II: Command Consensus (BG) Variant III: Interactive Consistency (IC) Variant II:

1 Variant II: Command Consensus (BG) Variant III: Interactive Consistency (IC) Variant II:

Coordination Coordination If the solution to availability and scalability is to decentralize and replicate functions and data, how do we coordinate the nodes? data consistency Failures and Consensus Failures and Consensus update

308 views • 6 slides
IDN Variant TLD Implementation Status, Recommendations and Next Steps GNSO Council 18 April 2019

IDN Variant TLD Implementation Status, Recommendations and Next Steps GNSO Council 18 April 2019

IDN Variant TLD Implementation Status, Recommendations and Next Steps GNSO Council 18 April 2019 | 1 Objectives of This Session What: Understand 1. 1. IDN variant top-level domains (TLDs) 2. Status of IDN variant TLDs 3. Next

474 views • 24 slides
What is One Magical City? Marketing Liverpool together with key partners have once again come

What is One Magical City? Marketing Liverpool together with key partners have once again come

What is One Magical City? Marketing Liverpool together with key partners have once again come together and agreed an over-arching city brand and creative, to create a compelling message as to why people should visit Liverpool this festive season.

605 views • 9 slides
GHUMVEE: Efficient, Effective and Flexible Replication Stijn Volckaert Computer Systems Lab

GHUMVEE: Efficient, Effective and Flexible Replication Stijn Volckaert Computer Systems Lab

Vakgroep ELIS GHUMVEE: Efficient, Effective and Flexible Replication Stijn Volckaert Computer Systems Lab Ghent University Belgium N-modular Redundancy variant 1 input variant 2 monitor output variant 3 equivalent components 2

450 views • 16 slides
Help us make a childs wish come true. Sadly we do not have a magical cure for the suffering of

Help us make a childs wish come true. Sadly we do not have a magical cure for the suffering of

Help us make a childs wish come true. Sadly we do not have a magical cure for the suffering of these youngsters , however, we can bring them a short period of respite. The time when a child has a wish granted is a moment that will be

561 views • 55 slides
Magical Kenya! Skl Kenya Skl Kenya is a vibrant and growing organisation with two eminently

Magical Kenya! Skl Kenya Skl Kenya is a vibrant and growing organisation with two eminently

Skal Kenya welcomes you to Magical Kenya! Skl Kenya Skl Kenya is a vibrant and growing organisation with two eminently successful Clubs. Skl International Nairobi was founded in 1954 and is now 64-years young with 130 members, Skl

1.16k views • 23 slides
Exploring the Magical: Pilgrimage and the Enchantment of Place Pat Loughery The Seattle School

Exploring the Magical: Pilgrimage and the Enchantment of Place Pat Loughery The Seattle School

Exploring the Magical: Pilgrimage and the Enchantment of Place Pat Loughery The Seattle School of Theology and Psychology https://flic.kr/p/nnZrr4 The fate of our times is characterized by rationalization and intellectualization, and,

325 views • 11 slides
Model Order Reduction of Elastic Multibody Systems with Large Finite Element Models Michael

Model Order Reduction of Elastic Multibody Systems with Large Finite Element Models Michael

Summer School Trogir 2011 Model Order Reduction of Elastic Multibody Systems with Large Finite Element Models Michael Fischer Institute of Engineering and Computational Mechanics University of Stuttgart, Germany Prof. Dr.-Ing. Prof. E.h.

435 views • 9 slides
Two-photon exchange calculations versus data Oleksandr Tomalak Johannes Gutenberg University,

Two-photon exchange calculations versus data Oleksandr Tomalak Johannes Gutenberg University,

28 September, 2017 Two-photon exchange calculations versus data Oleksandr Tomalak Johannes Gutenberg University, Mainz, Germany 1 Scattering experiments and 2 - 2 is not among standard radiative corrections exp 1 (1 + rad

985 views • 49 slides
Outline Clustering Clustering Clustering is a widely used statistical tool to determine subsets

Outline Clustering Clustering Clustering is a widely used statistical tool to determine subsets

Collaboration with Rudolf Winter-Ebmer , Capturing Unobserved Heterogeneity in Department of Economics, Johannes Kepler University Linz the Austrian Labor Market Using Finite Supported by the Austrian Science Foundation (FWF) under grant P 17

170 views • 6 slides
Boosting a Generalized Poisson Hurdle Model Vera Hofer University of Graz Paris, 23/08/2010

Boosting a Generalized Poisson Hurdle Model Vera Hofer University of Graz Paris, 23/08/2010

Boosting a Generalized Poisson Hurdle Model Vera Hofer University of Graz Paris, 23/08/2010 Vera Hofer Boosting a Generalized Poisson Hurdle Model Ensemble Techniques Aim at improving the predictive performance of fitting techniques by

419 views • 24 slides
Energy Stable Discontinuous Galerkin Methods for Maxwells Equations in Nonlinear Optical Media

Energy Stable Discontinuous Galerkin Methods for Maxwells Equations in Nonlinear Optical Media

Energy Stable Discontinuous Galerkin Methods for Maxwells Equations in Nonlinear Optical Media Yingda Cheng Michigan State University Computational Aspects of Time Dependent Electromagnetic Wave Problems in Complex Materials, ICERM,

483 views • 37 slides
Triangular 2D and 3D Grid Refinement for Atmosphere and Ocean Simulation Jrn Behrens

Triangular 2D and 3D Grid Refinement for Atmosphere and Ocean Simulation Jrn Behrens

Triangular 2D and 3D Grid Refinement for Atmosphere and Ocean Simulation Jrn Behrens Technische Universitt Mnchen Center for Math. Sciences (M3) 85747 Garching, Germany behrens@ma.tum.de www-m3.ma.tum.de/m3/behrens behrens@ma.tum.de

525 views • 26 slides
EH Regulation EH Regulation EH Regulation ENV H 471 Winter 2004 Room T-498 HSC Charles D.

EH Regulation EH Regulation EH Regulation ENV H 471 Winter 2004 Room T-498 HSC Charles D.

Lesson 1. Law and Environmental Health January 7, 2003 EH Regulation EH Regulation EH Regulation ENV H 471 Winter 2004 Room T-498 HSC Charles D. (Chuck) Treser Department of Environmental & Occupational Health Sciences University

345 views • 6 slides
On the Abhyankar-Moh inequality Evelia Garca Barroso La Laguna University, Tenerife September,

On the Abhyankar-Moh inequality Evelia Garca Barroso La Laguna University, Tenerife September,

Introduction Abhyankar-Moh semigroups Plane curves with one branch at infinity On the Abhyankar-Moh inequality Evelia Garca Barroso La Laguna University, Tenerife September, 2014 Introduction Abhyankar-Moh semigroups Plane curves with one

576 views • 24 slides

More recommend