Improved algorithms for efficient arithmetic on elliptic curves using fast endomorphisms

Mathieu Ciet; Tanja Lange; Francesco Sica; Jean Jacques Quisquater

doi:10.1007/3-540-39200-9_24

Improved algorithms for efficient arithmetic on elliptic curves using fast endomorphisms

Mathieu Ciet, Tanja Lange, Francesco Sica, Jean Jacques Quisquater

Department of Mathematics

Research output: Chapter in Book/Report/Conference proceeding › Chapter

22 Citations (Scopus)

Abstract

In most algorithms involving elliptic curves, the most expensive part consists in computing multiples of points. This paper investigates how to extend the τ-adic expansion from Koblitz curves to a larger class of curves defined over a prime field having an efficiently-computable endomorphism φ in order to perform an efficient point multiplication with efficiency similar to Solinas' approach presented at CRYPTO '97. Furthermore, many elliptic curve cryptosystems require the computation of k₀P + k₁Q. Following the work of Solinas on the Joint Sparse Form, we introduce the notion of φ-Joint Sparse Form which combines the advantages of a φ-expansion with the additional speedup of the Joint Sparse Form. We also present an efficient algorithm to obtain the φ-Joint Sparse Form. Then, the double exponentiation can be done using the φ endomorphism instead of doubling, resulting in an average of l applications of φ and l/2 additions, where l is the size of the k_i's. This results in an important speed-up when the computation of φ is particularly effective, as in the case of Koblitz curves.

Original language	English
Title of host publication	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Editors	Eli Biham
Publisher	Springer Verlag
Pages	388-400
Number of pages	13
ISBN (Print)	3540140395, 9783540140399
DOIs	https://doi.org/10.1007/3-540-39200-9_24
Publication status	Published - 2003

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	2656
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Keywords

Elliptic curves
Fast endomorphisms
Joint Sparse Form

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/3-540-39200-9_24

Fingerprint Dive into the research topics of 'Improved algorithms for efficient arithmetic on elliptic curves using fast endomorphisms'. Together they form a unique fingerprint.

Cite this

Ciet, M., Lange, T., Sica, F., & Quisquater, J. J. (2003). Improved algorithms for efficient arithmetic on elliptic curves using fast endomorphisms. In E. Biham (Ed.), Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (pp. 388-400). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 2656). Springer Verlag. https://doi.org/10.1007/3-540-39200-9_24

Improved algorithms for efficient arithmetic on elliptic curves using fast endomorphisms. / Ciet, Mathieu; Lange, Tanja; Sica, Francesco; Quisquater, Jean Jacques.

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). ed. / Eli Biham. Springer Verlag, 2003. p. 388-400 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 2656).

Research output: Chapter in Book/Report/Conference proceeding › Chapter

Ciet, M, Lange, T, Sica, F & Quisquater, JJ 2003, Improved algorithms for efficient arithmetic on elliptic curves using fast endomorphisms. in E Biham (ed.), Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 2656, Springer Verlag, pp. 388-400. https://doi.org/10.1007/3-540-39200-9_24

Ciet M, Lange T, Sica F, Quisquater JJ. Improved algorithms for efficient arithmetic on elliptic curves using fast endomorphisms. In Biham E, editor, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Springer Verlag. 2003. p. 388-400. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/3-540-39200-9_24

Ciet, Mathieu ; Lange, Tanja ; Sica, Francesco ; Quisquater, Jean Jacques. / Improved algorithms for efficient arithmetic on elliptic curves using fast endomorphisms. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). editor / Eli Biham. Springer Verlag, 2003. pp. 388-400 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inbook{1de7d781cd214ebd9e577ae30dab5a5d,

title = "Improved algorithms for efficient arithmetic on elliptic curves using fast endomorphisms",

abstract = "In most algorithms involving elliptic curves, the most expensive part consists in computing multiples of points. This paper investigates how to extend the τ-adic expansion from Koblitz curves to a larger class of curves defined over a prime field having an efficiently-computable endomorphism φ in order to perform an efficient point multiplication with efficiency similar to Solinas' approach presented at CRYPTO '97. Furthermore, many elliptic curve cryptosystems require the computation of k0P + k1Q. Following the work of Solinas on the Joint Sparse Form, we introduce the notion of φ-Joint Sparse Form which combines the advantages of a φ-expansion with the additional speedup of the Joint Sparse Form. We also present an efficient algorithm to obtain the φ-Joint Sparse Form. Then, the double exponentiation can be done using the φ endomorphism instead of doubling, resulting in an average of l applications of φ and l/2 additions, where l is the size of the ki's. This results in an important speed-up when the computation of φ is particularly effective, as in the case of Koblitz curves.",

keywords = "Elliptic curves, Fast endomorphisms, Joint Sparse Form",

author = "Mathieu Ciet and Tanja Lange and Francesco Sica and Quisquater, {Jean Jacques}",

year = "2003",

doi = "10.1007/3-540-39200-9_24",

language = "English",

isbn = "3540140395",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "388--400",

editor = "Eli Biham",

booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

address = "Germany",

}

TY - CHAP

T1 - Improved algorithms for efficient arithmetic on elliptic curves using fast endomorphisms

AU - Ciet, Mathieu

AU - Lange, Tanja

AU - Sica, Francesco

AU - Quisquater, Jean Jacques

PY - 2003

Y1 - 2003

N2 - In most algorithms involving elliptic curves, the most expensive part consists in computing multiples of points. This paper investigates how to extend the τ-adic expansion from Koblitz curves to a larger class of curves defined over a prime field having an efficiently-computable endomorphism φ in order to perform an efficient point multiplication with efficiency similar to Solinas' approach presented at CRYPTO '97. Furthermore, many elliptic curve cryptosystems require the computation of k0P + k1Q. Following the work of Solinas on the Joint Sparse Form, we introduce the notion of φ-Joint Sparse Form which combines the advantages of a φ-expansion with the additional speedup of the Joint Sparse Form. We also present an efficient algorithm to obtain the φ-Joint Sparse Form. Then, the double exponentiation can be done using the φ endomorphism instead of doubling, resulting in an average of l applications of φ and l/2 additions, where l is the size of the ki's. This results in an important speed-up when the computation of φ is particularly effective, as in the case of Koblitz curves.

AB - In most algorithms involving elliptic curves, the most expensive part consists in computing multiples of points. This paper investigates how to extend the τ-adic expansion from Koblitz curves to a larger class of curves defined over a prime field having an efficiently-computable endomorphism φ in order to perform an efficient point multiplication with efficiency similar to Solinas' approach presented at CRYPTO '97. Furthermore, many elliptic curve cryptosystems require the computation of k0P + k1Q. Following the work of Solinas on the Joint Sparse Form, we introduce the notion of φ-Joint Sparse Form which combines the advantages of a φ-expansion with the additional speedup of the Joint Sparse Form. We also present an efficient algorithm to obtain the φ-Joint Sparse Form. Then, the double exponentiation can be done using the φ endomorphism instead of doubling, resulting in an average of l applications of φ and l/2 additions, where l is the size of the ki's. This results in an important speed-up when the computation of φ is particularly effective, as in the case of Koblitz curves.

KW - Elliptic curves

KW - Fast endomorphisms

KW - Joint Sparse Form

UR - http://www.scopus.com/inward/record.url?scp=35248868300&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=35248868300&partnerID=8YFLogxK

U2 - 10.1007/3-540-39200-9_24

DO - 10.1007/3-540-39200-9_24

M3 - Chapter

AN - SCOPUS:35248868300

SN - 3540140395

SN - 9783540140399

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 388

EP - 400

BT - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

A2 - Biham, Eli

PB - Springer Verlag

ER -