On modular decomposition of integers

Billy Bob Brumley; Kaisa Nyberg

doi:10.1007/978-3-642-02384-2_24

On modular decomposition of integers

Billy Bob Brumley, Kaisa Nyberg

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Scientific › peer-review

2 Citations (Scopus)

Abstract

At Crypto 2001, Gallant et al. showed how to exploit fast endomorphisms on some specific classes of elliptic curves to obtain fast scalar multiplication. The GLV method works by decomposing scalars into two small portions using multiplications, divisions, and rounding operations in the rationals. We present a new simple method based on the extended Euclidean algorithm that uses notably different operations than that of traditional decomposition. We obtain strict bounds on each component. Additionally, we examine the use of random decompositions, useful for key generation or cryptosystems requiring ephemeral keys. Specifically, we provide a complete description of the probability distribution of random decompositions and give bounds for each component in such a way that ensures a concrete level of entropy. This is the first analysis on distribution of random decompositions in GLV allowing the derivation of the entropy and thus an answer to the question first posed by Gallant in 1999.

Original language	English
Title of host publication	Progress in Cryptology - AFRICACRYPT 2009 - Second International Conference on Cryptology in Africa, Proceedings
Pages	386-402
Number of pages	17
DOIs	https://doi.org/10.1007/978-3-642-02384-2_24
Publication status	Published - 9 Nov 2009
Externally published	Yes
Publication type	A4 Article in conference proceedings
Event	2nd International Conference on Cryptology in Africa, AFRICACRYPT 2009 - Gammarth, Tunisia Duration: 21 Jun 2009 → 25 Jun 2009

Publication series

Name	Lecture Notes in Computer Science
Volume	5580
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	2nd International Conference on Cryptology in Africa, AFRICACRYPT 2009
Country/Territory	Tunisia
City	Gammarth
Period	21/06/09 → 25/06/09

Keywords

Elliptic curve cryptography
GLV method
Integer decompositions

Publication forum classification

Publication forum level 1

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

Access to Document

10.1007/978-3-642-02384-2_24

Cite this

@inproceedings{25dc2b5385b14334b0d092d30ee64584,

title = "On modular decomposition of integers",

abstract = "At Crypto 2001, Gallant et al. showed how to exploit fast endomorphisms on some specific classes of elliptic curves to obtain fast scalar multiplication. The GLV method works by decomposing scalars into two small portions using multiplications, divisions, and rounding operations in the rationals. We present a new simple method based on the extended Euclidean algorithm that uses notably different operations than that of traditional decomposition. We obtain strict bounds on each component. Additionally, we examine the use of random decompositions, useful for key generation or cryptosystems requiring ephemeral keys. Specifically, we provide a complete description of the probability distribution of random decompositions and give bounds for each component in such a way that ensures a concrete level of entropy. This is the first analysis on distribution of random decompositions in GLV allowing the derivation of the entropy and thus an answer to the question first posed by Gallant in 1999.",

keywords = "Elliptic curve cryptography, GLV method, Integer decompositions",

author = "Brumley, {Billy Bob} and Kaisa Nyberg",

year = "2009",

month = nov,

day = "9",

doi = "10.1007/978-3-642-02384-2_24",

language = "English",

isbn = "3642023835",

series = "Lecture Notes in Computer Science",

pages = "386--402",

booktitle = "Progress in Cryptology - AFRICACRYPT 2009 - Second International Conference on Cryptology in Africa, Proceedings",

note = "2nd International Conference on Cryptology in Africa, AFRICACRYPT 2009 ; Conference date: 21-06-2009 Through 25-06-2009",

}

Brumley, BB & Nyberg, K 2009, On modular decomposition of integers. in Progress in Cryptology - AFRICACRYPT 2009 - Second International Conference on Cryptology in Africa, Proceedings. Lecture Notes in Computer Science, vol. 5580, pp. 386-402, 2nd International Conference on Cryptology in Africa, AFRICACRYPT 2009, Gammarth, Tunisia, 21/06/09. https://doi.org/10.1007/978-3-642-02384-2_24

On modular decomposition of integers. / Brumley, Billy Bob; Nyberg, Kaisa.
Progress in Cryptology - AFRICACRYPT 2009 - Second International Conference on Cryptology in Africa, Proceedings. 2009. p. 386-402 (Lecture Notes in Computer Science; Vol. 5580).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Scientific › peer-review

TY - GEN

T1 - On modular decomposition of integers

AU - Brumley, Billy Bob

AU - Nyberg, Kaisa

PY - 2009/11/9

Y1 - 2009/11/9

N2 - At Crypto 2001, Gallant et al. showed how to exploit fast endomorphisms on some specific classes of elliptic curves to obtain fast scalar multiplication. The GLV method works by decomposing scalars into two small portions using multiplications, divisions, and rounding operations in the rationals. We present a new simple method based on the extended Euclidean algorithm that uses notably different operations than that of traditional decomposition. We obtain strict bounds on each component. Additionally, we examine the use of random decompositions, useful for key generation or cryptosystems requiring ephemeral keys. Specifically, we provide a complete description of the probability distribution of random decompositions and give bounds for each component in such a way that ensures a concrete level of entropy. This is the first analysis on distribution of random decompositions in GLV allowing the derivation of the entropy and thus an answer to the question first posed by Gallant in 1999.

AB - At Crypto 2001, Gallant et al. showed how to exploit fast endomorphisms on some specific classes of elliptic curves to obtain fast scalar multiplication. The GLV method works by decomposing scalars into two small portions using multiplications, divisions, and rounding operations in the rationals. We present a new simple method based on the extended Euclidean algorithm that uses notably different operations than that of traditional decomposition. We obtain strict bounds on each component. Additionally, we examine the use of random decompositions, useful for key generation or cryptosystems requiring ephemeral keys. Specifically, we provide a complete description of the probability distribution of random decompositions and give bounds for each component in such a way that ensures a concrete level of entropy. This is the first analysis on distribution of random decompositions in GLV allowing the derivation of the entropy and thus an answer to the question first posed by Gallant in 1999.

KW - Elliptic curve cryptography

KW - GLV method

KW - Integer decompositions

UR - http://www.scopus.com/inward/record.url?scp=70350645165&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-02384-2_24

DO - 10.1007/978-3-642-02384-2_24

M3 - Conference contribution

AN - SCOPUS:70350645165

SN - 3642023835

SN - 9783642023835

T3 - Lecture Notes in Computer Science

SP - 386

EP - 402

BT - Progress in Cryptology - AFRICACRYPT 2009 - Second International Conference on Cryptology in Africa, Proceedings

T2 - 2nd International Conference on Cryptology in Africa, AFRICACRYPT 2009

Y2 - 21 June 2009 through 25 June 2009

ER -

On modular decomposition of integers

Abstract

Publication series

Conference

Keywords

Publication forum classification

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this