Koblitz curves and integer equivalents of frobenius expansions

Billy Bob Brumley; Kimmo Järvinen

Koblitz curves and integer equivalents of frobenius expansions

Billy Bob Brumley, Kimmo Järvinen

Tutkimustuotos: Konferenssiartikkeli › Scientific › vertaisarvioitu

9 Sitaatiot (Scopus)

Abstrakti

Scalar multiplication on Koblitz curves can be very efficient due to the elimination of point doublings. Modular reduction of scalars is commonly performed to reduce the length of expansions, and τ-adic Non-Adjacent Form (NAF) can be used to reduce the density. However, such modular reduction can be costly. An alternative to this approach is to use a random τ-adic NAF, but some cryptosystems (e.g. ECDSA) require both the integer and the scalar multiple. This paper presents an efficient method for computing integer equivalents of random τ-adic expansions. The hardware implications are explored, and an efficient hardware implementation is presented. The results suggest significant computational efficiency gains over previously documented methods.

Alkuperäiskieli	Englanti
Otsikko	Selected Areas in Cryptography - 14th International Workshop, SAC 2007, Revised Selected Papers
Sivut	126-137
Sivumäärä	12
Tila	Julkaistu - 1 jouluk. 2007
Julkaistu ulkoisesti	Kyllä
OKM-julkaisutyyppi	A4 Artikkeli konferenssijulkaisussa
Tapahtuma	14th International Workshop on Selected Areas in Cryptography, SAC 2007 - Ottawa, Kanada Kesto: 16 elok. 2007 → 17 elok. 2007

Julkaisusarja

Nimi	Lecture Notes in Computer Science
Vuosikerta	4876
ISSN (painettu)	0302-9743
ISSN (elektroninen)	1611-3349

Conference

Conference	14th International Workshop on Selected Areas in Cryptography, SAC 2007
Maa/Alue	Kanada
Kaupunki	Ottawa
Ajanjakso	16/08/07 → 17/08/07

Julkaisufoorumi-taso

Jufo-taso 1

!!ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Muut tiedostot ja linkit

Link to publication in Scopus

Siteeraa tätä

@inproceedings{8e47e0e996564a6fae34f856c4bd82ce,

title = "Koblitz curves and integer equivalents of frobenius expansions",

abstract = "Scalar multiplication on Koblitz curves can be very efficient due to the elimination of point doublings. Modular reduction of scalars is commonly performed to reduce the length of expansions, and τ-adic Non-Adjacent Form (NAF) can be used to reduce the density. However, such modular reduction can be costly. An alternative to this approach is to use a random τ-adic NAF, but some cryptosystems (e.g. ECDSA) require both the integer and the scalar multiple. This paper presents an efficient method for computing integer equivalents of random τ-adic expansions. The hardware implications are explored, and an efficient hardware implementation is presented. The results suggest significant computational efficiency gains over previously documented methods.",

keywords = "Digital signatures, Elliptic curve cryptography, Koblitz curves",

author = "Brumley, {Billy Bob} and Kimmo J{\"a}rvinen",

year = "2007",

month = dec,

day = "1",

language = "English",

isbn = "3540773592",

series = "Lecture Notes in Computer Science",

pages = "126--137",

booktitle = "Selected Areas in Cryptography - 14th International Workshop, SAC 2007, Revised Selected Papers",

note = "14th International Workshop on Selected Areas in Cryptography, SAC 2007 ; Conference date: 16-08-2007 Through 17-08-2007",

}

Brumley, BB & Järvinen, K 2007, Koblitz curves and integer equivalents of frobenius expansions. julkaisussa Selected Areas in Cryptography - 14th International Workshop, SAC 2007, Revised Selected Papers. Lecture Notes in Computer Science, Vuosikerta 4876, Sivut 126-137, 14th International Workshop on Selected Areas in Cryptography, SAC 2007, Ottawa, Kanada, 16/08/07.

TY - GEN

T1 - Koblitz curves and integer equivalents of frobenius expansions

AU - Brumley, Billy Bob

AU - Järvinen, Kimmo

PY - 2007/12/1

Y1 - 2007/12/1

N2 - Scalar multiplication on Koblitz curves can be very efficient due to the elimination of point doublings. Modular reduction of scalars is commonly performed to reduce the length of expansions, and τ-adic Non-Adjacent Form (NAF) can be used to reduce the density. However, such modular reduction can be costly. An alternative to this approach is to use a random τ-adic NAF, but some cryptosystems (e.g. ECDSA) require both the integer and the scalar multiple. This paper presents an efficient method for computing integer equivalents of random τ-adic expansions. The hardware implications are explored, and an efficient hardware implementation is presented. The results suggest significant computational efficiency gains over previously documented methods.

AB - Scalar multiplication on Koblitz curves can be very efficient due to the elimination of point doublings. Modular reduction of scalars is commonly performed to reduce the length of expansions, and τ-adic Non-Adjacent Form (NAF) can be used to reduce the density. However, such modular reduction can be costly. An alternative to this approach is to use a random τ-adic NAF, but some cryptosystems (e.g. ECDSA) require both the integer and the scalar multiple. This paper presents an efficient method for computing integer equivalents of random τ-adic expansions. The hardware implications are explored, and an efficient hardware implementation is presented. The results suggest significant computational efficiency gains over previously documented methods.

KW - Digital signatures

KW - Elliptic curve cryptography

KW - Koblitz curves

UR - http://www.scopus.com/inward/record.url?scp=38549165100&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:38549165100

SN - 3540773592

SN - 9783540773597

T3 - Lecture Notes in Computer Science

SP - 126

EP - 137

BT - Selected Areas in Cryptography - 14th International Workshop, SAC 2007, Revised Selected Papers

T2 - 14th International Workshop on Selected Areas in Cryptography, SAC 2007

Y2 - 16 August 2007 through 17 August 2007

ER -

Koblitz curves and integer equivalents of frobenius expansions

Abstrakti

Julkaisusarja

Conference

Julkaisufoorumi-taso

!!ASJC Scopus subject areas

Muut tiedostot ja linkit

Sormenjälki

Siteeraa tätä