Conference ProceedingsOPEN ACCESS

On the unpredictability of bits of the elliptic curve Diffie-Hellman scheme

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2001) 2139 LNCS 201-212
DOI: 10.1007/3-540-44647-8_12
43Citations
Citations of this article
47Readers
Mendeley users who have this article in their library.

Abstract

Let E/Fp be an elliptic curve, and G ∈ E/Fp. Define the Diffie-Hellman function as DHE,G (aG, bG) = abG. We show that if there is an efficient algorithm for predicting the LSB of the x or y coordinate of abG given (E, G, aG, bG) for a certain family of elliptic curves, then there is an algorithm for computing the Diffie-Hellman function on all curves in this family. This seems stronger than the best analogous results for the Diffie-Hellman function in Fp*. Boneh and Venkatesan showed that in Fp* computing approximately (log p)1/2 of the bits of the Diffie-Hellman secret is as hard as computing the entire secret. Our results show that just predicting one bit of the Elliptic Curve Diffie-Hellman secret in a family of curves is as hard as computing the entire secret. © Springer-Verlag Berlin Heidelberg 2001.

Cite

CITATION STYLE

APA

Boneh, D., & Shparlinski, I. E. (2001). On the unpredictability of bits of the elliptic curve Diffie-Hellman scheme. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 2139 LNCS, pp. 201–212). Springer Verlag. https://doi.org/10.1007/3-540-44647-8_12

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free