Skip to main content
Conference ProceedingsOPEN ACCESS

A parameterized splitting system and its application to the discrete logarithm problem with low hamming weight product exponents

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2008) 4939 LNCS 328-343
DOI: 10.1007/978-3-540-78440-1_19
4Citations
Citations of this article
28Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

A low Hamming weight product (LHWP) exponent is used to increase the efficiency of cryptosystems based on the discrete logarithm problem (DLP). In this paper, we introduce a new tool, called a Parameterized Splitting System, to analyze the security of the DLP with LHWP exponents. We apply a parameterized splitting system to attack the GPS identification scheme modified by Coron, Lefranc and Poupard in CHES'05 and obtain an algorithm of 261.6 time complexity which was expected to be 278. Also a parameterized splitting system can be used to solve the DLP with a LHWP exponent proposed by Hoffstein and Silverman in 254.51 time complexity, that is smaller than 259 in the recent Cheon-Kim attack. © 2008 Springer-Verlag Berlin Heidelberg.

Author supplied keywords

Cite

CITATION STYLE

APA

Kim, S., & Cheon, J. H. (2008). A parameterized splitting system and its application to the discrete logarithm problem with low hamming weight product exponents. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 4939 LNCS, pp. 328–343). https://doi.org/10.1007/978-3-540-78440-1_19

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free