Journal of Cryptology

, Volume 22, Issue 4, pp 505–529 | Cite as

Isogenies and the Discrete Logarithm Problem in Jacobians of Genus 3 Hyperelliptic Curves,

Article

Abstract

We describe the use of explicit isogenies to translate instances of the Discrete Logarithm Problem (DLP) from Jacobians of hyperelliptic genus 3 curves to Jacobians of non-hyperelliptic genus 3 curves, where they are vulnerable to faster index calculus attacks. We provide explicit formulae for isogenies with kernel isomorphic to (ℤ/2ℤ)3 (over an algebraic closure of the base field) for any hyperelliptic genus 3 curve over a field of characteristic not 2 or 3. These isogenies are rational for a positive fraction of all hyperelliptic genus 3 curves defined over a finite field of characteristic p>3. Subject to reasonable assumptions, our constructions give an explicit and efficient reduction of instances of the DLP from hyperelliptic to non-hyperelliptic Jacobians for around 18.57% of all hyperelliptic genus 3 curves over a given finite field. We conclude with a discussion on extending these ideas to isogenies with more general kernels.

Keywords

Hyperelliptic curve cryptography Discrete logarithm problem Isogeny Genus 3 

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. [1]
    C. Birkenhake, H. Lange, Complex Abelian Varieties (2e), Grundlehren der mathematischen Wissenschaften, vol. 302 (Springer, Berlin, 2004) Google Scholar
  2. [2]
    W. Bosma, J. Cannon, C. Playoust, The Magma computational algebra system. I. The user language. J. Symb. Comput. 24(3–4), 235–265 (2006) MathSciNetGoogle Scholar
  3. [3]
    J.-B. Bost, J.-F. Mestre, Moyenne arithmético-géométrique et périodes des courbes de genre 1 et 2. Gaz. Math. Soc. Fr. 38, 36–64 (1988) MATHMathSciNetGoogle Scholar
  4. [4]
    P. Cartier, Isogenies and duality of abelian varieties. Ann. Math. 71(2), 315–351 (1960) CrossRefMathSciNetGoogle Scholar
  5. [5]
    C. Diem, An index calculus algorithm for plane curves of small degree, in ANTS-VII, ed. by F. Hess, S. Pauli, M. Pohst. LNCS, vol. 4076 (Springer, Berlin, 2006), pp. 543–557 Google Scholar
  6. [6]
    R. Donagi, The fibres of the Prym map, in Curves, Jacobians, and Abelian Varieties, Amherst, MA, 1990. Contemp. Math. 136, 55–125 (1992) Google Scholar
  7. [7]
    R. Donagi, R. Livné, The arithmetic-geometric mean and isogenies for curves of higher genus. Ann. Sc. Norm. Super. Pisa, Cl. Sci. (4) 28(2), 323–339 (1999) MATHGoogle Scholar
  8. [8]
    P. Gaudry, E. Thomé, N. Thériault, C. Diem, A double large prime variation for small genus hyperelliptic index calculus. Math. Comput. 76, 475–492 (2007) MATHCrossRefGoogle Scholar
  9. [9]
    P. Griffiths, J. Harris, Principles of Algebraic Geometry (Wiley, New York, 1978) MATHGoogle Scholar
  10. [10]
    J. Harris, Algebraic Geometry: A First Course (Springer, Berlin, 1992) MATHGoogle Scholar
  11. [11]
    F. Hess, Computing Riemann–Roch spaces in algebraic function fields and related topics. J. Symb. Comput. 33(4), 425–445 (2002) MATHCrossRefMathSciNetGoogle Scholar
  12. [12]
    M. Hindry, J. Silverman, Diophantine Geometry: An Introduction, Graduate Texts in Mathematics, vol. 201 (Springer, Berlin, 2000) MATHGoogle Scholar
  13. [13]
    S. Lang, A. Weil, Number of points of varieties in finite fields. Am. J. Math. LXXVI(4), 819–827 (1954) CrossRefMathSciNetGoogle Scholar
  14. [14]
    D. Lehavi, C. Ritzenthaler, An explicit formula for the arithmetic geometric mean in genus 3. Exp. Math. 16, 421–440 (2007) MATHMathSciNetGoogle Scholar
  15. [15]
    The Magma computational algebra system, http://magma.maths.usyd.edu.au/
  16. [16]
    J.S. Milne, Abelian varieties, in Arithmetic Geometry, Storrs, Conn., 1984 (Springer, New York, 1986), pp. 103–150 Google Scholar
  17. [17]
    D. Mumford, Tata Lectures on Theta II (Birkhäuser, Basel, 1984) MATHGoogle Scholar
  18. [18]
    F. Oort, K. Ueno, Principally polarized abelian varieties of dimension two or three are Jacobian varieties. J. Fac. Sci. Univ. Tokyo Sect. IA Math. 20, 377–381 (1973) MATHMathSciNetGoogle Scholar
  19. [19]
    G. Pohlig, M. Hellman, An improved algorithm for computing logarithms over GF(p) and its cryptographic significance. IEEE Trans. Inf. Theory 24, 106–110 (1978) MATHCrossRefMathSciNetGoogle Scholar
  20. [20]
    S. Recillas, Jacobians of curves with g 41’s are the Prym’s of trigonal curves. Bol. Soc. Mat. Mex. (2) 19(1), 9–13 (1974) MATHMathSciNetGoogle Scholar
  21. [21]
    J.-P. Serre, Algebraic Curves and Class Fields, Graduate Texts in Mathematics, vol. 117 (Springer, Berlin, 1988) Google Scholar
  22. [22]
    J.-P. Serre, Galois Cohomology (Springer, Berlin, 2002) MATHGoogle Scholar
  23. [23]
    B. Smith, Isogenies and the discrete logarithm problem in Jacobians of genus 3 hyperelliptic curves, in EUROCRYPT 2008, ed. by N. Smart. LNCS, vol. 4965 (Springer, Berlin, 2008), pp. 163–180 CrossRefGoogle Scholar
  24. [24]
    R. Vakil, Twelve points on the projective line, branched covers, and rational elliptic fibrations. Math. Ann. 320(1), 33–54 (2001) MATHCrossRefMathSciNetGoogle Scholar
  25. [25]
    J. Vélu, Isogénies entre courbes elliptiques. C. R. Acad. Sci. Paris, Sér. A 273, 305–347 (1971) Google Scholar

Copyright information

© International Association for Cryptologic Research 2009

Authors and Affiliations

  1. 1.Laboratoire d’Informatique de l’École polytechnique (LIX)INRIA Saclay–Île-de-FrancePalaiseau CedexFrance

Personalised recommendations