Cryptology ePrint Archive: Report 2020/074

Rolling up sleeves when subversion's in a field?

Daniel R. L. Brown

Abstract: A nothing-up-my-sleeve number is a cryptographic constant, such as a field size in elliptic curve cryptography, with qualities to assure users against subversion of the number by the system designer. A number with low Kolmogorov descriptional complexity resists being subverted to the extent that the speculated subversion would leave a trace that cannot be hidden within the short description.

The roll programming language, a version of Godel's 1930s definition of computability, can somewhat objectively quantify low descriptional complexity, a nothing-up-my-sleeve quality, of a number. For example, curves NIST-P-256, Curve25519, and NIST-P-521 have fields sizes with roll programs of 112, 84, and 63 words (respectively).

Category / Keywords: foundations / Kolmogorov descriptional complexity, subversion

Date: received 23 Jan 2020, last revised 15 Dec 2020

Contact author: danibrown at blackberry com

Available format(s): PDF | BibTeX Citation

Note: Latest versions shortens programs for field sizes of NIST curves P-521 and K-283.

Version: 20201215:195158 (All versions of this report)

Short URL: ia.cr/2020/074


[ Cryptology ePrint archive ]