Generation of two ''independent'' points on an elliptic curve of $j$-invariant $\neq 0, 1728$

Dimitri Koshelev

Paper 2023/785

Generation of two ''independent'' points on an elliptic curve of $j$ -invariant $\neq 0, 1728$

Dimitri Koshelev, École Normale Supérieure de Lyon

Abstract

This article is dedicated to a new generation method of two ``independent'' $F_{q}$ -points $P_{0}$ , $P_{1}$ on almost any ordinary elliptic curve $E$ over a finite field $F_{q}$ of large characteristic. In particular, the method is relevant for all standardized and real-world elliptic curves of $j$ -invariants different from $0$ , $1728$ . The points $P_{0}$ , $P_{1}$ are characterized by the fact that nobody (even a generator) knows the discrete logarithm $\log_{P_{0}} (P_{1})$ in the group $E (F_{q})$ . Moreover, only one square root extraction in $F_{q}$ (instead of two ones) is required in comparison with all previous generation methods.

Metadata

Available format(s): PDF
Category: Implementation
Publication info: Preprint.
Keywords: endomorphism rings generation of ''independent'' points isotrivial elliptic curves Mordell-Weil lattices
Contact author(s): dimitri koshelev @ gmail com
History: 2024-12-19: last of 3 revisions; 2023-05-29: received; See all versions
Short URL: https://ia.cr/2023/785
License: CC0

BibTeX

@misc{cryptoeprint:2023/785,
      author = {Dimitri Koshelev},
      title = {Generation of two ''independent'' points on an elliptic curve of $j$-invariant $\neq 0, 1728$},
      howpublished = {Cryptology {ePrint} Archive, Paper 2023/785},
      year = {2023},
      url = {https://eprint.iacr.org/2023/785}
}

Paper 2023/785

Generation of two ''independent'' points on an elliptic curve of j-invariant ≠0,1728

Abstract

Metadata

Generation of two ''independent'' points on an elliptic curve of $j$ -invariant $\neq 0, 1728$