Sciweavers

Share
PKC
2004
Springer

On the Optimal Parameter Choice for Elliptic Curve Cryptosystems Using Isogeny

9 years 4 months ago
On the Optimal Parameter Choice for Elliptic Curve Cryptosystems Using Isogeny
The isogeny for elliptic curve cryptosystems was initially used for the efficient improvement of order counting methods. Recently, Smart proposed the countermeasure using isogeny for resisting the refined differential power analysis by Goubin (Goubin’s attack). In this paper, we examine the countermeasure using isogeny against zero-value point (ZVP) attack that is generalization of Goubin’s attack. We show that some curves require higher order of isogeny to prevent ZVP attack. Moreover, we prove that this countermeasure cannot transfer a class of curve to the efficient curve that is secure against ZVP attack. This class satisfies that the curve order is odd and (−3/p) = −1 for the base field p, and includes three SECG curves. In the addition, we compare some efficient algorithms that are secure against both Goubin’s attack and ZVP attack, and present the most efficient method of computing the scalar multiplication for each curve from SECG. Finally, we discuss another impr...
Toru Akishita, Tsuyoshi Takagi
Added 02 Jul 2010
Updated 02 Jul 2010
Type Conference
Year 2004
Where PKC
Authors Toru Akishita, Tsuyoshi Takagi
Comments (0)
books