Deterministic Encoding and Hashing to Odd Hyperelliptic Curves

Fouque, Pierre-Alain; Tibouchi, Mehdi

doi:10.1007/978-3-642-17455-1_17

Cited by 24 publications

(26 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A number of highly relevant cryptographic constructions, including identity based schemes [8] and password based key exchange protocols [7], require hashing into elliptic curves. Indeed, there have been a number of proposals for such hash functions, see for instance [17,21,27]. Recently, Farashahi et al [15] developed powerful techniques to show the indifferentiability of hash function constructions based on deterministic encodings.…”

Section: Application To Elliptic Curvesmentioning

confidence: 99%

Verified indifferentiable hashing into elliptic curves

Barthe

Grégoire

Heraud

et al. 2013

JCS

View full text Add to dashboard Cite

Abstract. Many cryptographic systems based on elliptic curves are proven secure in the Random Oracle Model, assuming there exist probabilistic functions that map elements in some domain (e.g. bitstrings) onto uniformly and independently distributed points in a curve. When implementing such systems, and in order for the proof to carry over to the implementation, those mappings must be instantiated with concrete constructions whose behavior does not deviate significantly from random oracles. In contrast to other approaches to public-key cryptography, where candidates to instantiate random oracles have been known for some time, the first generic construction for hashing into ordinary elliptic curves indifferentiable from a random oracle was put forward only recently by Brier et al. We present a machine-checked proof of this construction. The proof is based on an extension of the CertiCrypt framework with logics and mechanized tools for reasoning about approximate forms of observational equivalence, and integrates mathematical libraries of group theory and elliptic curves.

show abstract

Section: Application To Elliptic Curvesmentioning

confidence: 99%

Verified indifferentiable hashing into elliptic curves

Barthe

Grégoire

Heraud

et al. 2013

JCS

View full text Add to dashboard Cite

show abstract

“…the point at infinity and those of the form (x, 0)), and T ⊂ F q the set of roots of f in F q . In [9], we proved:…”

Section: Theorem 1 If P Is Large Enough the Expected Number Of Itermentioning

confidence: 99%

“…We can thus use the results of [9] to obtain an "almost bijective" map F q → H 0 (F q ), as well as a ν − O(1) -injective encoding to the Jacobian of H 0 . Therefore, we concentrate on the case when g is even, which we study in more details from now.…”

Section: 3mentioning

confidence: 99%

“…This gives, again, an optimal injective encoding to G = E(F q ). Similarly, the genus 1 case of the construction we proposed in [9] provides an optimal injective encoding to supersingular elliptic curves of the form:…”

Section: Injective Encodingsmentioning

confidence: 99%

“…Our construction is based on the bijective encoding from [9] to certain hyperelliptic curves of genus 2 and 3, and on the observation from [10] that those curves are quadratic covers of elliptic curves.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations