BI THUYT TRNH

Elliptic Curve Cryptography

NHM 4:
GVHD : H Ngc Linh
L Ngc Luyn. Nguyn c Ton
Phan Nguyn Nht Trng
Lp VT k37
 Gii thiu ng
cong elliptic
ng cong Elliptic trn s thc ng cong
Elliptic l ng cong c dng:
Y2 = x3+ax+b
Trc khi kho st th ca ng cong
Elliptic, chng ta xem li ng bc 3 sau:
Y2 =f(x)= x3+ax+b
Nu a>0 , f(x) n iu tng.
Nu a ,f(x) c 4 trng hp sau: t
PHNG TRNH TNG QUT ECC
Trong ng cong Elliptic, chng ta nh ngha
thm mt im O (im v cc). Gi E(a, b) l
tp cc im thuc ng cong y=x3+ax+b
cng vi im O.
PHP CNG ECC
 PHP CNG HAI IM
P+Q=R(xr,yr)

xr=2-xp-xq

yr =(xp-xr)-yp
Php cng hai im
 PHP NHN I.
P+P=2P

xr=2-2xp

yr =(xp-xr)-yp
 ng cong elliptic trn trng Zp

ng con elliptic trn trng Zp, ng cong ny c

dng
Y2 mod p = (x3+ax+b) mod p a,b,x,y Zp
V d trong trng Z11, chn a=-1, b=0, x=4,y=4 ta c
42 mod 11 = (43-4) mod 11
16 mod 11= 60 mod 11 = 5
ng cong elliptic trn trng Zp
Y2 X3 X X Y

0 0 0 0 0

1 1 0 1 0

2 4 6 10 0

3 9 2 4 4 or 7

4 5 5 9 4 or 7

5 3 10 6 1

6 3 1 6 10

7 5 6 8 8 or 3

8 9 9

9 4 5

10 1 0
ng cong elliptic trn trng
Zp
Gi N l s cc im trn ng cong elliptic
c nh ngha trn . Khi

ng cong Elliptic trn trng
GF(2m)
ng cong Elliptic trn trng GF(2m) l
ng cong c cc h s thuc trng GF(2 m),
ng cong ny c dng hi khc so vi trn
Zp:
y2+xy=x3+ax=b a,b,x,y GF(2m)
ng cong y2+xy=x3+ax=b trn
trng s thc
By gi chng ta s xt tp E2m(a,b) gm cc
im trn ng cong Elliptic ny cng vi
im v cc O.
V d, xt trng GF(24) vi a thc ti gin l
m(x)=x4+x+ 1. Phn t sinh g ca trng ny
c iu kin g4 = g+ 1 . Bng cc ly tha ca
g l:
Bng cc ly tha ca g l:
Xt v d v ng cong Elliptic trn
GF(24):
y2 + xy = x3 + g4x + 1 (a = g4,b = 1)
Bng bn di lit k cc im thuc ng
cong ny
Vi 2 im P, Q bt k (P
Q)
php cng R=P+Q c xc nh bng cng
thc:

Vi im P bt k R=P+P
 ng cong Elliptic trong m
ha ECC
i vi m ha ng cong Elliptic, chng ta
xy dng hm mt chiu nh sau: Trong nhm
Abel Ep(a,b) xy dng t ng cong Elliptic
Zp, xt phng trnh:
Q=P+P+P+P++P=kP (im Q l tng ca k
im P, k < p)
Cho trc k v P, vic tnh Q thc hin d
dng. Tuy nhin nu cho trc P v Q, vic tm
ra k l cng vic kh khn. y chnh l hm
logarit ri rc ca ng cong Elliptic.
V d:
Y2 mod 17 = (x3+2x+2) mod 17 a,b,x,y Z17
Cho im G =(5,1); M(7,6)
2G=(6;3) 6G=(16;13)

3G=(10;6) 7G=(0;6)

4G(3;1) 8G=(13;17)

5G=(9;16) 9G=(7;6)

V 9G = M nn K = 9.
Trong thc t chng ta s s dng ng cong
Elliptic Zp vi gi tr p ln, sao cho vic vt cn
l bt kh thi. Hin nay ngi ta tm ra
phng php tm k nhanh hn vt cn l
phng php Pollar rho. Da vo hm mt
chiu trn chng ta c 2 cch s dng ng
cong Elliptic trong lnh vc m ha l trao i
kha EC Diffie-Hellman v m ha EC.
Vd:EC Diffie Hellman
Vd:EC Diffie Hellman
NHNG THNG S THC T.
 Phng php Elgamal:

Eq(a,b)

Alice Bob
M d<n v E = dG CM = (kG, PM + kE)

bt sang dng im kG . d

PM =(x, y). CM = (dkG, PM + kE)

k l mt s ngu nhin

CM = (kG, PM + kE) PM + kdG kdG = PM

Phng php Menezes - Vanstone:

Alice Bob
M

m1 m2
xp-1 v
k s ngu nhin
yp-1
Trit tiu
Tnh an ton
tn cng h mt ng cong
Elliptic.

Phng php Pohlig - Hellman

Tn cng MOV.
Phng php Xedni
Cc tn cng da trn gi thuyt Diffie
Hellman
Cc tn cng ci t
Tng hp v so sch cc
phng php.
Sinh tham s cho h mt Elliptic

Tham s min ca ng cong Elliptic.

Sinh v kim tra cp kha ng cong Elliptic
Thut ton kim tra iu kin MOV
Thut ton sinh ng cong ngu nhin
Cm n thy
v cc bn lng nghe !