CONFERENCE PROCEEDINGS
Advanced Search
Home > Proceedings > Volume 7444 > Article
Paper
3 September 2009 Optimizing elliptic curve scalar multiplication for small scalars
Pascal Giorgi, Laurent Imbert, Thomas Izard
Author Affiliations +
Proceedings Volume 7444, Mathematics for Signal and Information Processing; 74440N (2009) https://doi.org/10.1117/12.827689
Event: SPIE Optical Engineering + Applications, 2009, San Diego, California, United States
Abstract
On an elliptic curve, the multiplication of a point P by a scalar k is defined by a series of operations over the field of definition of the curve E, usually a finite field Fq. The computational cost of [k]P = P + P + ...+ P (k times) is therefore expressed as the number of field operations (additions, multiplications, inversions). Scalar multiplication is usually computed using variants of the binary algorithm (double-and-add, NAF, wNAF, etc). If s is a small integer, optimized formula for [s]P can be used within a s-ary algorithm or with double-base methods with bases 2 and s. Optimized formulas exists for very small scalars (s ≤ 5). However, the exponential growth of the number of field operations makes it a very difficult task when s > 5. We present a generic method to automate transformations of formulas for elliptic curves over prime fields in various systems of coordinates. Our method uses a directed acyclic graph structure to find possible common subexpressions appearing in the formula and several arithmetic transformations. It produces efficient formulas to compute [s]P for a large set of small scalars s. In particular, we present a faster formula for [5]P in Jacobian coordinates. Moreover, our program can produce code for various mathematical software (Magma) and libraries (PACE).
© (2009) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Citation Download Citation
Pascal Giorgi, Laurent Imbert, and Thomas Izard "Optimizing elliptic curve scalar multiplication for small scalars", Proc. SPIE 7444, Mathematics for Signal and Information Processing, 74440N (3 September 2009); https://doi.org/10.1117/12.827689
ACCESS THE FULL ARTICLE
ORGANIZATIONAL
Sign in with credentials provided by your organization.
INSTITUTIONAL
Select your institution to access the SPIE Digital Library.
SELECT YOUR INSTITUTION
PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.
PERSONAL SIGN IN
No SPIE Account? Create one
PURCHASE THIS CONTENT
SUBSCRIBE TO DIGITAL LIBRARY
50 downloads per 1-year subscription
Members: $195
Non-members: $335 ADD TO CART
25 downloads per 1 - year subscription
Members: $145
Non-members: $250 ADD TO CART
PURCHASE SINGLE ARTICLE
Includes PDF, HTML & Video, when available
Members: $17.00
Non-members: $21.00 ADD TO CART
PROCEEDINGS
 10 PAGES
DOWNLOAD PAPER SAVE TO MY LIBRARY
GET CITATION
Lens.org Logo
CITATIONS
Cited by 9 scholarly publications.
Advertisement
Advertisement
RIGHTS & PERMISSIONS
Get copyright permission  Get copyright permission on Copyright Marketplace
KEYWORDS
Binary data
Computing systems
Silver
Actinium
Cryptography
Current controlled current source
Data processing
RELATED CONTENT
Porting the ALMA Correlator Data Processor from hard real time...
Proceedings of SPIE (July 26 2016)
Autonomous Gripper System
Proceedings of SPIE (October 19 1987)
High-speed floating-point divider with reduced area
Proceedings of SPIE (September 03 2009)
Mapping of MPEG-4 decoding on a flexible architecture platform
Proceedings of SPIE (December 20 2001)
On converting numbers to the double-base number system
Proceedings of SPIE (October 26 2004)
Pseudo-random generator based on Chinese Remainder Theorem
Proceedings of SPIE (September 03 2009)
CORDIC processor architectures
Proceedings of SPIE (December 01 1991)
Subscribe to Digital Library
Receive Erratum Email Alert
Back to Top