[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AW: Reasons to include ECC to our charter

To: "Dominikus Scherkl" <Dominikus.Scherkl@xxxxxxxxxxx>
Subject: Re: AW: Reasons to include ECC to our charter
From: Bodo Moeller <moeller@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Tue, 4 Sep 2001 20:41:18 +0200 (CEST)
Cc: ietf-openpgp@xxxxxxx
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx

Dominikus Scherkl <Dominikus.Scherkl@xxxxxxxxxxx>:

>>> Certicom may have.  Specifically, Certicom claims to have a patent
>>> application covering point compression, and noone else really knows
>>> what is in it.  So it may be prudent to avoid compressed point
>>> representations.

> I agree to this. Also from a mathematical point of view compression is
> somewhat unfortunate, because no proper algorithm for curves over odd
> extension fields has been developed.

Algorithms for computing square roots in odd-characteristic extension
fields do exist (see chapter 7 in Sachar Paulus, "Algorithmen für
endliche abelsche Gruppen", Diplomarbeit, Unversität des Saarlandes,
1993), but none of the current specifications (such as the IEEE P1363a
drafts) defines what the compression bit should look like.  I think
the most obvious choice would be, given a polynomial representation of
a non-zero field element with coefficients in the underlying prime
field, to find the lowest-indexed non-zero coefficient and use its
LSB.

References:
- AW: Reasons to include ECC to our charter
  - From: Dominikus Scherkl

Prev by Date: Re: Reasons to include ECC to our charter
Next by Date: Re: Reasons to include ECC to our charter
Previous by thread: AW: Reasons to include ECC to our charter
Next by thread: AW: Reasons to include ECC to our charter
Index(es):
- Date
- Thread