Elliptic

n tt nghip H mt ng cong elliptic
MC LC
MC LC ........................................................................................................ 1
LI CM N ................................................................................................... 2
M U ........................................................................................................... 3
CHNG 1 ....................................................................................................... 5
C S TON HC .......................................................................................... 5
1.1. Phng trnh ng d bc hai v thng d bc hai ................................ 5
1.2. Nhm ...................................................................................................... 9
1.3. Trng .................................................................................................. 10
1.4. Trng hu hn .................................................................................... 11
CHNG 2 ..................................................................................................... 12
NG CONG ELLIPTIC ............................................................................ 12
2.1. M u v t bi ton ......................................................................... 12
2.2. ng cong elliptic trn trng hu hn ............................................. 14
2.3. Cc php ton trn ng cong Elliptic ............................................... 15
2.4. m s im trn ng cong elliptic trn trng Fq ......................... 17
2.5. Phng php chn ng cong Elliptic ph hp v im c s .......... 18
2.5.1. Trng K ....................................................................................... 18
2.5.2. Dng ca ng cong elliptic ........................................................ 19
2.5.3. Phng php la chn ................................................................... 19
CHNG 3 ..................................................................................................... 21
H MT NG CONG ELLIPTIC ........................................................... 21
3.1. M u v t bi ton ......................................................................... 21
3.2. Nhng bn r ln ng cong .............................................................. 22
3.3. Logarit ri rc trn ng cong Elliptic( Discrete logarithm on
Elliptic) ........................................................................................................ 24
3.4. Vn trao i kho Diffie- Hellman(D- H) trn Elliptic ................... 24
3.5. H mt m ho Elgamal trn ng cong Elliptic .............................. 25
CHNG 4 ..................................................................................................... 27
MT VI NG DNG .................................................................................. 27
4.1. Lc ch k s trn ng cong elliptic (Elliptic Curve Signature
Algorithm ) - ECDSA ................................................................................. 27
4.1.1. Lc k ECDSA ...................................................................... 27
4.1.2. an ton ca s ch k ECDSA ........................................... 28
4.2. Mt s chun s dng h mt ECC ...................................................... 29
KT LUN ..................................................................................................... 32
TI LIU THAM KHO ............................................................................... 33
Phan Th Thu Hin - 1 - Lp CT702
LI CM N
Em xin by t lng bit n ti TS H Vn Canh tn tnh hng dn
v cung cp nhng ti liu qu bu em hon thnh lun vn ny.
Em xin chn thnh cm n cc Thy c gio khoa cng ngh thng tin
trng i Hc Dn Lp Hi Phng nhit tnh ging dy chng em trong 4
nm hc.
Ti cng xin chn thnh cm n cc bn b ng nghip gip ti
trong qu trnh hc tp v hon thnh tt lun vn ny!
M U
Ngy nay vi s pht trin mnh m ca cng ngh thng tin, truyn
thng ni chung v Internet ni ring gip cho vic trao i thng tin
nhanh chng, d dng, E-mail cho php ngi ta nhn hay gi th ngay trn
my tnh ca mnh, E-business cho php thc hin cc giao dch trn mn.
Do vy mt vn pht sinh l thng tin c th b trm cp, c th l sai lch,
c th gi mo. iu c th nh hng ti cc t cha, cc cng ty hay c
mt quc gia. Nhng b mt kinh doanh, ti chnh l mc tiu ca cc i th
cnh tranh. Nhng tin tc v an ninh quc gia l mc tiu ca cc t chc tnh
bo trong v ngoi nc.
gii quyt tnh hnh trn an ton thng tin c t ra cp thit. K
thut mt m l mt trong nhng gii php ca an ton truyn thng. K thut
ny c t ngn xa nhng n n gin, ngy nay khi c mng my tnh ngi
ta dng mt m hin i. Cc nh khoa hc pht minh ra nhng h mt m
nhm che du thng tin cng nh l lm r chng trnh s gim ng ca
nhng k c tnh ph hoi nh cc h mt: RSA, Elgamal mc d cng rt
an ton nhng c di kho ln nn trong mt s lnh vc khng th ng
dng c.
Chnh v vy ngi ta pht minh mt h mt l h mt trn ng
cong elliptic, h mt ny c nh gi l h mt c bo mt an ton cao
v hiu qu hn nhiu so vi h mt cng khai khc, n c ng dng
trn nhiu lnh vc v c s dng nhiu ni trn th gii tuy nhin cn
mi m Vit Nam. Trong tng lai gn H mt trn ng cong Elliptic
s c s dng mt cch ph bin v thay th nhng h mt trc n.
V l do , em chn ti H mt ng cong elliptic nghin
cu, tm hiu nhm tin ti khai thc h mt ny phc v cho bo mt thng
tin trong thc t.

Lun vn ny gm 4 chng
Chng 1: C s ton hc
Chng 2: H mt m
Chng 3: ng cong Elliptic
Chng 4: H mt ng cong Elliptic
Chng 5: Mt vi ng dng
Nhng trong bo co ny em trnh by tm tt ni dung chnh trong
ti:H mt ng cong elliptic.
CHNG 1
C S TON HC
1.1. Phng trnh ng d bc hai v thng d bc hai
Ta xt phng trnh ng d bc hai c dng nh sau:
x
2
a (mod n)
Trong n l s nguyn dng, a l s nguyn vi gcd(a, n) 1, v x
l n s. Phng trnh khng phi bao gi cng c nghim, khi n c
nghim th ta gi a l thng d bc hai mod n. Ngc li th a gi l mt bt
thng d bc hai mod n.
Tp cc s nguyn nguyn t vi n c phn hoch thnh hai tp con.
Tp Q
n
cc thng d bc hai mod n, v tp cc bt thng d bc hai mod n.
Tiu chun Euler
Khi p l s nguyn t, s a l thng d bc 2 mod p nu v ch nu a
(p-
1)/2
1 (mod p)
K hiu Legendre
Cho p l s nguyn t, vi p >2, s a 0 l s nguyn. Ta nh ngha
,
_
p
a
nh sau:
,
_
p
a
=
0, , 0 (mod )
1, , ;
1, , .
khi a p
khi a Qp
khi a Qp

'
Ch :
+ T nh ngha suy ra a l thng d bc hai mod p khi v ch khi
,
_
p
a
= 1
+ Theo tiu chun Euler ni trn, vi mi a 0 ta c:
,
_
p
a
a
(p-1)/2
(mod p) .
Legendre Symbol tho mn cc tnh cht sau:
1.

,
_
p
a
ch ph thuc vo ng d ca a theo mod p.
2.

,
_
p
ab
=
,
_
p
a
,
_
p
b
;
3. b nguyn t vi p th
,
_
p
ab
2
=
,
_
p
a
;
4.

,
_
p
1
=1 v
,
_
p
1
= (-1)
(p-1)/2
.
nh l 1:
,
_
p
2
= (-1)
(p
2
1)/8
=
1 1 mod 8
1 3 mod 8
p
p
t
'
t
nh l: Gi l lut thun nghch bnh phng.

Cho p, q l 2 s nguyn t l, khi :

nh l 2
Nu a b mod p
,
_
p
a
=
,
_
p
b
nh l 3
,
_
p
2
= 1 p 1 mod 8 hay p 7 mod 8
-1 p 3 mod 8 hay p 5 mod 8
V d: Cho a = 186, p= 401 (p l s nguyn)
Tm a c l thng d bc hai khng ngha l a
Q
401
?
= (-1)
(p-1)(q-1)/4
. =
V tm x? vi x
2
a mod 401
,
_
p
a
=
,
_
401
186
=
,
_
401
93 . 2
=
,
_
401
2
,
_
401
93
.
Theo nh l 3:
V 401 1 mod 8
,
_
401
2
=1 vy
,
_
p
a
=
,
_
401
186
=
,
_
401
93
=
,
_

401
31 3
=
,
_
401
3
,
_
401
31

Nhng
,
_
401
3
= (-1)
4
400 . 2
.
,
_
3
401
=
,
_
3
2
= -1 (nh l 1)
V
,
_
401
31
= (-1)
4
400 . 30

,
_
3
401
=
,
_
3
401
=

,
_
31
29
=
,
_
29
2
=-1.
Vy
,
_
p
a
= 1.(-1).(-1) = 1 Do a
Q
401
Tip theo ta cn tm x: x
2
186 mod 401.
Ly n =3 r rng 3 khng l ng d ton phng ca 186 theo mod
401 (nh trn ta chng minh c
,
_
401
3
= -1).
Ta c p-1 = 400 = 2
4
.
,
_
3
25
b = n
S
= 186
25
mod 401 = 286 mod 401.
Cn r = a
2
1 + S
mod 401 = 186 mod 401 = 103.
Tnh a
-1
mod 401 = 186
-1
mod 401 = 235 (thut ton clit m rng).
Tnh a
-1
. r
2
= 103
2
. 235 mod 401 = 98 v
-2 = 4-2 =2 do ta nng
lu tha 2
2
= 4 = ca 98 v c 98
4
-1 mod 401 = -1 (98
4
mod 401 = (98
2
mod 401)( 98
2
mod 401) mod 401 = 381
2
mod 401 = -1)
t j
0
= 1 tip
theo, ta c (br)
2
/a = -1
lu tha bc 2 ca n l 1
t j
1
=0, c th j
2
=1(2 = K =
) Vy j =5 v 1.2
2
+1 = 5
Cn bc 2 ca 186 l b
5
r mod 401 = 304
Th li 304
2
186 mod 401?
Ta c 304
2
= 92416 vy 304
2
= 186 = 92230 0 mod 401
x= 304
K hiu Jacobi Symbol
By gi ta m rng k hiu Legendre c k hiu Jacobi i vi
mi s nguyn l n 1 v mi s nguyn a 0.
Gi s a c khai trin chnh tc thnh tha s l n = p
a1
1
, p
a2
2
,, p
an
n
th
a
n
_

,
=
1
1
a
a
p
_

,
2
2
a
a
p
_

,
ak
k
a
p
_

,
vi a
1
, a
2
, .., a
k

1
P
1
, P
2
, .P
k
l nhng s nguyn t.
Khi n = p l s nguyn t th gi tr ca cc k hiu Legendre v Jacobi
l nh nhau. Vic tnh k hiu Legendre c th phc tp khi p rt ln, trong
khi vic tnh k hiu Jacobi c th thun li hn do c th s dng cc tnh
cht 1- 4 sau y:
By gi xt vic gii phng trnh ng d bc hai:
x
2
a (mod n) (*)
Trong mt trng hp c bit khi n = p l s nguyn t c dng p =
4m + 3 tc l p ng d vi 3 theo mod 4, v a l mt s nguyn nguyn t
1. Nu m
1
m
2
mod n th = .
2. =
3. = .
4. Nu m v n u l s l th:
=
vi p. Theo tiu chun Euler ta bit phng trnh (*) c nghim khi v ch
khi a
(p-1)/2
1 (mod p). Khi ta c:
a
1
2
1
+
p
a (mod p),
a
) 1 ( 2 + m
a (mod p).
1.2. Nhm
nh ngha: Nhm l mt tp hp G
cng vi php ton hai ngi *

trn G. Vi a, b
G, a * b =
G tho mn tnh cht sau:

1. Tnh kt hp: (a * b) * c = a * (b * c) vi mi a, b, c
G.
2. Phn t ng nht: Tn ti e
G tho mn e * a = a *e = a vi mi a
G (e c gi l phn t trung ho).

3. Phn t nghch o: vi mi a
G, tn ti mt phn t b
G tho
mn b * a = a * b = e (b l duy nht v c gi l phn t nghch o
ca a). V ngi ta k hiu ca a bi a
-1
.
- K hiu <G,*> l nhm nhn v G <G,+> l nhm cng. Trong
nhm cng, phn t trung ho l 0 v phn t nghch o ca a l a. Trong
nhm nhn, phn t trung ho l 1 v phn t nghch o ca a l a
-1
.
<G,*> c gi l mt nhm giao hon (nhm Abelian) nu b * a = a * b
vi a, b
G.
- Mt nhm c cp hu hn c gi l nhm hu hn
Nu <G, *> l nhm hu hn th s cc phn t ca <G, *> c gi l
bc ca G v k hiu l |G| . Nu <G, *> l nhm nhn hu hn, bc ca mt
phn t a
G k s nguyn dng nh nht m tho mn a

m
= 1. Trong nhm
c cp hu hn, vi mi phn t thuc nhm, m lun tn ti.
Nhm Cylic
L nhm m mi phn t ca n c sinh ra t mt phn t c bit g
G.
Phn t ny c gi l phn t sinh (nguyn thu) tc l:
Vi x
G(G l nhm vi ton t * ): n
N m g
n
= x
V d: (Z
+
, *) l nhm Cylic c phn t sinh l 1.
1.3. Trng
Gi s F l mt tp hp khc rng, trn c hai php ton cng v
php nhn. Khi F l mt trng nu v ch nu:
1. (F, +) l nhm giao hon vi phn t n v l 0.
2. (F\{0}, .) l nhm giao hon vi phn t n v l 1.
3. Cc php ton cng v nhn c tnh cht phn b:
a.(b.c) = (a.b) + (a.c)
Trng c th nh ngha nh l vnh giao hon vi phn t n v (tr
phn t 0) u c phn t nghch o cng thuc trng.
V d: Q = {
q
p
p, q l s nguyn: (p, q) = 1} trn Q c 2 php ton cng
v nhn thng thng l mt trng.
nh ngha
Cho F l mt trng. Tp con K ca F cng l mt trng vi cc ton
t ca F, c gi l trng con ca F, hay F l mt trng m rng ca K.
Nu K F th K c gi l mt trng con hp l ca F. Trng l ti gin
nu c khng c trng con hp l no. Vi trng F bt k, giao F
0
ca tt
c cc trng con hp l l trng ti gin. Trng F c gi l c c s 0
nu F
0

Q ngha l F cha Q nh mt trng con. Trng F c gi l c

s p nu F
0

Z
p
.
Trng hu hn l trng cha hu hn cc phn t. i vi mt
trng hu hn th a
F lun lun tn ti mt s nguyn dng n sao cho:

.......
n
a a + +
6 47 48
= 0
nh ngha
Trng K vi phn t n v nhn l 1. Vi p dng nh nht tho
mn

p
1 ........ 1 1 + + +
= 0 c gi l c s ca K.
(Cc trng hu t Q, s thc R, s thc C c c s l 0). Ngi ta chng
minh c rng c s ca trng hu hn l s nguyn t.
Vi p l nguyn t th GF (p
n
) c c s p.
1.4. Trng hu hn
Trng hu hn l trng c hu hn cc phn t k hiu l F
q
hoc
GF(q) vi q l s cc phn t.
Trng hu hn khng c c s 0. Ta gi p l c s ca F
q
khi F
q
khi F
q
cha trng nguyn t F
p
= Z/ pZ v vy mt khng gian
vector( khng cn thit phi c chiu hu hn) trn trng F
p
. Ly f k hiu l
chiu ca n coi F
p
nh l mt khng gian vector . Bng cch chn c s
cho php chng ta lp nn mt tng ng 1-1 gia khng gian vector f chiu
vi tp hp tt c b f phn t trong F
p
ngha l q l lu tha ca c s p.
i vi mi ly tha nguyn t q = p
f

c tn ti mt trng q phn t v
l trng duy nht (theo ngha ng cu).
Cp ca cc phn t trong F
*
q
theo ngha i vi php nhn vi F
*
q
l tp hp
tt c cc phn t khc khng ca trng F
q
(q hu hn)
Ch rng i vi mi nhm nhn hu hn, cp ca bt c mt s phn t
khc khng no cng l c ca s cc phn t trong nhm. C th ta c nh
l
nh ngha
Gi s phn t g
F
q
nu cp ca g l q-1 tc l {g
1
, g
2
,, g
q-1
= 1}
= F
*
q
CHNG 2
NG CONG ELLIPTIC
2.1. M u v t bi ton
L thuyt ng cong Elliptic c xc nh trn trng s hu hn
c a ch ng dng trong lnh vc mt m ng lu . L do c bn ca n l
ng cong Elliptic trn trng hu hn cung cp cho chng ta mt c s
xy dng thut ton khng th dng thut ton vt cn thm m ca nhm
Abelian ngay c khi nhm c cp khng ln lm.
ng cong elliptic l tp hp cc im c to (x, y) tho mn
phng trnh c dng sau y:
y
2
+ a
1
xy + a
3
y = x
3
+ a
2
x
2
+a
4
x + a
6.

Trn trng F biu din bng phng trnh Weiretrass:
y
2
+ a
1
xy + a
3
y = x
3
+ a
2
x
2
+a
4
x + a
6 2
(*)
Xt ng cong E trn trngnguyn t hu hn F
p
(p nguyn t, p>3 ) vi
cng thc bin i nh sau:
XX
3
2 a
, Y Y
2
3 1 a X a +
Khi phng trnh Weierstrass c dng:
X
3
+ aX +b.
Vy trong trng F
p
(*) tr thnh:
Y
2
= X
3
+ aX + b
nh ngha:
Gi s K l mt trng c c s khc 2 v khc 3 v xt a thc
X
3
+ aX + b(vi a, b
K)
Khi ng cong elliptic trn trng K: Y
2
= X
3
+ aX + b (1) l tp
hp tt c cc im (x, y) vi x, y
K sao cho (1) khng c cc nghim bi

tc l 4a
3
+ 27b
2
0 mod p cng vi phn t O - im O ny c gi l
im v hn.
Tc l ng cong Elliptic l tp hp S:
S = { (x, y) : y
2
= x
3
+ ax +b, x, y
K }
{O} .
Vi a, b
K cho trc sao cho 4a

3
+ 27b
2
0 theo mod p.
Nu K l trng c s 2 th ta nh ngha:
S = { (x, y) : y
-2
+ y= x
3
+ ax +b }
{O} (2)
Nu K l trng c s 3 th ta nh ngha:
S = { (x, y) : y
2
= x
3
+ ax +bx + c }
{O} (3)
* Tnh cht ca ng cong elliptic:
Nu hai im P
1
(x
1
, y
1
) v P
2
(x
2
, y
2
) vi x
1
x
2
nm trn ng cng
mt ng cong elliptic E, th ng thng qua hai im P
1
v P
2
s ct
mt im duy nht P
3
( x
3,
y
3
) c th xc nh thng qua P
1
v P
2
nm
trn ng cong E.
Tip tuyn ca ng cong ti im bt k P(x, y) trn ng cong E
cng ct ng cong elliptic E ti mt im duy nht nm trn ng
E, im ny cng c th xc nh c thng qua P.
Da vo nhng tnh cht ngi ta nghin cu v pht hin ra mt
kh nng mi cho k thut m ho ni chung v chng thc ni ring, k
thut m ho da trn ng cong elliptic.
Ngi ta ch ra rng cc h m ho bng ng cong elliptic c
bo mt cao hn nhiu so vi cc h m ho cng khai khc nh RSA,
Elgamal. bo mt da trn kh phn tch s nguyn thnh cc tha s
nguyn t cng nh bi ton logarit ri rc, di kho gim i nhiu ln v
do tc thc hin cng s nhanh hn rt nhiu. Chnh v vy ta p dng
k thut m ho bng ng cong elliptic vo nhiu lnh vc khc nhau.
Cc k thut m ho bng phng php ng cong elliptic c s
dng hiu qu nht trong vic xy dng cc gii php bo mt thng tin cho
cc th thng minh(Smart Card), cc thit b in t c kh nng tnh ton v
khng gian b nh hn ch.
2.2. ng cong elliptic trn trng hu hn
Xt trng hu hn F
q
ca q = p
r
phn t trn trng hu hn K. Gi s
E l ng cong elliptic c nh ngha trn F
q
. Nu c s ca trng p=2
hoc p=3 th E c cho bi phng trnh (2) v (3) .
D dng thy rng mt ng cong nh vy c th c nhiu nht l 2p+1
im trong F
q
, ngha l im v cng vi 2q cp (x, y) trong x, y
F
q
tho
mn (1) (2) (3) (nu p=2 hoc 3), tc l vi mi q gi tr x c th c tn ti
nhiu nht 2 gi tr y tho mn (1). Nhng v ch c mt na cc phn ca F
*
q
c cn bc 2 ngi ta k vng (nu x
3

+ ax +b l cc phn t ngu nhin ca
trng ) ch c khong mt na s cc im ca Fq. Chnh xc hn, gi s
c trng ton phng ca F

q
(ly
(0) = 0).
V d: Nu q = p l 1 s nguyn t th
(x) =(
p
x
) l k hiu Legedre
Symbol). Do trong tt c mi trng hp s cc nghim y
F
q
tho mn
phng trnh y
2
= u l bng 1 +
(u). V vy s cc nghim phng trnh 1

v im v hn l:
1 +
Fq x
(1+
(x
3
+ ax + b)) = q + 1 +
Fq x
(1+
(x
3
+ ax + b)) (6)
Ta hy vng rng
( x
3
+ ax + b) bng +1 v -1.
Ly tng ngu nhin: tung ng xu q ln. Ngi ta thy rng
Fq x
(x
3
+ ax + b) b chn bi 2
q
chnh l nh l Hasses c pht
trin nh sau:
nh l: Gi N l s cc im trn ng cong elliptic c nh ngha trn
F
q
. Khi | N(q + 1) | 2
q
2.3. Cc php ton trn ng cong Elliptic
Gi s p l mt s nguyn t >3. Ngi ta chng minh c rng bng
php bin i tuyn tnh, ta c th quy phng trnh ng cong elliptic v
dng Weierstrass nh sau:
Y
2
= X
3
+ aX + b
ng cong elliptic Y
2
= X
3
+ aX + b trn Z
p
c nh ngha l tp hp tt
c cc im (x, y)
Z
p
Z
p
tho mn phng trnh:
Y
2
= X
3
+ aX + b (mod p),
Cng vi mt phn t c bit k hiu l O l phn t trung ho. Tp hp
c k hiu l E.
23.1. Php cng
Gi s P= (x
1
, y
1
) v Q (x
2
, y
2
) l hai im ca E.
Nu x
1
= x
2
v y
1 =
-

y
2
th ta nh ngha P + Q = O
Ngc li th P + Q = (x
3
, y
3
)
E trong
x
3
=
2
- x
1
x
2
, y
3
=
(x
1
x
3
) y
1,
Vi
= (y
2
y
1
) / (x
2
x
1
), khi P Q( nu x
1
= x
2
th
l h s gc ng
thng qua P v Q) (*)
(3x
2
+ a) / 2 y
1
, khi P = Q (
l o hm ca ng cong ti P)
(**)
Vy nu P Q tc l x
1
x
2
x
3
=
2
1 2
1 2
,
_
x x
y y
- x
1
x
2

(*)
y
3
=
,
_
1 2
1 2
x x
y y
( x
1
x
3
) - y
1
N u P =Q
x
3
=
2
1
1
2
3
,
_
+
y
a x
2x
2

(**)
y
3
=
,
_
+
1
1
2
2
3
y
a x
( x
1
x
3
) - y
1
Hnh 2.6.1 Php cng trn ng cong Elliptic
Ch rng cc im (x
3
, y
3
), (x
3
, -y
3
) cng nm trn ng cong E v xt v
mt hnh hc, th cc im (x
1
, y
1
), (x
2
, y
2
), (x
3
, -y
3
) cng nm trn mt ng
thng.
Ngoi ra ta nh ngha thm: P + O = O + P = P.
Tnh cht
D thy rng tp E vi php ton cng to thnh mt nhm Abelian:
P
Q
P+ Q
R
P
2P
R
-1
-2
2
1
Tnh ng: Nu P, Q
E th P + Q
E.
Tnh kt hp: Nu P, Q, R
E th P + ( Q + R ) = R + ( Q + P ).
Tn ti phn t trung ho O: vi mi P
E th P + O = O + P = P
(theo nh ngha).
Tn ti phn t nghch o: vi mi P(x, y)
E th lun tn t phn t
-P(x, -y)
E P + (-P) = O.
Tnh cht giao hon Nu P, Q
E th P + Q = Q + P.
V d: Xt ng cong elliptic y
2
= x
3
36x
Ly P =(-3, 9), Q = (-2, 8). Hy tm P + Q v 2P?
Vi x1 = -3, y1 = 9, x2 = -2 , y2 = 8. Do p dng cng thc(*) ta c:
x3 =
3 2
) 9 8 (
2
+
+3 + 2 = 1+ 3 +2 = 6.
y3 = -9
,
_
3 2
9 8
(-3-6) = -9 + (-1)(-9) =0.
Vy P +Q = (6, 0). By gi ta tnh 2P p dng (**) ta c: x1= -3, y1 = 9
x3 =
4
25
v do y3=
8
35
. Vy 2P = (
4
25
,
8
35
)
2.3.2. Php nhn
Php nhn mt s nguyn k vi mt im P thuc ng cong elliptic
E l im Q c xc nh bng cch cng k ln im P v d nhin Q
E: k
P = P + P + P+ P ( k php cng im P).

V vy nu G l mt im thuc ng cong elliptic E th vi mi s
nguyn dng k lun d dng xc nh c im Q = k
G
2.4. m s im trn ng cong elliptic trn trng F
q
Vic xy dng cc h mt m trn ng cong elliptic bao gm vic
la chn ng cong E thch hp v mt im G trn E gi l im c s. Xt
trng K l F
q
.
nh l Hasse
N l s im ca E trn trng F
q
(trng hu hn q phn t). Khi : |
N (q +1)| 2
q
.T nh l Hasse suy ra #E(F
q
) = q +1 t trong |t| 2
q
.
nh ngha
Bc ca im G thuc E l s k dng b nht sao cho kG = O; khi k =
#E(F
q
) th G l im c s ca E.
2.5. Phng php chn ng cong Elliptic ph hp v im c s
Vic chn mt ng cong elliptic th no nh hng n tc , tnh
hiu qu, di kho v tnh an ton ca h mt m trn ng cong ny. D
E, K v im c s B
E c nh v cng khai nhng vic chn cc tham s

ny ph hp l bc quan trng nht.
2.5.1. Trng K
Trc ht chng ta xem xt s nh hng ca trng K n cu trc
nhm ca E(K) v cc h mt m trn E (K).
Mt ng cong elliptic trn mt trng hu hn to thnh nhm
Abelian c s dng trong mt m hc. Mt v d l vic chn trng F
2
r
gip thc hin cc php tnh nhanh v d dng trin khai c trn cc thit
b cng. Tuy nhin, cc ng cong trn trng F
2
r
c th b tn cng bi
MOV, trong khi cc ng cong trn trng F
p
(p l s nguyn t ln) li
chng li c kiu tn cng ny. R rng, cc ng cong elliptic trn
trng s nguyn t F
p
v trn trng F
q
n
c cc tnh cht gip chng c th
thc thi c trn cc thit b m vn m bo an ton.
Mt ch na l vic tnh s im trn # E (K). Vi # E (K) thch hp
c th l iu kin cho php thc hin tn cng Pohlig Hellman. C th
dng thut ton n nh thi gian a thc Shoof tnh trn trng hu hn
F
q
vi c s khc 2 hoc 3. Tc ca thut ton Shoof ph thuc vo kch
thc v c s ca trng K. V d vi r nh, tnh # E (F
2
r
) c th nhanh hn
mt cht so vi tnh # E(F
p
), trong p ln hn ng k so vi 2
r
, nhng khi r
tng th tnh # E (F
2
r
) mt nhiu thi gian hn tnh # E (F
p
).
2.5.2. Dng ca ng cong elliptic
Trc ht, chng ta cn xem cc dng ng cong elliptic. Trn trng
F
q
c hai lp ng cong elliptic c dng trong cc h m ho l
supersinggular. Xt F
q
c c s l 2 (g = 2
m
). Khi :
Tp tt c cc cp nghim (x, y) ca phng trnh y
2
+ax = x
3
+ bx + c
vi a, b, c
F
q
v a = 0 (mod q) cng vi im trung ho O to thnh
mt ng cong elliptic dng supersingular.
Tp tt c cc cp nghim (x, y) ca phng trnh y
2
+ ax = x
3
+ bx + c
vi a, b, c
F
q
v b = 0 (mod q) cng vi im trung ho O to thnh
mt ng cong elliptic dng non-supersingular.
Supersingular Curve: Menezes v Vanstone tm ra cc u im ca
cc ng cong elliptic supersingular cho cc h mt m, c bit trn trng
F
2
r
. Tuy nhin, cc ng cong supersingular c th b tn cng bng MOV.
Nonsupersingular Curve: u im ca cc ng cong nonsupersingular
l n cung cp bo mt tng ng nh cc ng cong supersingular
nhng vi cc trng nh hn. di kho ngn gip chng c th trin khai
trn cc thit b nh smart card. Hn na, cc ng cong nonsupersingular
c th chng li tn cng MOV, v d nhm con cylic c 2
160
.
2.5.3. Phng php la chn
C nhiu cch chn cc ng cong elliptic v im c s B thuc
ng cong . Mt cch chn in hnh l:
Phng php- Phng php chn ngu nhin Kobliz:
S 3.8. Phng php chn ngu nhin Kobliz
1. Chn ngu nhin 3 phn t t F
q
l x, y, a
2. Tnh b = y
2
(x
3
+ ax)
3. Kim tra 4a
3
+ 27b
2
0 m bo phng trnh x
3
+ ax + b =0 khng
c nghim kp.
4. Nu iu kin trn khn tho mn quay li bc 1.
5. Cn li, t P = (x, y) v ng cong y
2
= x
3
+ ax +b l ng cong cn
chn.
Tuy nhin phng php ny c th to ra cc ng cong khng m bo
mt s yu cu nh trc. Mt k thut ci tin l xy dng cc ng cong
vi cc tnh cht cho trc. Cng c th chn nhng ng cong to cc
h m ho khng ph thuc vo bi ton EDLP, chng hn cc h elliptic da
trn RSA.
Cc h mt m elliptic lm vic vi cc nhm con cylic ca E vi phn t
sinh l im P. V vy, vic la chn P ph hp l rt quan trng.
m bo vic chn im thch hp ta hy chn ng cong elliptic
ca chng ta v trng hu hn sao cho s N cc im ca ng cong l mt
s nguyn t. Nu chn c nh vy th mi im B 0 u l phn t sinh.
CHNG 3
H MT NG CONG ELLIPTIC
3.1. M u v t bi ton
Nm 1976, Diffie v Hellman gii thiu h m ho kho cng khai u
tin m s an ton ca n da trn kh ca bi ton DLP. H a ra khi
nim hm ca sp mt chiu (TOF). Nm 1985, Lenstra thnh cng trong
vic s dng cc ng cong elliptic cho cc s nguyn. Kt qu ny mang
li kh nng p dng cc ng cong elliptic trong cc h mt m kho cng
khai.
Miller v Kobliz gii thiu nhng h mt m elliptic. H khng pht
minh ra cc thut ton mi nhng c ng gp ln l ch ra vic p dng
elliptic cho cc h kho cng khai. Miller xut mt giao thc trao i kho
ta nh Diffie Hellman vo nm 1985 (nhanh hn 20% so vi giao thc
Diffie - Hellman). Kobliz a ra thut ton m ho tng t nh h Elgamal
v Massey Omura vo nm 1987. S u tin tng t nh s RSA
v 3 hm mt chiu (c ca sp) mi da trn ng cong Elliptic c a
ra nm 1991 bi Koyama, Maurer, Okamoto v Vanstone ( thut ton ny tc
thc hin nhanh gp 6 ln so vi RSA). Cng thi im , Kaliski chng
minh rng cc hm ca sp mt chiu i hi thi gian l hm m thc
hin php tnh nghch o. Menezes, Okamoto v Vanstone a ra mt
phng php tn cng MOV gii bi ton EDLP trong mt s trng hp
ring. Ngay sau , Miyaji tm c cc iu kin trnh khi tn cng
MOV v xut mt ng dng thc t ca cc ng cong elliptic cho cc s
ch k v nh danh trn Smart Card.
Nm 1993, Demytko a ra mt thut ton mi tng t nh RSA cho
cc ng cong Elliptic trn vnh Z
n
vt qua cc hn ch ca cc phin bn
trc, v Menezes v Vanstone a ra phng php thc thi trn cc thit
b cng c th ci thin cc tnh ton trn elliptic trn mt trng hu hn.
Nhng nm 1997, 1998 vic tm ra cc h mt m trn cc ng cong
Elliptic ngy cng thu ht nhiu s ch v mt s thut ton c a
thnh chun trong cc RFC.
3.2. Nhng bn r ln ng cong
Nhng mt bn r ln E l biu din li bn r nh l cc im trn
E m nh chng ta c th thc hin c cc tnh ton trn E. C mt s
phng php thc hin vic ny. Trong c 2 phng php chnh l
imbedding v mask.
4.2.1. Imbedding
Mun m ho bn r m trn mt ng cong elliptic cho trc c
nh ngha trn trng F
q
trc ht ta phi tm cch nhng n ln E. Gi s m
c coi l mt s nguyn dng no . Bn r m c ng vi im P
m
trn E.
Trc khi thc hin nhng im m ln E ta cn lu :
1. Sau khi nhn c bn m, ngi ta nhn ch thc phi c th gii c
bn m mt cch d dng.
2. Khng c mt thut ton tt nh vi thi gian a thc (trong log q) bit
c mt s ln cc im trn ng cong elliptic tu trn E c trng F
q
.
Tuy nhin li tn ti mt thut ton xc sut m i vi n xc sut sai l rt
b.
3. Vic to ra cc im ngu nhin ca E l khng m ho mt s lng
ln tu cc bn r m. Trong lc bn r m ta cn nhng li c th rt ln.
Do , mt phng php xc sut c th cho php nhng (imbed) cc
bn r m c coi l mt im trn ng cong elliptic E c nh ngha
trn trng F
q
vi q = p
n
c gi thit l ln.
Gi
l mt s nguyn dng ln sao cho tho mn xc sut sai

xp x 1/2

. Gi s khi chng ta mun nhng mt bn r m, gi s
l
mt s no (
=20, 30 hoc
= 50 l ). Vi m k mt s nguyn sao
cho 0 m M (M l s nguyn dng ln hn mi khi r m cn nhng )
Trng hu hn chn sao cho q > M
.Biu din cc s nguyn t 1 n

M
di dng:
{m
+ j} 1 j
Ta lp mt nh x 1- 1 tng ng gia cc s nguyn trn vi tp hp cc

phn t ca F
q
. V d c th vit mt s nguyn nh l mt s nguyn c s p
c di r v coi r nh l mt phn t ca Z/pZ , l h s ca mt a thc
cp r 1 tng ng vi mt phn t ca F
q
. Ngha l s nguyn (a
r-1 ,
a
r-2,.
a
1,
a
0
)p t tng ng vi a thc
1
0
r
i
a
j
X
j
m nc xem nh modulo a thc
bt kh quy cp r c nh trn F
p
, cho mt phn t ca F
q
.
Do cho trc m vi j = 1, 2,3..
s nhn c mt phn t ca
F
q
tng ng vi m
+ j
i vi s x ta tnh:
Y
2
= f(x) = x
3
+ ax + b v tm cn bc 2 ca gi tr f(x) bng cch s dng
phng php nu trong v d 1.1.4.
Nu tm c mt s y sao cho y
2
= f(x) th ly P
m
= (x, y). Nu kt qu
f(x) l khng bnh phng th tng x bi 1 v tip tc tnh ton t u cho
n khi tm c mt s x sao cho f(x) l mt bnh phng cho n khi j nhn
gi tr ln
, c th khi phc li c m t im (x, y) bi cng thc:

m= [(x -1)/
]
Trong x l mt s nguyn ng vi gi tr x bi php tng ng 1-1 gia
cc s nguyn v cc phn t ca F
q
. V f(x) l mt bnh phng vi xp x
50% ca mi x cho nn ch c khong xc sut 2
-
cho phng php ny

l sai.
3.3. Logarit ri rc trn ng cong Elliptic( Discrete logarithm on
Elliptic)
nh ngha:
Nu E l ng cong Elliptic trn trng F
q
v B l mt im trn E.
Khi bi ton logarit ri rc trn E (theo c s B) l mt bi ton, cho trc
mt im P
E, tm s nguyn x
Z sao cho xB = P (nu s x nh vy tn

ti)
Hu nh bi ton tnh logarit ri rc trn ng cong elliptic s kh
hn bi ton logarit ri rc trn trng hu hn. Cc k thut mnh nht
c pht trin s dng trong cc trng hu hn dng nh khng c gi
tr i vi ng cong elliptic. Kt qu ny c bit ng trong trng hp
trng c c s 2. Nh c chng t bi Odlzko rng c mt s phng
php c bit gii bi ton logarit ri rc trong G
*
2
r
vi chng d dng tnh
c logarit ri rc v do ph v c h mt m, tr ra trng hp s r
c chon ln. Dng nh cc h thng tng t s dng ng cong
elliptic c nh ngha trn trng F
2
r
s m bo an ton k c trong trng
hp gi tr r kh b.
3.4. Vn trao i kho Diffie- Hellman(D- H) trn Elliptic
Gi s A v B mun thng nht mt kho chung lin lc c bo mt
gia hai ngi bng mt m truyn thng. Trc ht hai bn thng nht cng
khai chn mt trng hu hn F
q
v mt ng cong elliptic trn n kho
chung ca h s c xy dng t mt im ngu nhin P ca ng cong
va cho, h lm cch ny bng cch chn to x ca P l ngu nhin trong
F
q
. Sau n c chuyn i thnh s nguyn c s P c r s( q = p
r
) m
c coi l kho i vi h m truyn thng ca h. C th nh sau:
Trc ht A, B chn cng khai mt im B
E. B ng vai tr nh l
phn t sinh g trong trng hu hn ca h thng Diifie-Hellman. Chng ta
mun c mt nhm con c sinh ra bi B l ln, tt nht l c cng cp nh
E. By gi gi s B l cng khai v c nh trn E m cp ca n l ln
(chng hn hoc l N hoc l mt nhn t ln ca N).
to ra kho, trc ht A chn ngu nhin mt s nguyn a c cp q
(n xp x nh s N). S a c gi b mt. Trn c s , A tnh aB
E, aB
l cng khai. n lt B cng lm nh vy, anh ta chn ngu nhin s b v
tnh bB
E, bB cng c cng khai. Kho b mt m ch c hai ngi A, B

mi c l: P =abB
E. Ngi th ba bt k khng th suy ra abB t aB

v bB nu khng gii bi ton logarit ri rc trn E ca trng F
p
r
.
3.5. H mt m ho Elgamal trn ng cong Elliptic
H Elgamal lm vic vi nhm Cyclic hu hn. Nm 1978, Kobliz
a mt h trn ECC da trn h Elgamal.
xy dng h m ho da trn ng cong elliptic ta chn ng
cong E(a, b) v mt im G trn ng cong lm im c s. Mi ngi dng
A mt kho b mt n
A
l mt s nguyn, v sinh kho cng khai
P
A
= n
A
* G.
Khi h m ho ng cong elliptic c xy dng tng t h m
ho ElGamal, trong thut ton m ho v gii m c xc nh nh sau:
Thut ton m ho
Gi s ngi dng A mun gi thng ip cn m ho P
m
ti ngi
dng B, chn mt s ngu nhin k v gi thng ip m ho C
m
c tnh
nh sau:
C
m
= {k * G, P
m
+ k * P
B
}
(P
B
l kho cng khai ca B)
Thut ton gii m
gii m thng ip C
m
= { k * G, P
m
+ k * P
B
}, ngi dng B thc
hin tnh nh sau:
P
m
+ k * P
B
- n
B
* k * G = P
m
+ k * P
B
k * n
B
* G = P
m
+ k * P
B
- k * P
B
=
P
m

Ch c B mi c th gii m v B c n
B
(l kho b mt).
Ch rng y P
m
l mt im thuc ng cong elliptic, qu trnh
m ho gii m c thc hin trn cc im thuc ng cong E. Trong thc
t, s dng c ngi ta phi tng ng mt s vi mt im thuc
ng cong elliptic. Khi mi thng ip cn m ho s tng ng vi mt
dy s. Mi s s tng ng vi mt im trn ng cong elliptic.
Tnh bo mt
Nu k tn cng gia ng, Oscar, c th gii bi ton EDLP th anh
ta c th bit c kho b mt t n
B
ca B t cc thng tin cng khai G v
n
B
G, v c th gii m thng ip m A gi. Nh vy an ton (bo mt) ca
thut ton trn da vo kh ca bi ton EDLP.
CHNG 4
MT VI NG DNG
4.1. Lc ch k s trn ng cong elliptic (Elliptic Curve Signature
Algorithm ) - ECDSA
4.1.1. Lc k ECDSA
S ch k ECDSA c xy dng tng t nh s ch k ElGamal
tuy nhin cc thut ton k v thut ton kim th c xy dng da
trn ng cong Elliptic.
thit lp s ch k ECDSA, cn xc nh cc tham s: la chn
ng cong E trn trng hu hn F
q
vi c s p sao cho ph hp v
cng khai cho tt c mi ngi, im c s G
E(F
q
).
Mt s khuyn ngh khi la chn cc tham s:
1. Kch thch q ca trng, hoc q = p (p>2) hoc q= 2
m
.
2. Hai phn t a, b thuc F
q
xc nh phng trnh ng cong Elliptic: y
2
= x
3
+ ax + b (p>2) hoc y
2
+xy = x
3
+ax
2
+ b (p = 2).
3. Hai phn t x
G
v y
G
thuc F
q
xc nh im c s G = (x
G,
y
G
).
4. Bc n ca im G vi n> 2
160
v n > 4
q
.
Sinh kho
1. Chn s ngu nhin d trong khong [2, n-1 ] lm kho b mt
2. Tnh Q = dG lm kho cng khai.
Thut ton k trn bn r m
Ngi dng A k ln thng ip m theo cc bc sau:
1. Chn mt s ngu nhin k, 2
1 n k
2. Tnh kG = (x
1
, y
1
).
3. Tnh r = x
1
mod n. Nu r =0, quay li bc 1.
4. Tnh k
-1
mod n.
5. Tnh s = k
-1
(m +dr) mod n. Nu s = 0, quay li bc 1.
6. Ch k trn thng ip m l ( r, s ).
Thut ton kim tra ch k
Ngi dng B kim tra ch k (r, s ) trn thng ip m theo cc bc sau:
1. Kim tra r v s c l cc s t nhin trong khong [ 2, n-1 ] khng.
2. Tnh w = s
-1
mod n.
3. Tnh u
1
= mw mod n v u
2
= rw mod n.
4. Tnh X = u
1
G + u
2
Q = (x
X
,

y
X
).
5. Nu X = O th ph nhn ch k. Ngc li tnh v = x
X
mod n.
6. Ch k ch c chp nhn nu v = r.
4.1.2. an ton ca s ch k ECDSA
Cc h m ho ng cong elliptic u tin c pht minh nm 1985
bi Neal Kobliz v Victor Miller. Tuy nhin s ch k ECDSA do Scott
Vanstone a ra nm 1992, c chp nhn l chun ISO vo nm 1998, l
chun ANSI vo nm 1999, v l chun IEEE vo nm 2000.
an ton ca s k ECDSA da trn bi ton logarit ri rc ng
cong elliptic. Cho n nay an ton ca cc h m ho ng cong elliptic
c ch ra l rt an ton v hiu qu. i vi bi ton logarit ri rc
ng cong elliptic th c nhiu thut ton gii n. Tuy nhin cha c thut
ton no c phc tp tnh ton trong thi gian a thc.
Thut ton gii bi ton logarit ri rc ng cong elliptic tt nht hin
nay l thut ton Pollards Rho, phin bn thit k theo hng tnh ton song
song. Theo vi nhm ng cong elliptic cp n v c r my tnh cng tnh
ton th phi mt
n .
/2.r php ton.
Mt khc ngi ta phn tch v ch ra rng vi h m ho da trn
bi ton logarit ri rc ng cong elliptic c cng bo mt vi h m ho
da trn bi ton phn tch s nguyn thnh cc tha s nguyn t (nh RSA)
th di kho ca h m ho da trn ng cong elliptic c chiu di kho
ngn hn rt nhiu . Chng hn vi h m ho RSA c chiu di kho l 1024
bit th h m ho bng ng cong elliptic ch cn di kho 163 bit s c
bo mt tng ng. V do vic tnh ton cc tin trnh i vi cc h
m ho ng cong elliptic l nhanh hn rt nhiu.
4.2. Mt s chun s dng h mt ECC
Vic a ra mt s chun chung cho cc h thng mt m, cc giao
thc, cc giao din l mt vic quan trng. Vic chun ho mng li 3 li ch
chnh:
1. Cho php kt hp phn cng v phn mm ca nhiu nh cung cp
khc nhau.
2. a ra chun cho vic m bo an ton cc h thng di kha cnh
mt m hc.
3. Cho php c thit k chun cho cc mi trng ng dng khc nhau.
Cc ng cong Elliptic c xem xt v nghin cu k lng bi
cc nh ton hc trong hn 10 nm v c kho st k bi cc t
chc chun ho t nm 1995. iu ny m bo rng tnh tin cy ca
n c kim chng.
N lc c th chun ho cc h mt m kho cng khai c
bt u t nhiu nm trc bi Vin nghin cu in v in t
IEEE(Institute of the Electrical and Electronics Engineers) vi phin
bn P1363. N a ra nh dng v th tc cho 3 h thng m ho kho
cng khai khc nhau bao gm xc thc, ton vn v tin cy. ISO/IEC
SC27 cng bt u xem xt cc chun cho ECC. Trong ANSI X9.25 c
s ch k ECC l ECDSA( Elliptic Curve Digital Signature
Algorithm) v trong ANSI X9.63 c cc chun v tho thun v truyn
kho. ECC cng c h tr trong cc chun mi ca Internet v
bo mt cho tng IP(IPSEC, ISAKMP, Oakley). Trong cc chun lin
quan n cng nghip c SET(Secure Electronic Transaction).
ANSI X9. ECC c th nghim trong 2 lnh vc bi ANSI
ASC X9(dch v ti chnh). ANSI X9.62, ch k s ECDSA, ANSI
X9.63, giao thc tho thun kho ECC ECKA(Elliptic Curve Key
Agrement) v giao thc giao vn ECTP (Transport Protocols). ANSI
TG-17 (Technical Guideline on Mathematical Background for Elliptic
Curve Cryptosystems) cha cc thng tin m rng v mt ton hc cho
ECC, bao gm cc thut ton m s cc im trn ng cong
Elliptic.
ATM Forum. Cung cp c ch bo mt cho cc mng ATM
(ch truyn thng khng ng b Asynchronous Transfer Mode).
Cc dch v bo mt bao gm tnh tin cy, chnh xc thc, ton vn d
liu, iu khin truy cp. ECC l mt trong cc h thng c h tr.
Certicom. Certicom xut bn cc ti liu v ECC. ECC trong
X.509 m t c ch s dng cc kho ECC trong X.509 framework. V
d n nh ngha cc nh dng chng ch v nh dng danh sch thu
hi chng ch. Cc chun cho m ho ECC(SEC 1 Standards for
Efficient Cryptography): ECC, cc s m ho kho cng khai trn
ECC. c bit l cc s ch k in t, cc s m ho v cc s
tho thun kha. SEC.2 bao gm cc tham s c khuyn ngh cho
m ho ECC, danh sch cc tham s ECC c yu cu tng ng vi
cc cp bo mt khc nhau.
FSTC. FSTC (Financial Services Technology Consortium) lin
quan n cc h thng thanh ton in t v cc dch v ti chnh khc.
Cc thanh ton in t c th s dng rt nhiu thit b khc nhau nh
my tnh c nhn, in thoi mn hnh, my ATM, hoc cc h thng
kim ton. ECC c s dng m ho Email truyn gi cc sec in
t.
IEEE P1363. ECC c a ra trong chun phc tho IEEE
P1363(c t cc chun cho mt m kho cng khai), bao gm m ho,
ch k s, cc c ch tho thun kho. Cc ng cong Elliptic c th
nh ngha theo modulo p hoc trn trng F
2
m
, trng c 2
m
phn t.
IETF.(Internet Engineering Task Force). M t giao thc tho
thun kho l bin th ca giao thc tho thun kho Diffie-Hellmal.
N cho php s dng cc nhm khc nhau, bao gm c nhm ng
cong Elliptic. Cc nhm trn ng cong Elliptic c khuyn ngh
dng l cc trng F
2
m
v F
2
210
.
ISO/IEC. Bn phc tho ISO/IEC 14888, cc c ch da trn
chng ch, cc thut ton k tng t nh DSA.
NIST. (Vin nghin cu chun quc t- National Institute of
Standards). NIST cng c cc c t cho ECC trong MISPC.
SET. Chun SET(Secure Electronic Transactions) c pht
trin cho cc giao dch th tn dng trn Internet. ECC c xem xt
nh mt chun SET mi cho thng mi in t trn Internet. Nhng
li ch m ECC mang li cho cc ng dng quan trng ng c nh
gi k lng.
WAP. Wireless Application Protocol, cung cp c ch truy cp
Internet an ton cho cc thit b khng dy nh in thoi, thit b
khng dy u cui. Cc c t gii thiu trong kin trc mng cho
php cc ng dng s dng cc la chn giao thc truyn khc nhau v
gia cc thit b khc nhau. ECC cng c h tr trong tng bo mt
WAP WTLS(Wireless Transport Layer Security).
KT LUN
Cng ngh thng tin v ang l mt trong nhng lnh vc em li
nhiu li ch cho x hi, n khng th thiu trong nn kinh t hi nhp v ton
cu ho. An ton v bo mt thng tin l mt trong nhng yu t quan trng
cho nhiu ng dng trong thc tin.
Trong qut trnh nghin cu cc gii php bo mt ngi ta pht
minh h m ho cng khai da trn ng cong elliptic. Cho n nay h m
ha ng cong elliptic c xem l h m ho an ton v hiu qu nht. So
vi cc h m ho cng khai khc, ECC c xem l u vit hn bi cng
bo mt nh nhau th di kho trong ECC nh hn nhiu so vi cc h
m ho khc. iu ny dn ti cc h m ho ECC c kh nng thc thi
nhanh hn, hiu qu hn cc h m ha cng khai khc.
TI LIU THAM KHO
Ti liu ting vit
[1] Phan nh Diu (1999), L thuyt mt m v an ton thng tin- NXB i
Hc Quc Gia H Ni.
[2] Phm Huy in, H Duy Khoi (2003), M ho thng tin: C s ton hc
v ng dng- NXB i Hc Quc Gia.
Ti liu ting vit
[3] Neal Kobliz: A Corse in Number Theory and Cryptography. Sprirger-
Verlag: Network, Berlin Heidelberg London, Paris, Tokyo 1987
[4] Stphen B. Wicker: Error Control Systems for Digital communication and
storage.
Shool of electrical computer- Engineering. Georgra institute of
Technology, Prentice Hall NewJersey- 2003.
[5] A.j. Menzes: Elliptic curse public key crypto system, Klwer Academic
publishers, Massachusetts, USA -1993.

Elliptic

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Elliptic

Uploaded by

Copyright:

Available Formats

n tt nghip H mt ng cong elliptic

nh l: Gi l lut thun nghch bnh phng.

cng vi php ton hai ngi *

G tho mn tnh cht sau:

G (e c gi l phn t trung ho).

G k s nguyn dng nh nht m tho mn a

G(G l nhm vi ton t * ): n

Q ngha l F cha Q nh mt trng con. Trng F c gi l c

F lun lun tn ti mt s nguyn dng n sao cho:

K sao cho (1) khng c cc nghim bi

K cho trc sao cho 4a

c trng ton phng ca F

(u). V vy s cc nghim phng trnh 1

P = P + P + P+ P ( k php cng im P).

E c nh v cng khai nhng vic chn cc tham s

l mt s nguyn dng ln sao cho tho mn xc sut sai

.Biu din cc s nguyn t 1 n

Ta lp mt nh x 1- 1 tng ng gia cc s nguyn trn vi tp hp cc

, c th khi phc li c m t im (x, y) bi cng thc:

cho phng php ny

Z sao cho xB = P (nu s x nh vy tn

E, bB cng c cng khai. Kho b mt m ch c hai ngi A, B

E. Ngi th ba bt k khng th suy ra abB t aB

You might also like