Algebraic Methods for Constructing One Way Trapdoor Functions | MATH 100, Papers of Mathematics

Material Type: Paper; Class: Prob Solving Strat in Math; Subject: Mathematics; University: Notre Dame; Term: Unknown 2003;

Typology: Papers

Pre 2010

Uploaded on 09/17/2009

koofers-user-83z-1
koofers-user-83z-1 🇺🇸

9 documents

1 / 151

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
ALGEBRAIC METHODS FOR
CONSTRUCTING ONE-WAY
TRAPDOOR FUNCTIONS
A Dissertation
Submitted to the Graduate School
of the University of Notre Dame
in Partial Fulfillment of the Requirements
for the Degree of
Doctor of Philosophy
by
erard Maze, B.S., M.S.
Under the Direction of Joachim Rosenthal
Department of Mathematics
University of Notre Dame
April 2003
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a
pf2b
pf2c
pf2d
pf2e
pf2f
pf30
pf31
pf32
pf33
pf34
pf35
pf36
pf37
pf38
pf39
pf3a
pf3b
pf3c
pf3d
pf3e
pf3f
pf40
pf41
pf42
pf43
pf44
pf45
pf46
pf47
pf48
pf49
pf4a
pf4b
pf4c
pf4d
pf4e
pf4f
pf50
pf51
pf52
pf53
pf54
pf55
pf56
pf57
pf58
pf59
pf5a
pf5b
pf5c
pf5d
pf5e
pf5f
pf60
pf61
pf62
pf63
pf64

Partial preview of the text

Download Algebraic Methods for Constructing One Way Trapdoor Functions | MATH 100 and more Papers Mathematics in PDF only on Docsity!

ALGEBRAIC METHODS FOR

CONSTRUCTING ONE-WAY

TRAPDOOR FUNCTIONS

A Dissertation

Submitted to the Graduate School

of the University of Notre Dame

in Partial Fulfillment of the Requirements

for the Degree of

Doctor of Philosophy

by

G´erard Maze, B.S., M.S.

Under the Direction of Joachim Rosenthal

Department of Mathematics

University of Notre Dame

April 2003

Abstract

In this dissertation, we consider an extension of the discrete logarithm problem to the case of a semigroup acting on a finite set: the Semigroup Action Problem (SAP). New protocols and one-way trapdoor functions based on the difficulty of such problems are proposed. Several instances are studied both from a conceptual and cryptographic point of view. We discuss the application of existing generic algorithms to the resolution of an arbitrary SAP. The Pohlig-Hellman reduction leads to the notion of c-simplicity in semirings. Generic square-root at- tacks lead to semigroups with a negligible portion of invertible el- ements. After having described the situation when linear algebra over fields can be used, an application of the theory of finite c- simple semirings produces an example of SAP where no such known reduction applies. An extension of the Elliptic Curve Discrete Logarithm Problem (ECDLP) is defined using the Frobenius homomorphism of elliptic curves over finite fields. Actions induced by the Chebyshev polyno- mials are studied in different algebraic structures such as Fq , Z/nZ and Matn(Fq ). Those are shown to be equivalent to known hard problems such as FACTORING and DLP in finite fields. Finally, non-associative operations lead to the study of the SAP in Paige loops, i.e., finite simple non-associative Moufang loops.

To my parents, and to Sandrine.

iv

BIBLIOGRAPHY 121

vii

List of Figures

  • 1 INTRODUCTION
    • 1.1 Overview of cryptography
    • 1.2 Secret-key cryptography
    • 1.3 Public-key cryptography
    • 1.4 Examples of one-way trapdoor functions
    • 1.5 Overview and goal of this dissertation
    • DLP 2 EXISTING CONSTRUCTIONS BASED ON THE
    • 2.1 The discrete logarithm problem
    • 2.2 The Diffie-Hellman protocol
    • 2.3 The ElGamal protocol
    • 2.4 Other use of DLP
    • GROUP ACTIONS 3 DIFFIE-HELLMAN AND ELGAMAL FROM SEMI-
    • 3.1 Abelian semigroup action
    • 3.2 The cryptographic point of view
    • 3.3 The security
    • 3.4 Pohlig-Hellman with semigroups
    • 3.5 Square root attack with semigroups
  • 4 LINEAR GROUP ACTIONS
    • 4.1 Linearity over fields
    • 4.2 Examples
    • 4.3 Semirings acting on semi-modules
    • 4.4 Endomorphism actions on the abelian groups E(Fq )
    • 4.5 Conclusion
  • 5 A CLASS OF C-SIMPLE SEMIRINGS
    • 5.1 The semirings Rn
    • 5.2 Elements with large orders
    • 5.3 An action related to a flow problem
    • 5.4 A two-sided matrix multiplication action
    • 5.5 The choice of the parameters
    • 5.6 Conclusion
    • NOMIALS 6 ACTIONS INDUCED BY CHEBYSHEV POLY-
    • 6.1 Chebyshev polynomials
    • 6.2 The discrete Chebyshev problem in finite fields
    • 6.3 The discrete Chebyshev problem in Matn(Fq )
    • 6.4 The discrete Chebyshev problem and RSA integers
    • 6.5 Conclusion
    • LEMS 7 PAIGE LOOPS AND SEMIGROUP ACTION PROB-
    • 7.1 Loops, Moufang loops and Paige loops
    • 7.2 The DLP in M ∗(q)
    • 7.3 Exponentiation and conjugation in M (q)
    • 7.4 The case tr (g) = ±
    • 7.5 Conclusion
  • 1.1 Diffie-Hellman protocol
  • 1.2 ElGamal protocol
  • 1.3 RSA protocol
  • 1.4 Rabin protocol
  • 1.5 Polly Cracker protocol
  • 2.1 Diffie-Hellman protocol in a group G
  • 3.1 Diffie-Hellman protocol with a G-action on S
  • 3.2 ElGamal protocol with a G-action on S

x

xii

List of Symbols

SAP Semigroup Action Problem

DHAP Diffie-Hellman semigroup action problem

DHP Diffie-Hellman problem

DLP discrete logarithm problem

ECDLP elliptic curve discrete logarithm problem

Fq the field with q elements

gcd greatest common divisor

lcm least common multiple

Matn(R) the set of n × n matrices over R

O(f (n)) function g(n) such that |g(n)| < c|f (n)| for some

constant c > 0 and all sufficiently large n

o(f (n)) function g(n) such that limn→∞ |g(n)|/|f (n)| = 0

RSA Rivest-Shamir-Adleman encryption scheme

xiii

Acknowledgement

I would like to thank here the people without whom these lines would not have been written. First and foremost, I am truly grate- ful to my advisor and friend, Joachim Rosenthal who helped me, supported me and gave me his entire trust. I am grateful to the Department of Mathematics of the Univer- sity of Notre Dame who provided me an excellent research environ- ment as well as the opportunity to finish my dissertation abroad. I am also grateful to Professor Charles Stuart who gave me the chance to work at the Ecole Polytechnique F´ed´erale de Lausanne while I was in Switzerland. I would like to thank the members of my defense committee, Karen Chandler, Claudia Polini and Andrew Sommese for their time and suggestions. I owe many thanks to Chris Monico who gave me precious advice as well as fruitful discussions. My thanks go out to my dear friends and colleagues Hugo, Tom, Aline, Elisa, Feride, Gregory, Marc-O. and Lionel. I would like to thank my family, maman, papa and Christine, for all their support and encouragement. Finally, Sandrine, ma douce Sandrine, merci.

xv