Antoine Joux

From ESC2013
Jump to: navigation, search

Title New discrete logarithms results

Abstract

Many index calculus algorithms generate multiplicative relations between smoothness basis elements by using a process called Sieving. This process allows to filter potential candidate relations very quickly, without spending too much time to consider bad candidates. However, from an asymptotic point of view, there is not much difference between sieving and straightforward testing of candidates. The reason is that even when sieving, some small amount time is spend for each bad candidates. Thus, asymptotically, the total number of candidates contributes to the complexity.

In this talk, we introduce a new technique which allows us to construct multiplicate relations much faster, thus reducing the asymptotic complexity of relations' construction. We illustrate the feasability of the method with a discrete logarithm record in medium prime finite fields of sizes 1175 bits and 1425 bits.

Title Improved attack on the Even-Mansour construction

Abstract