Baby Step Giant Step: Computing m of Rational Points on Elliptic Curve

  • Thread starter Thread starter yavanna
  • Start date Start date
yavanna
Messages
10
Reaction score
0
The baby-step-giant-step method to compute the number m of rational points over an elliptic curve defined over \mathbb{F}_p

http://img560.imageshack.us/img560/3852/babym.jpg
Uploaded with ImageShack.us

In the second part R=(p+1)P, but for every point on the curve (p+1)P is the identity element of the group: P_{\infty}.

So R+iQ is always iQ, isn't it?
 
Last edited by a moderator:
Physics news on Phys.org
I've tried to use this algorithm in PARI/GP with the following code, just to check if it works, it doesn't output m but the indexes [i,j] of R+iQ=jP. Ellpoint finds a random point on the curve, ellsum makes the sum between two points, ellpow(E,P,n) compute the scalar multiplication nP. But it doesn't work

{\\Baby-Step-Giant-Step E(F_p)
BSGS(e,char)=local(s,i,v,P,Match,j,Q,R,S,k);
s=ceil(char^(1/4));
P=ellpoint(e,char);
v=vector(s);
v[1]=P;
for(i=2,s,v=ellsum(e,v[i-1],P,char));
for(i=1,s,v=concat(v,[[v[1],-v[2]]]));
print(v);
Match=0;
Q=ellpow(e,P,2*s+1);
R=ellpow(e,P,char+1); j=0;
while(Match==0,j=j+1;S=ellpow(e,Q,j);print(S);for(i=1,s,if(S==v,Match=1;k=i,) )\\end for
);\\end while
return([k,j]);
}
 

Thread 'Trouble understanding an online solution to an exercise in Dummit & Foote'

##\textbf{Exercise 10}:## I came across the following solution online: Questions: 1. When the author states in "that ring (not sure if he is referring to ##R## or ##R/\mathfrak{p}##, but I am guessing the later) ##x_n x_{n+1}=0## for all odd $n$ and ##x_{n+1}## is invertible, so that ##x_n=0##" 2. How does ##x_nx_{n+1}=0## implies that ##x_{n+1}## is invertible and ##x_n=0##. I mean if the quotient ring ##R/\mathfrak{p}## is an integral domain, and ##x_{n+1}## is invertible then...
View full post »

Thread 'Questions about non existence of GCDs vs (coimages, cokernels)'

The following are taken from the two sources, 1) from this online page and the book An Introduction to Module Theory by: Ibrahim Assem, Flavio U. Coelho. In the Abelian Categories chapter in the module theory text on page 157, right after presenting IV.2.21 Definition, the authors states "Image and coimage may or may not exist, but if they do, then they are unique up to isomorphism (because so are kernels and cokernels). Also in the reference url page above, the authors present two...
View full post »

Thread 'Decomposition into irreps of compact Lie group'

When decomposing a representation ##\rho## of a finite group ##G## into irreducible representations, we can find the number of times the representation contains a particular irrep ##\rho_0## through the character inner product $$ \langle \chi, \chi_0\rangle = \frac{1}{|G|} \sum_{g\in G} \chi(g) \chi_0(g)^*$$ where ##\chi## and ##\chi_0## are the characters of ##\rho## and ##\rho_0##, respectively. Since all group elements in the same conjugacy class have the same characters, this may be...
View full post »

Similar threads

I Meaning of "passage to the quotient"?
Replies
3
Views
449
A Structure of modulo-integer matrix group GL(r,Z(n))?
Replies
17
Views
6K
I A curve that does not meet rational points
Replies
9
Views
3K
A How to derive Quantum Mechanics in curved physical space?
Replies
6
Views
2K
MHB Why Do Functions \(X + UY\) and \(X - UY\) Have Zeroes Only at \(t = \pm 1\)?
Replies
1
Views
1K
A Computing de Rham Cohomology of Connected Sums of Objects
Replies
13
Views
2K
I Phase space integral in noninteracting dipole system
Replies
2
Views
1K
Cayley table for group of points on elliptic curve
Replies
1
Views
2K
Challenge Math Challenge - May 2020
2
Replies
61
Views
12K
Challenge Math Challenge - September 2021
3
Replies
100
Views
11K

Hot Threads

Recent Insights

Back
Top