A structural comparison of the computational difficulty of breaking discrete log cryptosystems

Kouichi Sakurai; Hiroki Shizuya

doi:10.1007/s001459900033

A structural comparison of the computational difficulty of breaking discrete log cryptosystems

Kouichi Sakurai, Hiroki Shizuya

Research output: Contribution to journal › Article › peer-review

22 Citations (Scopus)

Abstract

The complexity of breaking cryptosystems of which security is based on the discrete logarithm problem is explored. The cryptosystems mainly discussed are the Diffie-Hellman key exchange scheme (DH), the Bellare-Micali noninteractive oblivious transfer scheme (EM), the ElGamal public-key cryptosystem (EG), the Okamoto conference-key sharing scheme (CONF), and the Shamir 3-pass key-transmission scheme (3PASS). The obtained relation among these cryptosystems is that 3 PASS < CONF < EG =£" BM s DH, where <JJdenotes the polynomial-time functionally many-to-one reducibility, i.e., a function version of the <£ -reducibility. We further give some condition in which these algorithms have equivalent difficulty. One of such conditions suggest another advantage of the discrete logarithm associated with ordinary elliptic curves.

Original language	English
Pages (from-to)	29-43
Number of pages	15
Journal	Journal of Cryptology
Volume	11
Issue number	1
DOIs	https://doi.org/10.1007/s001459900033
Publication status	Published - 1998

Keywords

Computational number theory
Cryptosystem
Discrete logarithm
Elliptic curves
Key exchange
Public-key cryptography
Randomness
Security

ASJC Scopus subject areas

Software
Computer Science Applications
Applied Mathematics

Access to Document

10.1007/s001459900033

Cite this

@article{534505e1a85f4edea553e8fac798bc46,

title = "A structural comparison of the computational difficulty of breaking discrete log cryptosystems",

abstract = "The complexity of breaking cryptosystems of which security is based on the discrete logarithm problem is explored. The cryptosystems mainly discussed are the Diffie-Hellman key exchange scheme (DH), the Bellare-Micali noninteractive oblivious transfer scheme (EM), the ElGamal public-key cryptosystem (EG), the Okamoto conference-key sharing scheme (CONF), and the Shamir 3-pass key-transmission scheme (3PASS). The obtained relation among these cryptosystems is that 3 PASS < CONF < EG =£{"} BM s DH, where <JJdenotes the polynomial-time functionally many-to-one reducibility, i.e., a function version of the <£ -reducibility. We further give some condition in which these algorithms have equivalent difficulty. One of such conditions suggest another advantage of the discrete logarithm associated with ordinary elliptic curves.",

keywords = "Computational number theory, Cryptosystem, Discrete logarithm, Elliptic curves, Key exchange, Public-key cryptography, Randomness, Security",

author = "Kouichi Sakurai and Hiroki Shizuya",

year = "1998",

doi = "10.1007/s001459900033",

language = "English",

volume = "11",

pages = "29--43",

journal = "Journal of Cryptology",

issn = "0933-2790",

publisher = "Springer New York",

number = "1",

}

TY - JOUR

T1 - A structural comparison of the computational difficulty of breaking discrete log cryptosystems

AU - Sakurai, Kouichi

AU - Shizuya, Hiroki

PY - 1998

Y1 - 1998

N2 - The complexity of breaking cryptosystems of which security is based on the discrete logarithm problem is explored. The cryptosystems mainly discussed are the Diffie-Hellman key exchange scheme (DH), the Bellare-Micali noninteractive oblivious transfer scheme (EM), the ElGamal public-key cryptosystem (EG), the Okamoto conference-key sharing scheme (CONF), and the Shamir 3-pass key-transmission scheme (3PASS). The obtained relation among these cryptosystems is that 3 PASS < CONF < EG =£" BM s DH, where <JJdenotes the polynomial-time functionally many-to-one reducibility, i.e., a function version of the <£ -reducibility. We further give some condition in which these algorithms have equivalent difficulty. One of such conditions suggest another advantage of the discrete logarithm associated with ordinary elliptic curves.

AB - The complexity of breaking cryptosystems of which security is based on the discrete logarithm problem is explored. The cryptosystems mainly discussed are the Diffie-Hellman key exchange scheme (DH), the Bellare-Micali noninteractive oblivious transfer scheme (EM), the ElGamal public-key cryptosystem (EG), the Okamoto conference-key sharing scheme (CONF), and the Shamir 3-pass key-transmission scheme (3PASS). The obtained relation among these cryptosystems is that 3 PASS < CONF < EG =£" BM s DH, where <JJdenotes the polynomial-time functionally many-to-one reducibility, i.e., a function version of the <£ -reducibility. We further give some condition in which these algorithms have equivalent difficulty. One of such conditions suggest another advantage of the discrete logarithm associated with ordinary elliptic curves.

KW - Computational number theory

KW - Cryptosystem

KW - Discrete logarithm

KW - Elliptic curves

KW - Key exchange

KW - Public-key cryptography

KW - Randomness

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=0003610767&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0003610767&partnerID=8YFLogxK

U2 - 10.1007/s001459900033

DO - 10.1007/s001459900033

M3 - Article

AN - SCOPUS:0003610767

SN - 0933-2790

VL - 11

SP - 29

EP - 43

JO - Journal of Cryptology

JF - Journal of Cryptology

IS - 1

ER -

A structural comparison of the computational difficulty of breaking discrete log cryptosystems

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this