Certifying Giant Nonprimes in Computational Number Theory

Certifying Giant Nonprimes in Computational Number Theory
Slide Note
Embed
Share

This article discusses certifying giant nonprimes in computational number theory, covering topics such as giant prime numbers, Proth numbers, proofs of exponentiation, and PoEs for non-primality certificates. It presents a statistically sound certificate of non-primality for Proth numbers and outlines technical overviews and interactive protocols. Additionally, it introduces contributions aimed at reducing complexity and improving current protocols.

  • Computational Number Theory
  • Giant Nonprimes
  • Proth Numbers
  • Primal Certificates
  • Prime Numbers
kfinc
kfinc Follow

Uploaded on Feb 15, 2025 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. Crypto for Crypto Computational Number Theory: Certifying Giant Nonprimes x Charlotte Hoffmann1, Pavel Hub ek2, Chethan Kamath3, Krzysztof Pietrzak1 1Institute of Science and Technology Austria 2Charles University, Faculty of Mathematics and Physics 3Tel Aviv University

  2. Giant Prime Numbers GIMPS and PrimeGrid: large-scale projects dedicated to searching giant prime numbers Expensive primality tests for numbers of special form (e.g. Proth, Mersenne) Prevent cheating and computation errors: Double checking Cryptographic proofs? 2

  3. Proth Numbers ? = ???+ ? ? ,? < 2? odd Proth s Theorem For all x quadratic non-residue mod ?: ? prime ??2? 1= 1 mod ? 3

  4. Proofs of Exponentiation Hidden order ???= ? in ? PoE ? ? If ord(?) is known: ? and ? compute ? ?? mod ord ? and ?? ? performs ? sequential exponentiations ? ?? ??2 ??3 ??? Cost of computing and verifying the proof ? 4

  5. PoEs for (Non-)Primality Certificates? Proth s Thm: ? = ?2?+ 1 ? prime ??2? 1= 1 mod ? GIMPS and PrimeGrid deployed Pietrzak s PoE to certify primality test BUT: Pietrzak s PoE constructed for hidden order groups Here: order of ? Attack! known for ? prime 5

  6. Our contribution Statistically sound certificate of non-primality for Proth numbers that reduces the complexity of double checking from ? to ?(?log?) increases the complexity of the currently deployed (not cryptographically sound) protocol by multiplicative factor 2 6

  7. Technical Overview 7

  8. Plan 1. Pietrzak s PoE 2. An attack in Proth number groups 3. Our protocol 8

  9. Interactive Protocols statement ? ? ? ? accept/ reject ? ? Soundness: If statement is false, ? rejects w.h.p. for every malicious ? Completeness: If statement is correct and ? is honest, ?accepts w.h.p. 9

  10. Pietrzaks PoE [Pie19] ?2?= ? ?1= ?2?/2 ? ( ) ?2?/2= ?1 2?/2= ? ?1 ? $ (???1)2?/2= ??1 ? ?2 ?2= ?? accept/reject Can be made non-interactive using Fiat-Shamir. 10

  11. The Attack [BBF18] Element of order ? Let ? = ?2?+ 1 prime ??2? 1= 1 mod ? ??2? 1= ? ? ? $ ? ) ( ? Holds if ? ?= 1 mod ? ?2 Pr[? accepts that ? is composite ] 1/? 11

  12. Our Work: Observations ? ? = ?2?+ 1 prime ??2? 1= 1 mod ? Observations: ? only needs to exclude that the correct result is 1 Success probability of attack depends on order of ? The order of ? divides ? 1 = ?2? if ? prime ? can check if the order of ?is too small 12

  13. Our Work: Non-primality Certificate ? = ?2?+ 1 prime ??2? 1= 1 mod ? 1 ??2? 1= ? Statistical security parameter Case 1: ??= 1 Compute ? 2 ? mod ? and check if ??= ?2? accept/reject Case 2: ??2? log ? 1 Pietrzak s PoE accept/reject Case 3: ??2? log ?= 1 [HHK+22] ?, Pietrzak s PoE for claim ??2? 1 ? log ?= ? Check if ?2? log ?= ? accept/reject 13

  14. Summary and Open Problems weeks Prover s Space Verifier s Complexity Approach Sound? Prover s Complexity Proof Size Double checking ? 0 yes 0 0 Pietrzak s PoE in ? 3?log? log? 2 ? ? no ???? + ?????? ???? + ? ????? + ????? + ? ? ? Our work yes hours We construct non-primality certificate for Proth number ?2?+ 1 Open: Construct cryptographically sound certificate of primality Open: Certificates of (non-)primality for other types of numbers such as Mersenne numbers 2? 1 Questions? 14

Related


Computational thinking as 21st Century skill

Computational thinking as 21st Century skill

kiana
Master's Program in Computational Drug Discovery and Development - Fall 2024 Curriculum

Master's Program in Computational Drug Discovery and Development - Fall 2024 Curriculum

ginevra
Go Big This Summer Unleashing Fun with Giant Checkers

Go Big This Summer Unleashing Fun with Giant Checkers

Mega
The Grandeur of Giant Chess Set Displays in the Public

The Grandeur of Giant Chess Set Displays in the Public

Mega
Evolution of Mathematical Theories and Proof Systems

Evolution of Mathematical Theories and Proof Systems

finnley
Canvassing and Certifying an Election Process Steps

Canvassing and Certifying an Election Process Steps

betsy
Alpine Skiing Program Overview

Alpine Skiing Program Overview

bodie
Computational Complexity Through Statistical Physics

Computational Complexity Through Statistical Physics

zeddicu
Introduction to Priority Search Trees in Computational Geometry

Introduction to Priority Search Trees in Computational Geometry

lisand
Advancing Computational Modeling for National Security and Climate Missions

Advancing Computational Modeling for National Security and Climate Missions

ellender_g
Computational Learning Theory: An Overview

Computational Learning Theory: An Overview

acampora_d
Automata Theory and Theory of Computation Overview

Automata Theory and Theory of Computation Overview

cla_l
Jack and the Giant Digital Footprint - Cybersecurity and Personal Finance

Jack and the Giant Digital Footprint - Cybersecurity and Personal Finance

kati_32
The Selfish Giant - A Heartwarming Tale of Redemption

The Selfish Giant - A Heartwarming Tale of Redemption

grel382
Theories of Interest in Microeconomics II

Theories of Interest in Microeconomics II

myon299
Unveiling the Significance of Being an Awakened Giant in FGBMFI Event - Ghana 2018

Unveiling the Significance of Being an Awakened Giant in FGBMFI Event - Ghana 2018

hoel_ti
Strategic Evolution and Biological Adaptation in Computational Game Theory

Strategic Evolution and Biological Adaptation in Computational Game Theory

kawtharc
Introduction to Computational Number Theory in Cryptography

Introduction to Computational Number Theory in Cryptography

dynastiw
The Selfish Giant Part 1 Summary

The Selfish Giant Part 1 Summary

mael_5
Design a Giant for Canterbury's Medieval Pageant Competition

Design a Giant for Canterbury's Medieval Pageant Competition

ibra
Theory of Automata: Introduction and Regular Languages Overview

Theory of Automata: Introduction and Regular Languages Overview

dav_wie
Computational Theories of Brain Function

Computational Theories of Brain Function

let_xza

More Related Content