Séminaire de Cryptographie

Accueil     Présentation     Archives

Cyril Bouvier

Finding ECM-Friendly Curves through a Study of Galois Properties

In this talk, I'll prove some divisibility properties of the cardinality of elliptic curve groups modulo primes. These proofs explain the good behavior of certain parameters when using Montgomery or Edwards curves in the setting of the elliptic curve method (ECM) for integer factorization. The ideas behind the proofs can be used to find new infinite families of elliptic curves with good division properties increasing the success probability of ECM This is a joint work with Razvan Barbulescu, Joppe W. Bos, Thorsten Kleinjung and Peter L. Montgomery.