Collision bounds for the additive Pollard rho algorithm for solving discrete logarithms

Bos Joppe W.; Dudeanu Alina; Jetchev Dimitar

doi:10.1515/jmc-2012-0032

Journal of Mathematical Cryptology (Feb 2014)

Collision bounds for the additive Pollard rho algorithm for solving discrete logarithms

Bos Joppe W.,
Dudeanu Alina,
Jetchev Dimitar

Affiliations

Bos Joppe W.: Microsoft Research, One Microsoft Way, Redmond, WA 98052, USA
Dudeanu Alina: Laboratory for Cryptologic Algorithms, EPFL, Lausanne, Switzerland
Jetchev Dimitar: Laboratory for Cryptologic Algorithms, EPFL, Lausanne, Switzerland

DOI: https://doi.org/10.1515/jmc-2012-0032
Journal volume & issue: Vol. 8, no. 1
pp. 71 – 92

Abstract

Read online

We prove collision bounds for the Pollard rho algorithm to solve the discrete logarithm problem in a general cyclic group 𝐆$\mathbf {G}$. Unlike the setting studied by Kim et al., we consider additive walks: the setting used in practice to solve the elliptic curve discrete logarithm problem. Our bounds differ from the birthday bound 𝒪(|𝐆|)$\mathcal {O}(\sqrt{\vert \mathbf {G}\vert })$ by a factor of log|𝐆|$\sqrt{\log {\vert \mathbf {G}\vert }}$ and are based on mixing time estimates for random walks on finite abelian groups due to Dou and Hildebrand.

Published in Journal of Mathematical Cryptology

ISSN: 1862-2976 (Print); 1862-2984 (Online)
Publisher: De Gruyter
Country of publisher: Poland
LCC subjects: Science: Mathematics
Website: https://www.degruyter.com/view/journals/jmc/jmc-overview.xml

About the journal

Abstract

Keywords