Minimal weight and colexicographically minimal integer representations

Redundant number systems (e.g., signed binary representations) have been utilized to efficiently implement algebraic operations required by public-key cryptosystems, especially those based on elliptic curves. Several families of integer representations have been proposed that have a minimal number of nonzero digits (so-called minimal weight representations). We observe that many of the constructions for minimal weight representations actually work by building representations which are minimal in another sense. For a given set of digits, these constructions build colexicographically minimal representations; that is, they build representations where each nonzero digit is positioned as far left (toward the most significant digit) as possible. We utilize this strategy in a new algorithm which constructs a very general family of minimal weight dimension-d joint representations for any d ≥ 1. The digits we use are from the set {a ∈ Z : l ≤ a ≤ u} where l ≤ 0 and u ≥ 1 are integers. By selecting particular values of l and u, it is easily seen that our algorithm generalizes many of the minimal weight representations previously described in the literature. From our algorithm, we obtain a syntactical description of a particular family of dimension-d joint representations; any representation which obeys this syntax must be both colexicographically minimal and have minimal weight; moreover, every vector of integers has exactly one representation that satisfies this syntax. We utilize this syntax in a combinatorial analysis of the weight of the representations.

[1]  James A. Muir,et al.  Efficient Integer Representations for Cryptographic Operations , 2004 .

[2]  Aaron Strauss Continuous Dependence of Solutions of Ordinary Differential Equations , 1964 .

[3]  George W. Reitwiesner,et al.  Binary Arithmetic , 1960, Adv. Comput..

[4]  Roberto Maria Avanzi A Note on the Signed Sliding Window Integer Recoding and a Left-to-Right Analogue , 2004, Selected Areas in Cryptography.

[5]  Helmut Prodinger,et al.  Analysis of Alternative Digit Sets for Nonadjacent Representations , 2006 .

[6]  Hsien-Kuei Hwang,et al.  On Convergence Rates in the Central Limit Theorems for Combinatorial Structures , 1998, Eur. J. Comb..

[7]  Douglas R. Stinson,et al.  Minimality and other properties of the width-w nonadjacent form , 2005, Math. Comput..

[8]  Yuefei Zhu,et al.  An Improved Algorithm for uP + vQ Using JSF13 , 2004, ACNS.

[9]  Tsuyoshi Takagi,et al.  An Advanced Method for Joint Scalar Multiplications on Memory Constraint Devices , 2005, ESAS.

[10]  J. Olivos,et al.  Speeding up the computations on an elliptic curve using addition-subtraction chains , 1990, RAIRO Theor. Informatics Appl..

[11]  Bodo Möller,et al.  Fractional Windows Revisited: Improved Signed-Digit Representations for Efficient Exponentiation , 2004, ICISC.

[12]  William M. Daley,et al.  Digital Signature Standard (DSS) , 2000 .

[13]  J. Solinas Low-Weight Binary Representations for Pairs of Integers , 2001 .

[14]  Helmut Prodinger,et al.  Analysis of linear combination algorithms in cryptography , 2005, TALG.

[15]  Daniel J. Bernstein,et al.  Pippenger's Exponentiation Algorithm , 2002 .

[16]  Braden Phillips,et al.  Minimal weight digit set conversions , 2004, IEEE Transactions on Computers.

[17]  Helmut Prodinger,et al.  Distribution results for low-weight binary representations for pairs of integers , 2004, Theor. Comput. Sci..

[18]  W. Neville Holmes,et al.  Binary Arithmetic , 2007, Computer.