A New Index Calculus Algorithm with Complexity $$L(1/4+o(1))$$ in Small Characteristic

In this paper, we describe a new algorithm for discrete logarithms in small characteristic. This algorithm is based on index calculus and includes two new contributions. The first is a new method for generating multiplicative relations among elements of a small smoothness basis. The second is a new descent strategy that allows us to express the logarithm of an arbitrary finite field element in terms of the logarithm of elements from the smoothness basis. For a small characteristic finite field of size $$Q=p^n$$ , this algorithm achieves heuristic complexity $$L_Q1/4+o1.$$ For technical reasons, unless $$n$$ is already a composite with factors of the right size, this is done by embedding $${\mathbb F}_{Q}$$ in a small extension $${\mathbb F}_{Q^e}$$ with $$e\le 2\lceil \log _p n \rceil $$ .

[1]  Jérémie Detrey,et al.  Discrete Logarithm in GF(2809) with FFS , 2014, Public Key Cryptography.

[2]  Mohab Safey El Din,et al.  Gröbner bases of bihomogeneous ideals generated by polynomials of bidegree (1, 1): Algorithms and complexity , 2010, J. Symb. Comput..

[3]  Leonard M. Adleman,et al.  Function Field Sieve Method for Discrete Logarithms over Finite Fields , 1999, Inf. Comput..

[4]  Faruk Göloglu,et al.  On the Function Field Sieve and the Impact of Higher Splitting Probabilities: Application to Discrete Logarithms in F21971 , 2013, IACR Cryptol. ePrint Arch..

[5]  Pierre-Jean Spaenlehauer Solving multi-homogeneous and determinantal systems: algorithms, complexity, applications. (Résolution de systèmes multi-homogènes et déterminantiels : algorithmes, complexité, applications) , 2012 .

[6]  Philippe Flajolet,et al.  An Analytic Approach to Smooth Polynominals over Finite Fields , 1998, ANTS.

[7]  Frederik Vercauteren,et al.  The Number Field Sieve in the Medium Prime Case , 2006, CRYPTO.

[8]  Igor A. Semaev An algorithm for evaluation of discrete logarithms in some nonprime finite fields , 1998, Math. Comput..

[9]  Antoine Joux,et al.  The Function Field Sieve in the Medium Prime Case , 2006, EUROCRYPT.

[10]  Don Coppersmith,et al.  Fast evaluation of logarithms in fields of characteristic two , 1984, IEEE Trans. Inf. Theory.

[11]  Ming-Deh Huang,et al.  Finding Primitive Elements in Finite Fields of Small Characteristic , 2013, ArXiv.

[12]  Faruk Göloglu,et al.  Solving a 6120 -bit DLP on a Desktop Computer , 2013, Selected Areas in Cryptography.

[13]  Antoine Joux,et al.  Faster Index Calculus for the Medium Prime Case Application to 1175-bit and 1425-bit Finite Fields , 2013, EUROCRYPT.