and 611 for small integer factorization sieving
play

and 611 + for small : Integer factorization Sieving 1 612 2 2 - PowerPoint PPT Presentation

Dec 09, 2022 •110 likes •411 views

and 611 + for small : Integer factorization Sieving 1 612 2 2 3 3 D. J. Bernstein 2 2 613 3 3 614 2 4 2 2 615 3 5 Thanks to: 5 5 616 2 2 2 7 6 2 3 617 University of Illinois at Chicago 7 7 618 2 3 8 2 2 2

  1. � and 611 + � for small � : Integer factorization Sieving 1 612 2 2 3 3 D. J. Bernstein 2 2 613 3 3 614 2 4 2 2 615 3 5 Thanks to: 5 5 616 2 2 2 7 6 2 3 617 University of Illinois at Chicago 7 7 618 2 3 8 2 2 2 619 NSF DMS–0140542 9 3 3 620 2 2 5 10 2 5 621 3 3 3 Alfred P. Sloan Foundation 11 622 2 12 2 2 3 623 7 13 624 2 2 2 2 3 14 2 7 625 5 5 5 5 15 3 5 626 2 16 2 2 2 2 627 3 17 628 2 2 18 2 3 3 629 19 630 2 3 3 5 7 20 2 2 5 631 etc.

  2. � ✂ ✁ � � and 611 + � for small � : rization Sieving Have complete facto � (611 + � ) for some 1 612 2 2 3 3 2 2 613 � 625 = 2 1 3 0 5 4 7 3 3 614 2 14 4 2 2 615 3 5 � 675 = 2 6 3 3 5 2 7 5 5 616 2 2 2 7 64 6 2 3 617 Illinois at Chicago � 686 = 2 1 3 1 5 2 7 7 7 618 2 3 75 8 2 2 2 619 DMS–0140542 9 3 3 620 2 2 5 10 2 5 621 3 3 3 Foundation 14 � 64 � 75 � 625 � 675 11 622 2 = 2 8 3 4 5 8 7 4 = (2 4 3 12 2 2 3 623 7 13 624 2 2 2 2 3 14 2 7 625 5 5 5 5 15 3 5 626 2 gcd 14 � 64 � 75 16 2 2 2 2 627 3 17 628 2 2 = 47. 18 2 3 3 629 19 630 2 3 3 5 7 611 = 47 � 13. 20 2 2 5 631 etc.

  3. ✁ � and 611 + � for small � : Sieving Have complete factorization of � (611 + � ) for some � ’s. 1 612 2 2 3 3 2 2 613 � 625 = 2 1 3 0 5 4 7 1 . 3 3 614 2 14 4 2 2 615 3 5 � 675 = 2 6 3 3 5 2 7 0 . 5 5 616 2 2 2 7 64 6 2 3 617 � 686 = 2 1 3 1 5 2 7 3 . 7 7 618 2 3 75 8 2 2 2 619 9 3 3 620 2 2 5 10 2 5 621 3 3 3 14 � 64 � 75 � 625 � 675 � 686 11 622 2 = 2 8 3 4 5 8 7 4 = (2 4 3 2 5 4 7 2 ) 2 . 12 2 2 3 623 7 13 624 2 2 2 2 3 14 2 7 625 5 5 5 5 2 4 3 2 5 4 7 2 ✂ 611 15 3 5 626 2 gcd 14 � 64 � 75 16 2 2 2 2 627 3 17 628 2 2 = 47. 18 2 3 3 629 19 630 2 3 3 5 7 611 = 47 � 13. 20 2 2 5 631 etc.

  4. � ✂ � � � � ✁ � � ✂ ✁ � ✂ ✁ � ✁ ✁ � � � � � for small � : 611 + Have complete factorization of Given and parameter � (611 + � ) for some � ’s. 2 2 3 3 1. Use powers of p � and � fo � 625 = 2 1 3 0 5 4 7 1 . 2 14 sieve + 3 5 � 675 = 2 6 3 3 5 2 7 0 . 2 2 2 7 64 2. Look for nonempt � 686 = 2 1 3 1 5 2 7 3 . 2 3 75 � ( � ) completely with + 2 2 5 � ( 3 3 3 14 � 64 � 75 � 625 � 675 � 686 and with + 2 = 2 8 3 4 5 8 7 4 = (2 4 3 2 5 4 7 2 ) 2 . 7 2 2 2 2 3 3. Compute gcd 5 5 5 5 2 4 3 2 5 4 7 2 ✂ 611 2 gcd 14 � 64 � 75 where = 3 2 2 = 47. 2 3 3 5 7 611 = 47 � 13.

  5. � � ✁ � � � ✁ � ✂ ✂ ✂ ✁ � ✁ ✁ � Have complete factorization of Given and parameter : � (611 + � ) for some � ’s. 1. Use powers of primes to � and � for 1 � 625 = 2 1 3 0 5 4 7 1 . 2 . 14 sieve + � 675 = 2 6 3 3 5 2 7 0 . 64 � ’s 2. Look for nonempty set of � 686 = 2 1 3 1 5 2 7 3 . 75 � ( � ) completely factored with + � ( � ) square. 14 � 64 � 75 � 625 � 675 � 686 and with + = 2 8 3 4 5 8 7 4 = (2 4 3 2 5 4 7 2 ) 2 . 3. Compute gcd 2 4 3 2 5 4 7 2 ✂ 611 gcd 14 � 64 � 75 � ( � ). where = + = 47. 611 = 47 � 13.

  6. ✂ ✁ ✁ � � � ✁ � ✁ � � � � � � � � � � ✂ � � � ✂ ✁ � � factorization of Given and parameter : This is the Q sieve � ’s. some 1. Use powers of primes to Same principles: � and � for 1 4 7 1 . 2 . sieve + Continued-fraction 2 7 0 . (Lehmer, Powers, � ’s 2. Look for nonempty set of 2 7 3 . Brillhart, Morrison). � ( � ) completely factored with + Linear sieve (Schro � ( � ) square. � 675 � 686 and with + Quadratic sieve (P 4 3 2 5 4 7 2 ) 2 . Number-field sieve 3. Compute gcd 2 4 3 2 5 4 7 2 ✂ 611 � ( � ). (Pollard, Buhler, Lenstra, where = + Pomerance, Adleman).

  7. � � ✁ � � ✂ ✂ � ✂ � � ✁ � ✁ ✁ Given and parameter : This is the Q sieve . 1. Use powers of primes to Same principles: � and � for 1 2 . sieve + Continued-fraction method (Lehmer, Powers, � ’s 2. Look for nonempty set of Brillhart, Morrison). � ( � ) completely factored with + Linear sieve (Schroeppel). � ( � ) square. and with + Quadratic sieve (Pomerance). Number-field sieve 3. Compute gcd � ( � ). (Pollard, Buhler, Lenstra, where = + Pomerance, Adleman).

  8. � ✂ ✂ � � � ✂ � � � � � � ✂ � � � � � � ✂ � � � � ✂ � � � ✂ ✂ � � � � ✂ � � � ✂ ✂ ✂ � � � ✁ ✁ � ✁ ✂ ✂ � � ✂ � � � ✁ � � � rameter : This is the Q sieve . Sieving speed of primes to Same principles: Handle sieving in � for 1 2 . sieve + 1 Continued-fraction method (Lehmer, Powers, sieve + + 1 � ’s nonempty set of Brillhart, Morrison). sieve + 2 + 1 completely factored Linear sieve (Schroeppel). etc. � ) square. + Quadratic sieve (Pomerance). Sieving + 1 + Number-field sieve using primes � ( � ). (Pollard, Buhler, Lenstra, + means finding, for Pomerance, Adleman). + 1 + 2 which ’s divide

  9. � � � � � ✂ � ✂ � � � ✂ � ✂ � � � ✂ ✂ � ✂ � � � � ✂ � � � ✂ ✂ � � � � � ✂ ✂ � � � This is the Q sieve . Sieving speed Same principles: Handle sieving in pieces: sieve + 1 + ; Continued-fraction method (Lehmer, Powers, sieve + + 1 + 2 ; Brillhart, Morrison). sieve + 2 + 1 + 3 ; Linear sieve (Schroeppel). etc. Quadratic sieve (Pomerance). Sieving + 1 + 2 + Number-field sieve using primes (Pollard, Buhler, Lenstra, means finding, for each Pomerance, Adleman). + 1 + 2 + , � . which ’s divide +

  10. ✂ � � ✂ � � � ✂ � � ✂ � � ✂ � � ✂ � � � � ✂ ✂ � � ✂ � ✂ � � ✂ ✂ ✂ ✂ ✂ ✂ ✂ ✂ ✂ � ✂ � � ✂ � � � ✂ � � � � � ✂ � sieve . Sieving speed Consider all pairs ( � is a multiple where + Handle sieving in pieces: sieve + 1 + ; Easy to generate pairs Continued-fraction method ers, sieve + + 1 + 2 ; sorted by second comp ✂ 2), (614 ✂ 2), (616 rrison). sieve + 2 + 1 + 3 ; (612 ✂ 2), (612 ✂ 3), (615 (Schroeppel). etc. (620 ✂ 5), (620 ✂ 5), (616 (Pomerance). (615 Sieving + 1 + 2 + sieve using primes Sieving means listing Buhler, Lenstra, means finding, for each sorted by first comp Adleman). ✂ 2), (612 ✂ 3), (614 + 1 + 2 + , (612 � . ✂ 3), (615 ✂ 5), (616 which ’s divide + (615 ✂ 2), (618 ✂ 3), (620 (618

  11. � ✂ � ✂ � ✂ ✂ � � � � � � � � ✂ � � ✂ � � � ✂ � ✂ � ✂ � � ✂ � � � � � � � � � ✂ � ✂ � � ✂ Sieving speed Consider all pairs ( + ) � is a multiple of where + . Handle sieving in pieces: sieve + 1 + ; Easy to generate pairs sieve + + 1 + 2 ; sorted by second component: ✂ 2), (614 ✂ 2), (616 ✂ 2), (618 ✂ 2), sieve + 2 + 1 + 3 ; (612 ✂ 2), (612 ✂ 3), (615 ✂ 3), (618 ✂ 3), etc. (620 ✂ 5), (620 ✂ 5), (616 ✂ 7). (615 Sieving + 1 + 2 + using primes Sieving means listing pairs means finding, for each sorted by first component: ✂ 2), (612 ✂ 3), (614 ✂ 2), + 1 + 2 + , (612 � . ✂ 3), (615 ✂ 5), (616 ✂ 2), (616 ✂ 7), which ’s divide + (615 ✂ 2), (618 ✂ 3), (620 ✂ 2), (620 ✂ 5). (618

  12. � � � ✁ � � � ✂ � ✂ ✂ � � � ✂ � � � � � � ✂ � � ✂ ✂ � � � � ✂ ✂ � ✂ � � ✂ ✂ � � � ✂ � � � ✂ � � � ✂ � � � � ✂ � � ✂ � � � � ✂ � � � ✂ � � � (1) 1+ Consider all pairs ( + ) There are � is a multiple of where + . involving + 1 pieces: + ; Easy to generate pairs Sieving + 1 + � (1) seconds 1+ + 2 ; sorted by second component: takes ✂ 2), (614 ✂ 2), (616 ✂ 2), (618 ✂ 2), 1 + 3 ; (612 on RAM costing ✂ 2), (612 ✂ 3), (615 ✂ 3), (618 ✂ 3), (620 2-dimensional mesh ✂ 5), (620 ✂ 5), (616 ✂ 7). (615 0 + 2 + is much faster: Sieving means listing pairs on machine costing for each sorted by first component: Can do even better: ✂ 2), (612 ✂ 3), (614 ✂ 2), 2 + , (612 on machine costing � . ✂ 3), (615 ✂ 5), (616 ✂ 2), (616 ✂ 7), + (615 using “elliptic-curve ✂ 2), (618 ✂ 3), (620 ✂ 2), (620 ✂ 5). (618

Recommend

Integer Factorization Methods Modular Arithmetic Trial division, Pollards p 1 , Division

Integer Factorization Methods Modular Arithmetic Trial division, Pollards p 1 , Division

Integer Factorization Methods Integer 2014-04-11 Integer Factorization Methods Factorization Trial division, Pollards p 1 , Pollards , and Fermats method Methods Christopher Koch 1 C. Koch 1 Department of Computer Science and

681 views • 33 slides
Public-key cryptography Q sieve Daniel J. Bernstein Sieving small integers i > 0 Tanja Lange

Public-key cryptography Q sieve Daniel J. Bernstein Sieving small integers i > 0 Tanja Lange

1 2 Public-key cryptography Q sieve Daniel J. Bernstein Sieving small integers i > 0 Tanja Lange using primes 2 ; 3 ; 5 ; 7: 1 Part II: 2 2 3 3 Factorization 4 2 2 5 5 6 2 3 15 August 2017 7 7 8 2 2 2 9 3 3 10 2 5 Sage

1.93k views • 161 slides
Random problems at the core of integer factorization algorithms Pierrick Gaudry Caramba

Random problems at the core of integer factorization algorithms Pierrick Gaudry Caramba

Random problems at the core of integer factorization algorithms Pierrick Gaudry Caramba LORIA, Nancy CNRS, Universit de Lorraine, Inria Journes ALEA, March 2016 1/31 Plan Introduction: crypto context Integer factorization 101 How

462 views • 33 slides
Factorization myths D. J. Bernstein Thanks to: University of Illinois at Chicago NSF

Factorization myths D. J. Bernstein Thanks to: University of Illinois at Chicago NSF

Factorization myths D. J. Bernstein Thanks to: University of Illinois at Chicago NSF DMS0140542 Alfred P. Sloan Foundation and 611 + for small : Sieving 1 612 2 2 3 3 2 2 613 3 3 614 2 4 2 2 615 3 5 5 5 616 2 2 2

676 views • 32 slides
Factorization myths D. J. Bernstein Thanks to: University of Illinois at Chicago NSF

Factorization myths D. J. Bernstein Thanks to: University of Illinois at Chicago NSF

Factorization myths D. J. Bernstein Thanks to: University of Illinois at Chicago NSF DMS0140542 Alfred P. Sloan Foundation and 611 + for small : Sieving 1 612 2 2 3 3 2 2 613 3 3 614 2 4 2 2 615 3 5 5 5 616 2 2 2

488 views • 36 slides
Integer Factorization Methods Modular Trial division, Pollards p 1 , Arithmetic Division

Integer Factorization Methods Modular Trial division, Pollards p 1 , Arithmetic Division

Integer Factorization Methods C. Koch Overview Integer Factorization Methods Modular Trial division, Pollards p 1 , Arithmetic Division Algorithm and Congruence Pollards , and Fermats method Residue classes mod n Integers

505 views • 33 slides
Dihedral Sieving Phenomena Sujit Rao, Joe Suk 31 July 2017 1/14 Outline Cyclic sieving

Dihedral Sieving Phenomena Sujit Rao, Joe Suk 31 July 2017 1/14 Outline Cyclic sieving

Dihedral Sieving Phenomena Sujit Rao, Joe Suk 31 July 2017 1/14 Outline Cyclic sieving Sieving for general groups Sieving for dihedral groups Examples of dihedral sieving Future work 2/14 Cyclic Sieving Phenomenon (CSP) Definition X be a

156 views • 15 slides
Challenges in quantum algorithms for integer factorization D. J. Bernstein University of

Challenges in quantum algorithms for integer factorization D. J. Bernstein University of

1 Challenges in quantum algorithms for integer factorization D. J. Bernstein University of Illinois at Chicago Prelude: What is the fastest algorithm to sort an array? def blindsort(x): while not issorted(x): permuterandomly(x) 2 def

713 views • 50 slides
Building circuits for integer factorization D. J. Bernstein Thanks to: University of Illinois

Building circuits for integer factorization D. J. Bernstein Thanks to: University of Illinois

Building circuits for integer factorization D. J. Bernstein Thanks to: University of Illinois at Chicago NSF DMS0140542 Alfred P. Sloan Foundation I want to work for NSA as an independent

706 views • 49 slides
Algorithms for integer factorization and discrete logarithms computation Algorithmes pour la

Algorithms for integer factorization and discrete logarithms computation Algorithmes pour la

Algorithms for integer factorization and discrete logarithms computation Algorithmes pour la factorisation dentiers et le calcul de logarithme discret Cyril Bouvier CARAMEL project-team, LORIA Universit de Lorraine / CNRS / Inria

470 views • 42 slides
Isolating critical cases for reciprocals using integer factorization John Harrison Intel

Isolating critical cases for reciprocals using integer factorization John Harrison Intel

Isolating critical cases for reciprocals using integer factorization John Harrison Intel Corporation ARITH-16 Santiago de Compostela 17th June 2003 0 Background result before the final rounding Suppose we are interested in a floating-point

343 views • 19 slides
Integer factorization: Exercise for the reader: a progress report Find a nontrivial factor of

Integer factorization: Exercise for the reader: a progress report Find a nontrivial factor of

Integer factorization: Exercise for the reader: a progress report Find a nontrivial factor of 6366223796340423057152171586. D. J. Bernstein Thanks to: University of Illinois at Chicago NSF DMS0140542 Alfred P. Sloan Foundation rization:

593 views • 55 slides
Integer factorization and discrete logarithm problems Pierrick Gaudry Caramel LORIA CNRS,

Integer factorization and discrete logarithm problems Pierrick Gaudry Caramel LORIA CNRS,

Integer factorization and discrete logarithm problems Pierrick Gaudry Caramel LORIA CNRS, Universit de Lorraine, Inria JNCF CIRM November 2014 1/81 Plan Presentation of the problems Cryptographic background Primality,

919 views • 88 slides
The NSA sieving circuit D. J. Bernstein University of Illinois at Chicago NSF DMS9970409

The NSA sieving circuit D. J. Bernstein University of Illinois at Chicago NSF DMS9970409

The NSA sieving circuit D. J. Bernstein University of Illinois at Chicago NSF DMS9970409 Sieving c and 611 + c for small c : 1 612 2 2 3 3 2 2 613 3 3 614 2 4 2 2 615 3 5 5 5 616 2 2 2 7 6 2 3 617 7 7 618 2 3 8 2 2 2

630 views • 15 slides
Nonunique Factorization in the Ring of Integer-Valued Polynomials Paul Baginski Fairfield

Nonunique Factorization in the Ring of Integer-Valued Polynomials Paul Baginski Fairfield

Nonunique Factorization in the Ring of Integer-Valued Polynomials Paul Baginski Fairfield University March 22, 2019 Paul Baginski Fairfield University Nonunique Factorization in the Ring of Integer-Valued Polynomials 2016 Fairfield

334 views • 30 slides
LU Factorization Marco Chiarandini Department of Mathematics & Computer Science University

LU Factorization Marco Chiarandini Department of Mathematics & Computer Science University

DM559 Linear and Integer Programming LU Factorization Marco Chiarandini Department of Mathematics & Computer Science University of Southern Denmark [ Based on slides by Lieven Vandenberghe, UCLA ] Operation Count LU Factorization Outline

935 views • 34 slides
LU Factorization Marco Chiarandini Department of Mathematics & Computer Science University

LU Factorization Marco Chiarandini Department of Mathematics & Computer Science University

DM559 Linear and Integer Programming LU Factorization Marco Chiarandini Department of Mathematics & Computer Science University of Southern Denmark [ Based on slides by Lieven Vandenberghe, UCLA ] Operation Count LU Factorization Outline

524 views • 38 slides
Torus sieving of finite Grassmannians Andrew Berget (joint with Jia Huang, UMN) Department of

Torus sieving of finite Grassmannians Andrew Berget (joint with Jia Huang, UMN) Department of

Torus sieving of finite Grassmannians Andrew Berget (joint with Jia Huang, UMN) Department of Mathematics University of California, Davis March 12, 2011 Cyclic sieving phenomenon (CSP) See the recent survey by Sagan! Cyclic sieving

685 views • 21 slides
Integer factoring and compositeness witnesses Jacek Pomykaa & Maciej Radziejewski June 26,

Integer factoring and compositeness witnesses Jacek Pomykaa & Maciej Radziejewski June 26,

Integer factoring and compositeness witnesses Jacek Pomykaa & Maciej Radziejewski June 26, 2019 Integer factoring and compositeness witnesses 1 Objective: Factorization of a large integer n Oracles Techniques How many hard numbers are

514 views • 22 slides
Circuits for integer factorization D. J. Bernstein University of Illinois at Chicago Exercise

Circuits for integer factorization D. J. Bernstein University of Illinois at Chicago Exercise

Circuits for integer factorization D. J. Bernstein University of Illinois at Chicago Exercise for the reader: Find a nontrivial factor of 6366223796340423057152171586. Exercise for the reader: Find a nontrivial factor of

586 views • 42 slides
Solving Quadratic Integer Programs: Small Improvements Changes Yield Big Improvements Yong Xia

Solving Quadratic Integer Programs: Small Improvements Changes Yield Big Improvements Yong Xia

Solving Quadratic Integer Programs: Small Changes Yield Big Solving Quadratic Integer Programs: Small Improvements Changes Yield Big Improvements Yong Xia Outline Introduction Yong Xia Quadratic Convex Reformulation Beihang

557 views • 40 slides
A Combinatorial Proof of the Cyclic Sieving Phenomenon for Faces of Coxeterhedra Tung-Shan Fu

A Combinatorial Proof of the Cyclic Sieving Phenomenon for Faces of Coxeterhedra Tung-Shan Fu

A Combinatorial Proof of the Cyclic Sieving Phenomenon for Faces of Coxeterhedra Tung-Shan Fu Pingtung Institute of Commerce Based on joint work with S.-P. Eu and Y.-J. Pan Cyclic sieving phenomenon X : a finite set X ( q ) : a

932 views • 74 slides
Challenges in def bubblesort(x): quantum algorithms for for j in range(len(x)): integer

Challenges in def bubblesort(x): quantum algorithms for for j in range(len(x)): integer

1 2 Challenges in def bubblesort(x): quantum algorithms for for j in range(len(x)): integer factorization for i in reversed(range(j)): x[i],x[i+1] = ( D. J. Bernstein min(x[i],x[i+1]), University of Illinois at Chicago max(x[i],x[i+1])

1.48k views • 118 slides
Comparing Problems Remember the concepts of Problem, Algorithm, and Program. Weve gotten

Comparing Problems Remember the concepts of Problem, Algorithm, and Program. Weve gotten

Comparing Problems Remember the concepts of Problem, Algorithm, and Program. Weve gotten pretty good at comparing algorithms. How do we compare problems? Sorted Array Search Sorting Integer Factorization Integer Multiplication Selection

449 views • 14 slides

More recommend