Sommaire

  • Cet exposé a été présenté le 18 avril 2003.

Description

  • Orateur

    Alan Lauder - Oxford University

The problem of computing the zeta function of a variety over a finite field has attracted considerable interest in recent years, motivated in part by an application in cryptography. (In less fancy language, the problem is just to compute the number of solutions to a system of polynomial equations over a finite field.) I will discuss a new algorithm for computing zeta functions which is based upon relative p-adic cohomology. The idea is that to compute the zeta function of a single projective hypersurface, say , one puts it in a one-dimensional family of hypersurfaces. As one moves through this family, the zeta function varies in a manner which is controlled by a differential equation. One can arrange matters so that one fibre in the family has an easily computed zeta function. By solving the differential equation locally around this fibre, and using a form of analytic continuation, one can now recover the zeta function of any fibre in the family. In particular, one gets the zeta function of the original hypersurface! The key point is that because the `deformation' from the original hypersurface to the easy one is one-dimensional, the complexity of this approach is largely independent of the dimension of the hypersurface. In fact, one gets a uniform dependence on the input size over all dimensions. This contrasts starkly with existing approaches, whose performance deteriorates as the dimension increases. I believe the talk should be of interest to both cryptographers and p-adic cohomologists.

Prochains exposés

  • Polytopes in the Fiat-Shamir with Aborts Paradigm

    • 29 novembre 2024 (13:45 - 14:45)

    • IRMAR - Université de Rennes - Campus Beaulieu Bat. 22, RDC, Rennes - Amphi Lebesgue

    Orateur : Hugo Beguinet - ENS Paris / Thales

    The Fiat-Shamir with Aborts paradigm (FSwA) uses rejection sampling to remove a secret’s dependency on a given source distribution.  Recent results revealed that unlike the uniform distribution in the hypercube, both the continuous Gaussian and the uniform distribution within the hypersphere minimise the rejection rate and the size of the proof of knowledge. However, in practice both these[…]

    • Cryptographie

    • Primitive asymétrique

    • Mode et protocole

  • Post-quantum Group-based Cryptography

    • 20 décembre 2024 (13:45 - 14:45)

    • IRMAR - Université de Rennes - Campus Beaulieu Bat. 22, RDC, Rennes - Amphi Lebesgue

    Orateur : Delaram Kahrobaei - The City University of New York

Voir les exposés passés
Haut de page