[148162] in cryptography@c2.net mail archive
Re: [Cryptography] [cryptography] Practical Threshold Signatures
daemon@ATHENA.MIT.EDU (James A. Donald)
Wed Nov 13 14:52:26 2013
X-Original-To: cryptography@metzdowd.com
Date: Wed, 13 Nov 2013 18:43:23 +1000
From: "James A. Donald" <jamesd@echeque.com>
To: realcr <realcr@gmail.com>
In-Reply-To: <CAE8kFFDOSUSn3sUzMs493UiXXanN+4ThTUkWFzCfdj2Dt+qXjg@mail.gmail.com>
Cc: cryptography@metzdowd.com, cryptography@randombit.net
Reply-To: jamesd@echeque.com
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
On 2013-11-13 16:14, realcr wrote:
> 2. Can I actually trust the elliptic curve with weil pairing to do its
> cryptographic job? Maybe better asked: Can I trust it like I trust that
> it is hard to factor numbers? (Maybe even more?)
The Weil pairing is a great big hole in our usual arguments that most
elliptic curves are strong.
The usual arguments that it is likely to be hard to solve the discrete
log problem for elliptic curves do not apply to an elliptic curve with a
Weil pairing.
Samuel Neves sounds like he understands enough maths to discern what
qualifies an elliptic curve with a Weil pairing to be strong, but I do not.
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
