Abstract
Polynomial selection is very important in the number field sieve. If the number of relations a pair of polynomials can generate is closely correlated with the coefficients of the polynomials, we can select polynomials by checking the coefficients first, which can speed up the selection of good polynomials. In this paper, we aim to study the correlation between polynomial coefficients and the number of relations the polynomials can generate. By analyzing the zero roots, it is found that a polynomial with the ending coefficient containing more small primes usually can generate more relations than the one whose ending coefficient contains less. As a polynomial with more real roots usually can generate more relations, using the complete discrimination system, the requirements on the coefficients of a polynomial to obtain more real roots are analyzed. For instance, a necessary condition for a polynomial of degree d to have d distinct real roots is that the coefficient of degree d−2 should be negative or small enough. The result in the case d = 3 can be used directly in selecting polynomials generated by the nonlinear method, where d = 3 is already enough for practical purpose.
摘要
创新点
-
1.
提出新的研究角度, 研究多项式系数和其产出之间的关系。
-
2.
通过分析零根, 我们发现尾系数和首系数一样, 当其含有较多小因子时该多项式往往可以产生更多的关系。对于一个给定的大数, 是应该增大首系数, 还是尾系数? 这导致后续其他研究。
-
3.
利用CDS, 研究多项式有多个实根时其系数特点。比如, d次多项式有d个不同实根的一个必要条件是其d-2次系数要足够小。当d=3时, 该结论可用于非线性方法多项式的筛选, 而3次对于非线性方法已经足够了。
This is a preview of subscription content, log in via an institution to check access.
Similar content being viewed by others
References
Buhler J P, Lenstra H W Jr, Pomerance C. Factoring integers with the number field sieve. In: Lenstra A K, Lenstra H W Jr, eds. The Development of the Number Field Sieve. Berlin: Springer, 1993. 50–94
Pomerance C. The number field sieve. In: Proceedings of Symposia in Applied Mathematics, Rhode Island, 1994. 465–480
Montgomery P L. A block Lanczos algorithm for finding dependencies over GF(2). In: Proceedings of International Conference on the Theory and Application of Cryptographic Techniques, Saint-Malo, 1995. 106–120
Coppersmith D. Solving homogeneous linear equations over GF(2) via block Wiedemann algorithm. Math Comput, 1994, 62: 333–350
Nguyen P. A montgomery-like square root for the number field sieve. In: Proceedings of 3rd International Symposium on Algorithmic Number Theory, Portland, 1998. 151–168
Murthy B. Polynomial selection for the number field sieve integer factorisation algorithm. Dissertation for the Doctoral Degree. Canberra: The Australian National University, 1999
Kleinjung T. On polynomial selection for the general number field sieve. Math Comput, 2006, 75: 2037–2047
Kleinjung T. Polynomial selection. In: Proceedings of CADO workshop on Integer Factorization, Nancy, 2008. http://cado.gforge.inria.fr/workshop/slides/kleinjung.pdf
Koo N, Jo G H, Kwon S. On nonlinear polynomial selection and geometric progression (mod N) for number field sieve. http://eprint.iacr.org/2011/292
Prest T, Zimmermann P. Non-linear polynomial selection for the number field sieve. J Symb Comput, 2012, 47: 401–409
Williams R S. Cubic polynomials in the number field sieve. Dissertation for the Master Degree. Texas: Texas Tech University, 2010
Coxon N V. On the number field sieve: polynomial selection and smooth elements in number fields. Dissertation for the Doctoral Degree. Queensland: The University of Queensland, 2012
Zhang H G, Feng X T, Qin Z P, et al. Research on evolutionary cryptosystems and evolutionary DES (in Chinese). Chin J Comput, 2003, 26: 1678–1684
Meng Q S, Zhang H G, Wang Z Y, et al. Designing bent functions using evolving method. Acta Electron Sin, 2004, 32: 1901–1903
Yang M, Meng Q S, Zhang H G. Evolutionary design of trace form bent functions in cryptography. Int J Inf Comput Secur, 2009, 3: 47–59
Zhang H G, Li C L, Tang M. Evolutionary cryptography against multidimensional linear cryptanalysis. Sci China Inf Sci, 2011, 54: 2565–2577
Zhang H G, Li C L, Tang M. Capability of evolutionary cryptosystem against differentil cryptanalysis. Sci China Inf Sci, 2011, 54: 1991–2000
Elkenbracht-Huizing M. An implementation of the number field sieve. Exp Math, 1996, 5: 231–251
Gower J E. Rotations and translations of number field sieve polynomials. In: Proceedings of Asiacrypt’03, Taipei, 2003. 302–310
Bai S, Richard B, Emmanuel T. Root optimization of polynomials in the number field sieve. Math Comp, 2015, 84: 2447–2457
Yang L, Hou X R, Zeng Z B. A complete discrimination system for polynomials. Sci China Ser E-Tech Sci, 1996, 39: 625–646
Yang L. Recent advances on determining the number of real roots of parametric polynomials. J Symb Comput, 1999, 28: 225–242
Yang M, Meng Q S, Wang Z Y, et al. Polynomial selection for the number field sieve in a geometric view. http://eprint.iacr.org/2013/583
Lenstra A K, Lenstra H W Jr, Lovász L. Factoring polynomials with rational coefficients. Math Ann, 1982, 261: 515–534
Author information
Authors and Affiliations
Corresponding author
Rights and permissions
About this article
Cite this article
Yang, M., Meng, Q., Wang, Z. et al. On the coefficients of the polynomial in the number field sieve. Sci. China Inf. Sci. 58, 1–9 (2015). https://doi.org/10.1007/s11432-015-5331-9
Received:
Accepted:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s11432-015-5331-9
Keywords
- cryptography
- integer factorization
- number field sieve
- polynomial selection
- coefficients
- zero roots
- complete discrimination system