## Elliptic curves and primality proving.(English)Zbl 0792.11056

This paper describes a primality proving algorithm using the theory of elliptic curves with complex multiplication over finite fields. The algorithm is supposed to have polynomial complexity and performs well in practice. The algorithm yields a proof (or “certificate”) that the computation is correct, in the form of a list of numbers by means of which one can easily check the primality properties.
The mathematics behind the algorithm is complicated. It involves properties of quadratic forms, the theory of Hilbert class field of imaginary quadratic fields via modular forms, Weber’s functions and Dedekind’s $$\eta$$ function, and elliptic curves.
Actual primality proofs are given of numbers in the 100-1500 decimal digits range. Typically, testing arbitrary integers up to 400 decimal digits can be done in a few days on a single SUN 3/60 workstation, and numbers with less than 800 digits can be done in about one week real time using about 10 workstations. The second author has made his C program available via anonymous ftp.
It is interesting to compare this algorithm with the so-called Jacobi sum test, developed by Adleman et al, and optimized by Bosma and Van der Hulst in their Doctor’s thesis project [Wieb Bosma and Marc- Paul van der Hulst, Primality proving with cyclotomy, Doctor’s thesis, University of Amsterdam (1990)]. With this test, they proved primality of the $$1065$$ digit number $$n= (2^{3539}+1)/3$$ at the expense of about one month computing time on a DEC-3100 workstation. They claim that their test is “substantially faster” than that of Atkin and Morain. For this number, Morain (who was the very first to prove primality of such a ‘Titanic’ prime [Advances in Cryptology, EUROCRYPT ‘90, Lect. Notes Comput. Sci. 473, 100-123 (1991; Zbl 0779.11063)]) needed a total of 319 days of CPU time on twelve SUN 3 workstations (which are about six times slower than a DEC-3100). Also for smaller numbers, Bosma and Van der Hulst claim that the Atkin and Morain’s test is inferior to their Jacobi sum test (cf. p. 264 of their thesis), but they also admit that their test does not provide a certificate of primality, contrary to Atkin and Morain’s.

### MSC:

 11Y11 Primality 14H52 Elliptic curves 11F11 Holomorphic modular forms of integral weight 11R37 Class field theory

Zbl 0779.11063

BIGNUM; ECPP
Full Text:

### References:

This reference list is based on information provided by the publisher or from digital mathematics libraries. Its items are heuristically matched to zbMATH identifiers and may contain data conversion errors. It attempts to reflect the references listed in the original paper as accurately as possible without claiming the completeness or perfect precision of the matching.