CINXE.COM
Talk:Elliptic-curve cryptography - Wikipedia
<!DOCTYPE html> <html class="client-nojs vector-feature-language-in-header-enabled vector-feature-language-in-main-page-header-disabled vector-feature-page-tools-pinned-disabled vector-feature-toc-pinned-clientpref-1 vector-feature-main-menu-pinned-disabled vector-feature-limited-width-clientpref-1 vector-feature-limited-width-content-enabled vector-feature-custom-font-size-clientpref-1 vector-feature-appearance-pinned-clientpref-1 vector-feature-night-mode-enabled skin-theme-clientpref-day vector-sticky-header-enabled vector-toc-available" lang="en" dir="ltr"> <head> <meta charset="UTF-8"> <title>Talk:Elliptic-curve cryptography - Wikipedia</title> <script>(function(){var className="client-js vector-feature-language-in-header-enabled vector-feature-language-in-main-page-header-disabled vector-feature-page-tools-pinned-disabled vector-feature-toc-pinned-clientpref-1 vector-feature-main-menu-pinned-disabled vector-feature-limited-width-clientpref-1 vector-feature-limited-width-content-enabled vector-feature-custom-font-size-clientpref-1 vector-feature-appearance-pinned-clientpref-1 vector-feature-night-mode-enabled skin-theme-clientpref-day vector-sticky-header-enabled vector-toc-available";var cookie=document.cookie.match(/(?:^|; )enwikimwclientpreferences=([^;]+)/);if(cookie){cookie[1].split('%2C').forEach(function(pref){className=className.replace(new RegExp('(^| )'+pref.replace(/-clientpref-\w+$|[^\w-]+/g,'')+'-clientpref-\\w+( |$)'),'$1'+pref+'$2');});}document.documentElement.className=className;}());RLCONF={"wgBreakFrames":false,"wgSeparatorTransformTable":["",""],"wgDigitTransformTable":["",""],"wgDefaultDateFormat":"dmy", "wgMonthNames":["","January","February","March","April","May","June","July","August","September","October","November","December"],"wgRequestId":"de90ea5a-d24a-4b47-868e-afdf5e300483","wgCanonicalNamespace":"Talk","wgCanonicalSpecialPageName":false,"wgNamespaceNumber":1,"wgPageName":"Talk:Elliptic-curve_cryptography","wgTitle":"Elliptic-curve cryptography","wgCurRevisionId":1243174542,"wgRevisionId":1243174542,"wgArticleId":9973,"wgIsArticle":true,"wgIsRedirect":false,"wgAction":"view","wgUserName":null,"wgUserGroups":["*"],"wgCategories":["C-Class Cryptography articles","High-importance Cryptography articles","C-Class Computer science articles","High-importance Computer science articles","WikiProject Computer science articles","WikiProject Cryptography articles","C-Class numismatic articles","Low-importance numismatic articles","WikiProject Numismatics articles","C-Class WikiProject Cryptocurrency articles","Mid-importance WikiProject Cryptocurrency articles", "WikiProject Cryptocurrency articles","C-Class mathematics articles","Mid-priority mathematics articles"],"wgPageViewLanguage":"en","wgPageContentLanguage":"en","wgPageContentModel":"wikitext","wgRelevantPageName":"Talk:Elliptic-curve_cryptography","wgRelevantArticleId":9973,"wgIsProbablyEditable":true,"wgRelevantPageIsProbablyEditable":true,"wgRestrictionEdit":[],"wgRestrictionMove":[],"wgNoticeProject":"wikipedia","wgCiteReferencePreviewsActive":false,"wgFlaggedRevsParams":{"tags":{"status":{"levels":1}}},"wgMediaViewerOnClick":true,"wgMediaViewerEnabledByDefault":true,"wgPopupsFlags":0,"wgVisualEditor":{"pageLanguageCode":"en","pageLanguageDir":"ltr","pageVariantFallbacks":"en"},"wgMFDisplayWikibaseDescriptions":{"search":true,"watchlist":true,"tagline":false,"nearby":true},"wgWMESchemaEditAttemptStepOversample":false,"wgWMEPageLength":40000,"wgEditSubmitButtonLabelPublish":true,"wgDiscussionToolsFeaturesEnabled":{"replytool":true,"newtopictool":true,"sourcemodetoolbar":true, "topicsubscription":false,"autotopicsub":false,"visualenhancements":false,"visualenhancements_reply":false,"visualenhancements_pageframe":false},"wgDiscussionToolsFallbackEditMode":"source","wgULSPosition":"interlanguage","wgULSisCompactLinksEnabled":false,"wgVector2022LanguageInHeader":true,"wgULSisLanguageSelectorEmpty":true,"wgCheckUserClientHintsHeadersJsApi":["brands","architecture","bitness","fullVersionList","mobile","model","platform","platformVersion"],"GEHomepageSuggestedEditsEnableTopics":true,"wgGETopicsMatchModeEnabled":false,"wgGEStructuredTaskRejectionReasonTextInputEnabled":false,"wgGELevelingUpEnabledForUser":false};RLSTATE={"ext.globalCssJs.user.styles":"ready","site.styles":"ready","user.styles":"ready","ext.globalCssJs.user":"ready","user":"ready","user.options":"loading","ext.cite.styles":"ready","ext.math.styles":"ready","ext.discussionTools.init.styles":"ready","oojs-ui-core.styles":"ready","oojs-ui.styles.indicators":"ready","mediawiki.widgets.styles":"ready", "oojs-ui-core.icons":"ready","skins.vector.search.codex.styles":"ready","skins.vector.styles":"ready","skins.vector.icons":"ready","jquery.makeCollapsible.styles":"ready","ext.wikimediamessages.styles":"ready","ext.visualEditor.desktopArticleTarget.noscript":"ready","ext.uls.interlanguage":"ready"};RLPAGEMODULES=["ext.cite.ux-enhancements","site","mediawiki.page.ready","jquery.makeCollapsible","mediawiki.toc","skins.vector.js","ext.centralNotice.geoIP","ext.centralNotice.startUp","ext.gadget.ReferenceTooltips","ext.gadget.switcher","ext.urlShortener.toolbar","ext.centralauth.centralautologin","mmv.bootstrap","ext.popups","ext.visualEditor.desktopArticleTarget.init","ext.visualEditor.targetLoader","ext.echo.centralauth","ext.discussionTools.init","ext.eventLogging","ext.wikimediaEvents","ext.navigationTiming","ext.uls.interface","ext.cx.eventlogging.campaigns","ext.checkUser.clientHints","ext.growthExperiments.SuggestedEditSession"];</script> <script>(RLQ=window.RLQ||[]).push(function(){mw.loader.impl(function(){return["user.options@12s5i",function($,jQuery,require,module){mw.user.tokens.set({"patrolToken":"+\\","watchToken":"+\\","csrfToken":"+\\"}); }];});});</script> <link rel="stylesheet" href="/w/load.php?lang=en&modules=ext.cite.styles%7Cext.discussionTools.init.styles%7Cext.math.styles%7Cext.uls.interlanguage%7Cext.visualEditor.desktopArticleTarget.noscript%7Cext.wikimediamessages.styles%7Cjquery.makeCollapsible.styles%7Cmediawiki.widgets.styles%7Coojs-ui-core.icons%2Cstyles%7Coojs-ui.styles.indicators%7Cskins.vector.icons%2Cstyles%7Cskins.vector.search.codex.styles&only=styles&skin=vector-2022"> <script async="" src="/w/load.php?lang=en&modules=startup&only=scripts&raw=1&skin=vector-2022"></script> <meta name="ResourceLoaderDynamicStyles" content=""> <link rel="stylesheet" href="/w/load.php?lang=en&modules=site.styles&only=styles&skin=vector-2022"> <meta name="generator" content="MediaWiki 1.44.0-wmf.18"> <meta name="referrer" content="origin"> <meta name="referrer" content="origin-when-cross-origin"> <meta name="robots" content="max-image-preview:standard"> <meta name="format-detection" content="telephone=no"> <meta name="viewport" content="width=1120"> <meta property="og:title" content="Talk:Elliptic-curve cryptography - Wikipedia"> <meta property="og:type" content="website"> <link rel="preconnect" href="//upload.wikimedia.org"> <link rel="alternate" media="only screen and (max-width: 640px)" href="//en.m.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography"> <link rel="alternate" type="application/x-wiki" title="Edit this page" href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit"> <link rel="apple-touch-icon" href="/static/apple-touch/wikipedia.png"> <link rel="icon" href="/static/favicon/wikipedia.ico"> <link rel="search" type="application/opensearchdescription+xml" href="/w/rest.php/v1/search" title="Wikipedia (en)"> <link rel="EditURI" type="application/rsd+xml" href="//en.wikipedia.org/w/api.php?action=rsd"> <link rel="canonical" href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography"> <link rel="license" href="https://creativecommons.org/licenses/by-sa/4.0/deed.en"> <link rel="alternate" type="application/atom+xml" title="Wikipedia Atom feed" href="/w/index.php?title=Special:RecentChanges&feed=atom"> <link rel="dns-prefetch" href="//meta.wikimedia.org" /> <link rel="dns-prefetch" href="login.wikimedia.org"> </head> <body class="ext-discussiontools-replytool-enabled ext-discussiontools-newtopictool-enabled ext-discussiontools-sourcemodetoolbar-enabled skin--responsive skin-vector skin-vector-search-vue mediawiki ltr sitedir-ltr mw-hide-empty-elt ns-1 ns-talk mw-editable page-Talk_Elliptic-curve_cryptography rootpage-Talk_Elliptic-curve_cryptography skin-vector-2022 action-view"><a class="mw-jump-link" href="#bodyContent">Jump to content</a> <div class="vector-header-container"> <header class="vector-header mw-header"> <div class="vector-header-start"> <nav class="vector-main-menu-landmark" aria-label="Site"> <div id="vector-main-menu-dropdown" class="vector-dropdown vector-main-menu-dropdown vector-button-flush-left vector-button-flush-right" title="Main menu" > <input type="checkbox" id="vector-main-menu-dropdown-checkbox" role="button" aria-haspopup="true" data-event-name="ui.dropdown-vector-main-menu-dropdown" class="vector-dropdown-checkbox " aria-label="Main menu" > <label id="vector-main-menu-dropdown-label" for="vector-main-menu-dropdown-checkbox" class="vector-dropdown-label cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only " aria-hidden="true" ><span class="vector-icon mw-ui-icon-menu mw-ui-icon-wikimedia-menu"></span> <span class="vector-dropdown-label-text">Main menu</span> </label> <div class="vector-dropdown-content"> <div id="vector-main-menu-unpinned-container" class="vector-unpinned-container"> <div id="vector-main-menu" class="vector-main-menu vector-pinnable-element"> <div class="vector-pinnable-header vector-main-menu-pinnable-header vector-pinnable-header-unpinned" data-feature-name="main-menu-pinned" data-pinnable-element-id="vector-main-menu" data-pinned-container-id="vector-main-menu-pinned-container" data-unpinned-container-id="vector-main-menu-unpinned-container" > <div class="vector-pinnable-header-label">Main menu</div> <button class="vector-pinnable-header-toggle-button vector-pinnable-header-pin-button" data-event-name="pinnable-header.vector-main-menu.pin">move to sidebar</button> <button class="vector-pinnable-header-toggle-button vector-pinnable-header-unpin-button" data-event-name="pinnable-header.vector-main-menu.unpin">hide</button> </div> <div id="p-navigation" class="vector-menu mw-portlet mw-portlet-navigation" > <div class="vector-menu-heading"> Navigation </div> <div class="vector-menu-content"> <ul class="vector-menu-content-list"> <li id="n-mainpage-description" class="mw-list-item"><a href="/wiki/Main_Page" title="Visit the main page [z]" accesskey="z"><span>Main page</span></a></li><li id="n-contents" class="mw-list-item"><a href="/wiki/Wikipedia:Contents" title="Guides to browsing Wikipedia"><span>Contents</span></a></li><li id="n-currentevents" class="mw-list-item"><a href="/wiki/Portal:Current_events" title="Articles related to current events"><span>Current events</span></a></li><li id="n-randompage" class="mw-list-item"><a href="/wiki/Special:Random" title="Visit a randomly selected article [x]" accesskey="x"><span>Random article</span></a></li><li id="n-aboutsite" class="mw-list-item"><a href="/wiki/Wikipedia:About" title="Learn about Wikipedia and how it works"><span>About Wikipedia</span></a></li><li id="n-contactpage" class="mw-list-item"><a href="//en.wikipedia.org/wiki/Wikipedia:Contact_us" title="How to contact Wikipedia"><span>Contact us</span></a></li> </ul> </div> </div> <div id="p-interaction" class="vector-menu mw-portlet mw-portlet-interaction" > <div class="vector-menu-heading"> Contribute </div> <div class="vector-menu-content"> <ul class="vector-menu-content-list"> <li id="n-help" class="mw-list-item"><a href="/wiki/Help:Contents" title="Guidance on how to use and edit Wikipedia"><span>Help</span></a></li><li id="n-introduction" class="mw-list-item"><a href="/wiki/Help:Introduction" title="Learn how to edit Wikipedia"><span>Learn to edit</span></a></li><li id="n-portal" class="mw-list-item"><a href="/wiki/Wikipedia:Community_portal" title="The hub for editors"><span>Community portal</span></a></li><li id="n-recentchanges" class="mw-list-item"><a href="/wiki/Special:RecentChanges" title="A list of recent changes to Wikipedia [r]" accesskey="r"><span>Recent changes</span></a></li><li id="n-upload" class="mw-list-item"><a href="/wiki/Wikipedia:File_upload_wizard" title="Add images or other media for use on Wikipedia"><span>Upload file</span></a></li><li id="n-specialpages" class="mw-list-item"><a href="/wiki/Special:SpecialPages"><span>Special pages</span></a></li> </ul> </div> </div> </div> </div> </div> </div> </nav> <a href="/wiki/Main_Page" class="mw-logo"> <img class="mw-logo-icon" src="/static/images/icons/wikipedia.png" alt="" aria-hidden="true" height="50" width="50"> <span class="mw-logo-container skin-invert"> <img class="mw-logo-wordmark" alt="Wikipedia" src="/static/images/mobile/copyright/wikipedia-wordmark-en.svg" style="width: 7.5em; height: 1.125em;"> <img class="mw-logo-tagline" alt="The Free Encyclopedia" src="/static/images/mobile/copyright/wikipedia-tagline-en.svg" width="117" height="13" style="width: 7.3125em; height: 0.8125em;"> </span> </a> </div> <div class="vector-header-end"> <div id="p-search" role="search" class="vector-search-box-vue vector-search-box-collapses vector-search-box-show-thumbnail vector-search-box-auto-expand-width vector-search-box"> <a href="/wiki/Special:Search" class="cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only search-toggle" title="Search Wikipedia [f]" accesskey="f"><span class="vector-icon mw-ui-icon-search mw-ui-icon-wikimedia-search"></span> <span>Search</span> </a> <div class="vector-typeahead-search-container"> <div class="cdx-typeahead-search cdx-typeahead-search--show-thumbnail cdx-typeahead-search--auto-expand-width"> <form action="/w/index.php" id="searchform" class="cdx-search-input cdx-search-input--has-end-button"> <div id="simpleSearch" class="cdx-search-input__input-wrapper" data-search-loc="header-moved"> <div class="cdx-text-input cdx-text-input--has-start-icon"> <input class="cdx-text-input__input" type="search" name="search" placeholder="Search Wikipedia" aria-label="Search Wikipedia" autocapitalize="sentences" title="Search Wikipedia [f]" accesskey="f" id="searchInput" > <span class="cdx-text-input__icon cdx-text-input__start-icon"></span> </div> <input type="hidden" name="title" value="Special:Search"> </div> <button class="cdx-button cdx-search-input__end-button">Search</button> </form> </div> </div> </div> <nav class="vector-user-links vector-user-links-wide" aria-label="Personal tools"> <div class="vector-user-links-main"> <div id="p-vector-user-menu-preferences" class="vector-menu mw-portlet emptyPortlet" > <div class="vector-menu-content"> <ul class="vector-menu-content-list"> </ul> </div> </div> <div id="p-vector-user-menu-userpage" class="vector-menu mw-portlet emptyPortlet" > <div class="vector-menu-content"> <ul class="vector-menu-content-list"> </ul> </div> </div> <nav class="vector-appearance-landmark" aria-label="Appearance"> <div id="vector-appearance-dropdown" class="vector-dropdown " title="Change the appearance of the page's font size, width, and color" > <input type="checkbox" id="vector-appearance-dropdown-checkbox" role="button" aria-haspopup="true" data-event-name="ui.dropdown-vector-appearance-dropdown" class="vector-dropdown-checkbox " aria-label="Appearance" > <label id="vector-appearance-dropdown-label" for="vector-appearance-dropdown-checkbox" class="vector-dropdown-label cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only " aria-hidden="true" ><span class="vector-icon mw-ui-icon-appearance mw-ui-icon-wikimedia-appearance"></span> <span class="vector-dropdown-label-text">Appearance</span> </label> <div class="vector-dropdown-content"> <div id="vector-appearance-unpinned-container" class="vector-unpinned-container"> </div> </div> </div> </nav> <div id="p-vector-user-menu-notifications" class="vector-menu mw-portlet emptyPortlet" > <div class="vector-menu-content"> <ul class="vector-menu-content-list"> </ul> </div> </div> <div id="p-vector-user-menu-overflow" class="vector-menu mw-portlet" > <div class="vector-menu-content"> <ul class="vector-menu-content-list"> <li id="pt-sitesupport-2" class="user-links-collapsible-item mw-list-item user-links-collapsible-item"><a data-mw="interface" href="https://donate.wikimedia.org/?wmf_source=donate&wmf_medium=sidebar&wmf_campaign=en.wikipedia.org&uselang=en" class=""><span>Donate</span></a> </li> <li id="pt-createaccount-2" class="user-links-collapsible-item mw-list-item user-links-collapsible-item"><a data-mw="interface" href="/w/index.php?title=Special:CreateAccount&returnto=Talk%3AElliptic-curve+cryptography" title="You are encouraged to create an account and log in; however, it is not mandatory" class=""><span>Create account</span></a> </li> <li id="pt-login-2" class="user-links-collapsible-item mw-list-item user-links-collapsible-item"><a data-mw="interface" href="/w/index.php?title=Special:UserLogin&returnto=Talk%3AElliptic-curve+cryptography" title="You're encouraged to log in; however, it's not mandatory. [o]" accesskey="o" class=""><span>Log in</span></a> </li> </ul> </div> </div> </div> <div id="vector-user-links-dropdown" class="vector-dropdown vector-user-menu vector-button-flush-right vector-user-menu-logged-out" title="Log in and more options" > <input type="checkbox" id="vector-user-links-dropdown-checkbox" role="button" aria-haspopup="true" data-event-name="ui.dropdown-vector-user-links-dropdown" class="vector-dropdown-checkbox " aria-label="Personal tools" > <label id="vector-user-links-dropdown-label" for="vector-user-links-dropdown-checkbox" class="vector-dropdown-label cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only " aria-hidden="true" ><span class="vector-icon mw-ui-icon-ellipsis mw-ui-icon-wikimedia-ellipsis"></span> <span class="vector-dropdown-label-text">Personal tools</span> </label> <div class="vector-dropdown-content"> <div id="p-personal" class="vector-menu mw-portlet mw-portlet-personal user-links-collapsible-item" title="User menu" > <div class="vector-menu-content"> <ul class="vector-menu-content-list"> <li id="pt-sitesupport" class="user-links-collapsible-item mw-list-item"><a href="https://donate.wikimedia.org/?wmf_source=donate&wmf_medium=sidebar&wmf_campaign=en.wikipedia.org&uselang=en"><span>Donate</span></a></li><li id="pt-createaccount" class="user-links-collapsible-item mw-list-item"><a href="/w/index.php?title=Special:CreateAccount&returnto=Talk%3AElliptic-curve+cryptography" title="You are encouraged to create an account and log in; however, it is not mandatory"><span class="vector-icon mw-ui-icon-userAdd mw-ui-icon-wikimedia-userAdd"></span> <span>Create account</span></a></li><li id="pt-login" class="user-links-collapsible-item mw-list-item"><a href="/w/index.php?title=Special:UserLogin&returnto=Talk%3AElliptic-curve+cryptography" title="You're encouraged to log in; however, it's not mandatory. [o]" accesskey="o"><span class="vector-icon mw-ui-icon-logIn mw-ui-icon-wikimedia-logIn"></span> <span>Log in</span></a></li> </ul> </div> </div> <div id="p-user-menu-anon-editor" class="vector-menu mw-portlet mw-portlet-user-menu-anon-editor" > <div class="vector-menu-heading"> Pages for logged out editors <a href="/wiki/Help:Introduction" aria-label="Learn more about editing"><span>learn more</span></a> </div> <div class="vector-menu-content"> <ul class="vector-menu-content-list"> <li id="pt-anoncontribs" class="mw-list-item"><a href="/wiki/Special:MyContributions" title="A list of edits made from this IP address [y]" accesskey="y"><span>Contributions</span></a></li><li id="pt-anontalk" class="mw-list-item"><a href="/wiki/Special:MyTalk" title="Discussion about edits from this IP address [n]" accesskey="n"><span>Talk</span></a></li> </ul> </div> </div> </div> </div> </nav> </div> </header> </div> <div class="mw-page-container"> <div class="mw-page-container-inner"> <div class="vector-sitenotice-container"> <div id="siteNotice"><!-- CentralNotice --></div> </div> <div class="vector-column-start"> <div class="vector-main-menu-container"> <div id="mw-navigation"> <nav id="mw-panel" class="vector-main-menu-landmark" aria-label="Site"> <div id="vector-main-menu-pinned-container" class="vector-pinned-container"> </div> </nav> </div> </div> <div class="vector-sticky-pinned-container"> <nav id="mw-panel-toc" aria-label="Contents" data-event-name="ui.sidebar-toc" class="mw-table-of-contents-container vector-toc-landmark"> <div id="vector-toc-pinned-container" class="vector-pinned-container"> <div id="vector-toc" class="vector-toc vector-pinnable-element"> <div class="vector-pinnable-header vector-toc-pinnable-header vector-pinnable-header-pinned" data-feature-name="toc-pinned" data-pinnable-element-id="vector-toc" > <h2 class="vector-pinnable-header-label">Contents</h2> <button class="vector-pinnable-header-toggle-button vector-pinnable-header-pin-button" data-event-name="pinnable-header.vector-toc.pin">move to sidebar</button> <button class="vector-pinnable-header-toggle-button vector-pinnable-header-unpin-button" data-event-name="pinnable-header.vector-toc.unpin">hide</button> </div> <ul class="vector-toc-contents" id="mw-panel-toc-list"> <li id="toc-mw-content-text" class="vector-toc-list-item vector-toc-level-1"> <a href="#" class="vector-toc-link"> <div class="vector-toc-text">(Top)</div> </a> </li> <li id="toc-Security_analysis_of_ECC" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Security_analysis_of_ECC"> <div class="vector-toc-text"> <span class="vector-toc-numb">1</span> <span>Security analysis of ECC</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-Security_analysis_of_ECC-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Cite_required" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Cite_required"> <div class="vector-toc-text"> <span class="vector-toc-numb">2</span> <span>Cite required</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-Cite_required-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Non-mathematical_description_needed" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Non-mathematical_description_needed"> <div class="vector-toc-text"> <span class="vector-toc-numb">3</span> <span>Non-mathematical description needed</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">6 comments</span> <ul id="toc-Non-mathematical_description_needed-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Elliptic_curves_over_ternary_fields" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Elliptic_curves_over_ternary_fields"> <div class="vector-toc-text"> <span class="vector-toc-numb">4</span> <span>Elliptic curves over ternary fields</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-Elliptic_curves_over_ternary_fields-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Pictures_and_intros" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Pictures_and_intros"> <div class="vector-toc-text"> <span class="vector-toc-numb">5</span> <span>Pictures and intros</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">5 comments</span> <ul id="toc-Pictures_and_intros-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Resolved_issues" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Resolved_issues"> <div class="vector-toc-text"> <span class="vector-toc-numb">6</span> <span>Resolved issues</span> </div> </a> <ul id="toc-Resolved_issues-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Factoring_link" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Factoring_link"> <div class="vector-toc-text"> <span class="vector-toc-numb">7</span> <span>Factoring link</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-Factoring_link-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Cryptographic_schemes" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Cryptographic_schemes"> <div class="vector-toc-text"> <span class="vector-toc-numb">8</span> <span>Cryptographic schemes</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">2 comments</span> <ul id="toc-Cryptographic_schemes-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-The_section_referencing_RSA_is_wrong." class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#The_section_referencing_RSA_is_wrong."> <div class="vector-toc-text"> <span class="vector-toc-numb">9</span> <span>The section referencing RSA is wrong.</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">16 comments</span> <ul id="toc-The_section_referencing_RSA_is_wrong.-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Curve25519" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Curve25519"> <div class="vector-toc-text"> <span class="vector-toc-numb">10</span> <span>Curve25519</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">2 comments</span> <ul id="toc-Curve25519-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-A_Set_forms_a_Group?" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#A_Set_forms_a_Group?"> <div class="vector-toc-text"> <span class="vector-toc-numb">11</span> <span>A Set forms a Group?</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">3 comments</span> <ul id="toc-A_Set_forms_a_Group?-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Design_choices_and_ECC" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Design_choices_and_ECC"> <div class="vector-toc-text"> <span class="vector-toc-numb">12</span> <span>Design choices and ECC</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-Design_choices_and_ECC-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Broken_link_in_reference" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Broken_link_in_reference"> <div class="vector-toc-text"> <span class="vector-toc-numb">13</span> <span>Broken link in reference</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-Broken_link_in_reference-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Generator" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Generator"> <div class="vector-toc-text"> <span class="vector-toc-numb">14</span> <span>Generator</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">2 comments</span> <ul id="toc-Generator-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-External_link_one" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#External_link_one"> <div class="vector-toc-text"> <span class="vector-toc-numb">15</span> <span>External link one</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">2 comments</span> <ul id="toc-External_link_one-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Quantum_Computing_Attack_Citations" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Quantum_Computing_Attack_Citations"> <div class="vector-toc-text"> <span class="vector-toc-numb">16</span> <span>Quantum Computing Attack Citations</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">4 comments</span> <ul id="toc-Quantum_Computing_Attack_Citations-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Possible_NSA_backdoor" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Possible_NSA_backdoor"> <div class="vector-toc-text"> <span class="vector-toc-numb">17</span> <span>Possible NSA backdoor</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">8 comments</span> <ul id="toc-Possible_NSA_backdoor-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Group_Order" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Group_Order"> <div class="vector-toc-text"> <span class="vector-toc-numb">18</span> <span>Group Order</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">2 comments</span> <ul id="toc-Group_Order-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-External_links_modified" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#External_links_modified"> <div class="vector-toc-text"> <span class="vector-toc-numb">19</span> <span>External links modified</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-External_links_modified-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-External_links_modified_2" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#External_links_modified_2"> <div class="vector-toc-text"> <span class="vector-toc-numb">20</span> <span>External links modified</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-External_links_modified_2-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-External_links_modified_3" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#External_links_modified_3"> <div class="vector-toc-text"> <span class="vector-toc-numb">21</span> <span>External links modified</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-External_links_modified_3-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Algorithm_needed" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Algorithm_needed"> <div class="vector-toc-text"> <span class="vector-toc-numb">22</span> <span>Algorithm needed</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-Algorithm_needed-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-The_first_paragraph_seems_self-contradictory" class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#The_first_paragraph_seems_self-contradictory"> <div class="vector-toc-text"> <span class="vector-toc-numb">23</span> <span>The first paragraph seems self-contradictory</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-The_first_paragraph_seems_self-contradictory-sublist" class="vector-toc-list"> </ul> </li> <li id="toc-Not_a_typo._521,_not_512." class="vector-toc-list-item vector-toc-level-1 vector-toc-list-item-expanded"> <a class="vector-toc-link" href="#Not_a_typo._521,_not_512."> <div class="vector-toc-text"> <span class="vector-toc-numb">24</span> <span>Not a typo. 521, not 512.</span> </div> </a> <span class="ext-discussiontools-init-sidebar-meta">1 comment</span> <ul id="toc-Not_a_typo._521,_not_512.-sublist" class="vector-toc-list"> </ul> </li> </ul> </div> </div> </nav> </div> </div> <div class="mw-content-container"> <main id="content" class="mw-body"> <header class="mw-body-header vector-page-titlebar"> <nav aria-label="Contents" class="vector-toc-landmark"> <div id="vector-page-titlebar-toc" class="vector-dropdown vector-page-titlebar-toc vector-button-flush-left" title="Table of Contents" > <input type="checkbox" id="vector-page-titlebar-toc-checkbox" role="button" aria-haspopup="true" data-event-name="ui.dropdown-vector-page-titlebar-toc" class="vector-dropdown-checkbox " aria-label="Toggle the table of contents" > <label id="vector-page-titlebar-toc-label" for="vector-page-titlebar-toc-checkbox" class="vector-dropdown-label cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only " aria-hidden="true" ><span class="vector-icon mw-ui-icon-listBullet mw-ui-icon-wikimedia-listBullet"></span> <span class="vector-dropdown-label-text">Toggle the table of contents</span> </label> <div class="vector-dropdown-content"> <div id="vector-page-titlebar-toc-unpinned-container" class="vector-unpinned-container"> </div> </div> </div> </nav> <h1 id="firstHeading" class="firstHeading mw-first-heading"><span class="mw-page-title-namespace">Talk</span><span class="mw-page-title-separator">:</span><span class="mw-page-title-main">Elliptic-curve cryptography</span></h1> <div id="p-lang-btn" class="vector-dropdown mw-portlet mw-portlet-lang mw-portlet-lang-icon-only" > <input type="checkbox" id="p-lang-btn-checkbox" role="button" aria-haspopup="true" data-event-name="ui.dropdown-p-lang-btn" class="vector-dropdown-checkbox mw-interlanguage-selector-empty" aria-label="This article exist only in this language. Add the article for other languages" > <label id="p-lang-btn-label" for="p-lang-btn-checkbox" class="vector-dropdown-label cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only mw-portlet-lang-heading-empty" aria-hidden="true" ><span class="vector-icon mw-ui-icon-language mw-ui-icon-wikimedia-language"></span> <span class="vector-dropdown-label-text">Add languages</span> </label> <div class="vector-dropdown-content"> <div class="mw-portlet-empty-language-selector-body"> Page contents not supported in other languages. </div> </div> </div> </header> <div class="vector-page-toolbar"> <div class="vector-page-toolbar-container"> <div id="left-navigation"> <nav aria-label="Namespaces"> <div id="p-associated-pages" class="vector-menu vector-menu-tabs mw-portlet mw-portlet-associated-pages" > <div class="vector-menu-content"> <ul class="vector-menu-content-list"> <li id="ca-nstab-main" class="vector-tab-noicon mw-list-item"><a href="/wiki/Elliptic-curve_cryptography" title="View the content page [c]" accesskey="c"><span>Article</span></a></li><li id="ca-talk" class="selected vector-tab-noicon mw-list-item"><a href="/wiki/Talk:Elliptic-curve_cryptography" rel="discussion" title="Discuss improvements to the content page [t]" accesskey="t"><span>Talk</span></a></li> </ul> </div> </div> <div id="vector-variants-dropdown" class="vector-dropdown emptyPortlet" > <input type="checkbox" id="vector-variants-dropdown-checkbox" role="button" aria-haspopup="true" data-event-name="ui.dropdown-vector-variants-dropdown" class="vector-dropdown-checkbox " aria-label="Change language variant" > <label id="vector-variants-dropdown-label" for="vector-variants-dropdown-checkbox" class="vector-dropdown-label cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet" aria-hidden="true" ><span class="vector-dropdown-label-text">English</span> </label> <div class="vector-dropdown-content"> <div id="p-variants" class="vector-menu mw-portlet mw-portlet-variants emptyPortlet" > <div class="vector-menu-content"> <ul class="vector-menu-content-list"> </ul> </div> </div> </div> </div> </nav> </div> <div id="right-navigation" class="vector-collapsible"> <nav aria-label="Views"> <div id="p-views" class="vector-menu vector-menu-tabs mw-portlet mw-portlet-views" > <div class="vector-menu-content"> <ul class="vector-menu-content-list"> <li id="ca-view" class="selected vector-tab-noicon mw-list-item"><a href="/wiki/Talk:Elliptic-curve_cryptography"><span>Read</span></a></li><li id="ca-edit" class="istalk vector-tab-noicon mw-list-item"><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit" title="Edit this page [e]" accesskey="e"><span>Edit</span></a></li><li id="ca-addsection" class="vector-tab-noicon mw-list-item"><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=new" title="Start a new section [+]" accesskey="+"><span>Add topic</span></a></li><li id="ca-history" class="vector-tab-noicon mw-list-item"><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=history" title="Past revisions of this page [h]" accesskey="h"><span>View history</span></a></li> </ul> </div> </div> </nav> <nav class="vector-page-tools-landmark" aria-label="Page tools"> <div id="vector-page-tools-dropdown" class="vector-dropdown vector-page-tools-dropdown" > <input type="checkbox" id="vector-page-tools-dropdown-checkbox" role="button" aria-haspopup="true" data-event-name="ui.dropdown-vector-page-tools-dropdown" class="vector-dropdown-checkbox " aria-label="Tools" > <label id="vector-page-tools-dropdown-label" for="vector-page-tools-dropdown-checkbox" class="vector-dropdown-label cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet" aria-hidden="true" ><span class="vector-dropdown-label-text">Tools</span> </label> <div class="vector-dropdown-content"> <div id="vector-page-tools-unpinned-container" class="vector-unpinned-container"> <div id="vector-page-tools" class="vector-page-tools vector-pinnable-element"> <div class="vector-pinnable-header vector-page-tools-pinnable-header vector-pinnable-header-unpinned" data-feature-name="page-tools-pinned" data-pinnable-element-id="vector-page-tools" data-pinned-container-id="vector-page-tools-pinned-container" data-unpinned-container-id="vector-page-tools-unpinned-container" > <div class="vector-pinnable-header-label">Tools</div> <button class="vector-pinnable-header-toggle-button vector-pinnable-header-pin-button" data-event-name="pinnable-header.vector-page-tools.pin">move to sidebar</button> <button class="vector-pinnable-header-toggle-button vector-pinnable-header-unpin-button" data-event-name="pinnable-header.vector-page-tools.unpin">hide</button> </div> <div id="p-cactions" class="vector-menu mw-portlet mw-portlet-cactions emptyPortlet vector-has-collapsible-items" title="More options" > <div class="vector-menu-heading"> Actions </div> <div class="vector-menu-content"> <ul class="vector-menu-content-list"> <li id="ca-more-view" class="selected vector-more-collapsible-item mw-list-item"><a href="/wiki/Talk:Elliptic-curve_cryptography"><span>Read</span></a></li><li id="ca-more-edit" class="istalk vector-more-collapsible-item mw-list-item"><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit" title="Edit this page [e]" accesskey="e"><span>Edit</span></a></li><li id="ca-more-addsection" class="vector-more-collapsible-item mw-list-item"><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=new"><span>Add topic</span></a></li><li id="ca-more-history" class="vector-more-collapsible-item mw-list-item"><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=history"><span>View history</span></a></li> </ul> </div> </div> <div id="p-tb" class="vector-menu mw-portlet mw-portlet-tb" > <div class="vector-menu-heading"> General </div> <div class="vector-menu-content"> <ul class="vector-menu-content-list"> <li id="t-whatlinkshere" class="mw-list-item"><a href="/wiki/Special:WhatLinksHere/Talk:Elliptic-curve_cryptography" title="List of all English Wikipedia pages containing links to this page [j]" accesskey="j"><span>What links here</span></a></li><li id="t-recentchangeslinked" class="mw-list-item"><a href="/wiki/Special:RecentChangesLinked/Talk:Elliptic-curve_cryptography" rel="nofollow" title="Recent changes in pages linked from this page [k]" accesskey="k"><span>Related changes</span></a></li><li id="t-upload" class="mw-list-item"><a href="//en.wikipedia.org/wiki/Wikipedia:File_Upload_Wizard" title="Upload files [u]" accesskey="u"><span>Upload file</span></a></li><li id="t-permalink" class="mw-list-item"><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&oldid=1243174542" title="Permanent link to this revision of this page"><span>Permanent link</span></a></li><li id="t-info" class="mw-list-item"><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=info" title="More information about this page"><span>Page information</span></a></li><li id="t-urlshortener" class="mw-list-item"><a href="/w/index.php?title=Special:UrlShortener&url=https%3A%2F%2Fen.wikipedia.org%2Fwiki%2FTalk%3AElliptic-curve_cryptography"><span>Get shortened URL</span></a></li><li id="t-urlshortener-qrcode" class="mw-list-item"><a href="/w/index.php?title=Special:QrCode&url=https%3A%2F%2Fen.wikipedia.org%2Fwiki%2FTalk%3AElliptic-curve_cryptography"><span>Download QR code</span></a></li> </ul> </div> </div> <div id="p-coll-print_export" class="vector-menu mw-portlet mw-portlet-coll-print_export" > <div class="vector-menu-heading"> Print/export </div> <div class="vector-menu-content"> <ul class="vector-menu-content-list"> <li id="coll-download-as-rl" class="mw-list-item"><a href="/w/index.php?title=Special:DownloadAsPdf&page=Talk%3AElliptic-curve_cryptography&action=show-download-screen" title="Download this page as a PDF file"><span>Download as PDF</span></a></li><li id="t-print" class="mw-list-item"><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&printable=yes" title="Printable version of this page [p]" accesskey="p"><span>Printable version</span></a></li> </ul> </div> </div> <div id="p-wikibase-otherprojects" class="vector-menu mw-portlet mw-portlet-wikibase-otherprojects emptyPortlet" > <div class="vector-menu-heading"> In other projects </div> <div class="vector-menu-content"> <ul class="vector-menu-content-list"> </ul> </div> </div> </div> </div> </div> </div> </nav> </div> </div> </div> <div class="vector-column-end"> <div class="vector-sticky-pinned-container"> <nav class="vector-page-tools-landmark" aria-label="Page tools"> <div id="vector-page-tools-pinned-container" class="vector-pinned-container"> </div> </nav> <nav class="vector-appearance-landmark" aria-label="Appearance"> <div id="vector-appearance-pinned-container" class="vector-pinned-container"> <div id="vector-appearance" class="vector-appearance vector-pinnable-element"> <div class="vector-pinnable-header vector-appearance-pinnable-header vector-pinnable-header-pinned" data-feature-name="appearance-pinned" data-pinnable-element-id="vector-appearance" data-pinned-container-id="vector-appearance-pinned-container" data-unpinned-container-id="vector-appearance-unpinned-container" > <div class="vector-pinnable-header-label">Appearance</div> <button class="vector-pinnable-header-toggle-button vector-pinnable-header-pin-button" data-event-name="pinnable-header.vector-appearance.pin">move to sidebar</button> <button class="vector-pinnable-header-toggle-button vector-pinnable-header-unpin-button" data-event-name="pinnable-header.vector-appearance.unpin">hide</button> </div> </div> </div> </nav> </div> </div> <div id="bodyContent" class="vector-body" aria-labelledby="firstHeading" data-mw-ve-target-container> <div class="vector-body-before-content"> <div class="mw-indicators"> </div> <div id="siteSub" class="noprint">From Wikipedia, the free encyclopedia</div> </div> <div id="contentSub"><div id="mw-content-subtitle"></div></div> <div id="mw-content-text" class="mw-body-content"><div class="mw-content-ltr mw-parser-output" lang="en" dir="ltr"><style data-mw-deduplicate="TemplateStyles:r1237879475">.mw-parser-output .tmbox{margin:4px 0;border-collapse:collapse;border:1px solid #c0c090;background-color:#f8eaba;box-sizing:border-box}.mw-parser-output .tmbox.mbox-small{font-size:88%;line-height:1.25em}.mw-parser-output .tmbox-speedy{border:2px solid #b32424;background-color:#fee7e6}.mw-parser-output .tmbox-delete{border:2px solid #b32424}.mw-parser-output .tmbox-content{border:2px solid #f28500}.mw-parser-output .tmbox-style{border:2px solid #fc3}.mw-parser-output .tmbox-move{border:2px solid #9932cc}.mw-parser-output .tmbox .mbox-text{border:none;padding:0.25em 0.9em;width:100%}.mw-parser-output .tmbox .mbox-image{border:none;padding:2px 0 2px 0.9em;text-align:center}.mw-parser-output .tmbox .mbox-imageright{border:none;padding:2px 0.9em 2px 0;text-align:center}.mw-parser-output .tmbox .mbox-empty-cell{border:none;padding:0;width:1px}.mw-parser-output .tmbox .mbox-invalid-type{text-align:center}@media(min-width:720px){.mw-parser-output .tmbox{margin:4px 10%}.mw-parser-output .tmbox.mbox-small{clear:right;float:right;margin:4px 0 4px 1em;width:238px}}@media screen{html.skin-theme-clientpref-night .mw-parser-output .tmbox{background-color:#2e2505}html.skin-theme-clientpref-night .mw-parser-output .tmbox-speedy{background-color:#310402}}@media screen and (prefers-color-scheme:dark){html.skin-theme-clientpref-os .mw-parser-output .tmbox{background-color:#2e2505}html.skin-theme-clientpref-os .mw-parser-output .tmbox-speedy{background-color:#310402}}body.skin--responsive .mw-parser-output table.tmbox img{max-width:none!important}</style><style data-mw-deduplicate="TemplateStyles:r1243927654">.mw-parser-output .banner-shell{border-collapse:separate;border-spacing:4px}.mw-parser-output .banner-shell-header{text-align:center;font-weight:bold}.mw-parser-output .banner-shell-inner{padding:2px 4px;background:#fffaef;color:inherit;border:1px dotted gray}@media screen{html.skin-theme-clientpref-night .mw-parser-output .banner-shell-inner{background:#2e2505}}@media screen and (prefers-color-scheme:dark){html.skin-theme-clientpref-os .mw-parser-output .banner-shell-inner{background:#2e2505}}.mw-parser-output .banner-shell .tmbox{margin:2px 0;width:100%}.mw-parser-output .banner-shell .tmbox.mbox-small{line-height:1.5em;font-size:100%}.mw-parser-output .banner-shell-inner .banner-shell-outside{display:none}@media(min-width:720px){.mw-parser-output .wpbs{width:80%}}.mw-parser-output .wpbs .assess{width:60px;text-align:center}.mw-parser-output .wpbs .banner-shell-header{border:none;padding:0.25em 0.9em 0.25em 0}.mw-parser-output .wpbs .wpb .wpb-header{display:table-row}.mw-parser-output .wpbs .wpb:not(.mw-collapsed) .wpb-header-icon a{display:none}</style><table role="presentation" class="tmbox tmbox-notice banner-shell wpbs mw-collapsible"><tbody><tr><td class="assess"><span class="noviewer" typeof="mw:File"><a href="/wiki/File:Symbol_c_class.svg" class="mw-file-description" title="C-Class article"><img alt="" src="//upload.wikimedia.org/wikipedia/en/thumb/e/e6/Symbol_c_class.svg/35px-Symbol_c_class.svg.png" decoding="async" width="35" height="36" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/en/thumb/e/e6/Symbol_c_class.svg/53px-Symbol_c_class.svg.png 1.5x, //upload.wikimedia.org/wikipedia/en/thumb/e/e6/Symbol_c_class.svg/70px-Symbol_c_class.svg.png 2x" data-file-width="180" data-file-height="185" /></a></span></td><td class="banner-shell-header" style="text-align:left;font-weight:normal">This article is rated <b>C-class</b> on Wikipedia's <a href="/wiki/Wikipedia:Content_assessment" title="Wikipedia:Content assessment">content assessment</a> scale.<br />It is of interest to the following <a href="/wiki/Wikipedia:WikiProject" title="Wikipedia:WikiProject">WikiProjects</a>:</td></tr><tr><td colspan="2" class="banner-shell-inner outercollapse"><link rel="mw-deduplicated-inline-style" href="mw-data:TemplateStyles:r1237879475" /><style data-mw-deduplicate="TemplateStyles:r1259570071">.mw-parser-output .wpb-header,.mw-parser-output .wpb-metadata,.mw-parser-output .wpb-iefix{display:none}.mw-parser-output .wpb-header-name{text-align:right;padding:0.3em 1em 0.3em 0.3em;width:50%;font-weight:bold}.mw-parser-output .wpb-header-assessment{text-align:left;width:50%;padding:0.3em}.mw-parser-output .wpb-header-combined{text-align:left;padding:0.3em 0.3em 0.3em 0;font-weight:bold}.mw-parser-output .wpb-header-bubbles{border-radius:.5em;padding:0 .3em;margin-left:0.5em;white-space:nowrap;font-weight:normal;color:black}.mw-parser-output .wpb-nested-task-force{font-weight:normal}.mw-parser-output .wpb-header-icon{width:50px;text-align:center}.mw-parser-output .wpb-category-box{background-color:#F5F5F5;border-width:1px;width:500px}.mw-parser-output .wpbs .wpb .wpb-main{background-color:#FFFAEF;padding:3px 0 3px 0.7em}.mw-parser-output .wpb .wpb-main{padding:3px 5px}.mw-parser-output .wpbs .wpb-header{background-color:#FFFAEF}.mw-parser-output .wpb-main>table{background-color:transparent;border:none;padding:0;width:100%;border-spacing:0}.mw-parser-output .wpb .wpb-image{padding:2px 0}.mw-parser-output .wpb-collapsed-head{text-align:left;padding:0.2em 2px 0.2em 0}.mw-parser-output .wpb-collapsed-notes{padding:0}.mw-parser-output .wpb-collapsed-notes>table{width:100%;background-color:transparent}.mw-parser-output .wpb .wpb-gutter{padding:2px 0 0 0}.mw-parser-output .wpbs .banner-shell-inner{background-color:#f8eaba;border:none}.mw-parser-output .wpb-table{table-layout:fixed}@media(min-width:720px){.mw-parser-output .wpb{min-width:80%}}.mw-parser-output .assess{font-weight:bold;text-align:center;white-space:nowrap;color:black}.mw-parser-output .import-top{background-color:#FFBFFF}.mw-parser-output .import-high{background-color:#FFCCFF}.mw-parser-output .import-mid{background-color:#FFD9FF}.mw-parser-output .import-low{background-color:#FFE7FF}.mw-parser-output .import-bottom{background-color:#FFEBFF}.mw-parser-output .import-na{background-color:#F5F5F5}.mw-parser-output .import-unknown{background-color:#DCDCDC}.mw-parser-output .class-fa,.mw-parser-output .class-fl,.mw-parser-output .class-fm{background-color:#BED3FF}.mw-parser-output .class-a,.mw-parser-output .class-al{background-color:#C0FFFF}.mw-parser-output .class-ga{background-color:#C0FFC0}.mw-parser-output .class-b,.mw-parser-output .class-bl{background-color:#DFFFBF}.mw-parser-output .class-c,.mw-parser-output .class-cl{background-color:#FFFFBE}.mw-parser-output .class-start{background-color:#FFDBBF}.mw-parser-output .class-stub,.mw-parser-output .class-sl{background-color:#FFC0C0}.mw-parser-output .class-list{background-color:#D2C0FF}.mw-parser-output .class-na{background-color:#F5F5F5}.mw-parser-output .class-category{background-color:#FFDB58}.mw-parser-output .class-disambig{background-color:#00FA9A}.mw-parser-output .class-draft{background-color:#E7B198}.mw-parser-output .class-file{background-color:#DDCCFF}.mw-parser-output .class-future{background-color:#B4BBFF}.mw-parser-output .class-portal{background-color:#DDB1BC}.mw-parser-output .class-project{background-color:#C0C090}.mw-parser-output .class-redirect{background-color:#C0C0C0}.mw-parser-output .class-sia{background-color:#E9DAFF}.mw-parser-output .class-user{background-color:#DDD06A}.mw-parser-output .class-template{background-color:#FBCEB1}.mw-parser-output .class-unassessed{background-color:#DCDCDC}.mw-parser-output .conflict{border:0.2em solid red}.mw-parser-output .inactive-wikiproject .wpb-header-bubbles{color:inherit}@media screen{html.skin-theme-clientpref-night .mw-parser-output .wpb-category-box{background-color:#0a0a0a}html.skin-theme-clientpref-night .mw-parser-output .wpbs .wpb .wpb-main,html.skin-theme-clientpref-night .mw-parser-output .wpbs .wpb-header{background-color:#302f2d}html.skin-theme-clientpref-night .mw-parser-output .wpbs .banner-shell-inner{background-color:#2e2505}}@media screen and (prefers-color-scheme:dark){html.skin-theme-clientpref-os .mw-parser-output .wpb-category-box{background-color:#0a0a0a}html.skin-theme-clientpref-os .mw-parser-output .wpbs .wpb .wpb-main,html.skin-theme-clientpref-os .mw-parser-output .wpbs .wpb-header{background-color:#302f2d}html.skin-theme-clientpref-os .mw-parser-output .wpbs .banner-shell-inner{background-color:#2e2505}}</style><table class="tmbox tmbox-notice mw-collapsible innercollapse wpb wpb-table"><tbody><tr class="wpb-header"><td class="wpb-header-icon"><span typeof="mw:File"><a href="/wiki/File:Crypto_key.svg" class="mw-file-description"><img alt="WikiProject icon" src="//upload.wikimedia.org/wikipedia/commons/thumb/6/65/Crypto_key.svg/35px-Crypto_key.svg.png" decoding="async" width="35" height="15" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/6/65/Crypto_key.svg/53px-Crypto_key.svg.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/6/65/Crypto_key.svg/70px-Crypto_key.svg.png 2x" data-file-width="651" data-file-height="271" /></a></span></td><td class="wpb-header-combined"><a href="/wiki/Wikipedia:WikiProject_Cryptography" title="Wikipedia:WikiProject Cryptography">Cryptography</a><span class="wpb-nested-task-force">: <a href="/wiki/Wikipedia:WikiProject_Computer_science" title="Wikipedia:WikiProject Computer science">Computer science</a></span> <span class="wpb-header-bubbles import-high">High‑importance</span></td></tr><tr><td class="mbox-text wpb-main" colspan="2"><table><tbody><tr><td class="mbox-image wpb-image"><span typeof="mw:File"><a href="/wiki/File:Crypto_key.svg" class="mw-file-description"><img alt="WikiProject icon" src="//upload.wikimedia.org/wikipedia/commons/thumb/6/65/Crypto_key.svg/64px-Crypto_key.svg.png" decoding="async" width="64" height="27" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/6/65/Crypto_key.svg/96px-Crypto_key.svg.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/6/65/Crypto_key.svg/128px-Crypto_key.svg.png 2x" data-file-width="651" data-file-height="271" /></a></span></td><td class="mbox-text">This article is within the scope of <b><a href="/wiki/Wikipedia:WikiProject_Cryptography" title="Wikipedia:WikiProject Cryptography">WikiProject Cryptography</a></b>, a collaborative effort to improve the coverage of <a href="/wiki/Cryptography" title="Cryptography">Cryptography</a> on Wikipedia. If you would like to participate, please visit the project page, where you can join <a href="/wiki/Wikipedia_talk:WikiProject_Cryptography" title="Wikipedia talk:WikiProject Cryptography">the discussion</a> and see a list of open tasks.<span class="metadata wpb-metadata"><span class="wpb-project">Cryptography</span><span class="wpb-project_link">Wikipedia:WikiProject Cryptography</span><span class="wpb-banner_name">Template:WikiProject Cryptography</span><span class="wpb-assessment_cat">Cryptography</span></span></td><td class="mbox-empty-cell"></td></tr><tr><td class="assess import-high"><a href="/wiki/Category:High-importance_Cryptography_articles" title="Category:High-importance Cryptography articles">High</a></td><td class="mbox-text" colspan="2">This article has been rated as <b>High-importance</b> on the <a href="/wiki/Wikipedia:Version_1.0_Editorial_Team/Release_Version_Criteria#Importance_of_topic" title="Wikipedia:Version 1.0 Editorial Team/Release Version Criteria">importance scale</a>.</td></tr><tr><td><figure class="mw-default-size mw-halign-center" typeof="mw:File"><a href="/wiki/File:LampFlowchart.svg" class="mw-file-description"><img alt="Taskforce icon" src="//upload.wikimedia.org/wikipedia/commons/thumb/9/91/LampFlowchart.svg/18px-LampFlowchart.svg.png" decoding="async" width="18" height="25" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/9/91/LampFlowchart.svg/28px-LampFlowchart.svg.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/9/91/LampFlowchart.svg/37px-LampFlowchart.svg.png 2x" data-file-width="324" data-file-height="442" /></a><figcaption></figcaption></figure></td><td class="mbox-text" colspan="2">This article is supported by <b><a href="/wiki/Wikipedia:WikiProject_Computer_science" title="Wikipedia:WikiProject Computer science">WikiProject Computer science</a></b> (assessed as <a href="/wiki/Category:High-importance_Computer_science_articles" title="Category:High-importance Computer science articles">High-importance</a>).</td></tr></tbody></table></td></tr></tbody></table> <link rel="mw-deduplicated-inline-style" href="mw-data:TemplateStyles:r1237879475" /><link rel="mw-deduplicated-inline-style" href="mw-data:TemplateStyles:r1259570071" /><table class="tmbox tmbox-notice mw-collapsible innercollapse wpb wpb-table"><tbody><tr class="wpb-header"><td class="wpb-header-icon"><span typeof="mw:File"><a href="/wiki/File:AIGA_Currency_Exchange_-_Euro.svg" class="mw-file-description"><img alt="WikiProject icon" src="//upload.wikimedia.org/wikipedia/commons/thumb/c/c8/AIGA_Currency_Exchange_-_Euro.svg/27px-AIGA_Currency_Exchange_-_Euro.svg.png" decoding="async" width="27" height="25" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/c/c8/AIGA_Currency_Exchange_-_Euro.svg/41px-AIGA_Currency_Exchange_-_Euro.svg.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/c/c8/AIGA_Currency_Exchange_-_Euro.svg/54px-AIGA_Currency_Exchange_-_Euro.svg.png 2x" data-file-width="446" data-file-height="416" /></a></span></td><td class="wpb-header-combined"><a href="/wiki/Wikipedia:WikiProject_Numismatics" title="Wikipedia:WikiProject Numismatics">Numismatics</a> <span class="wpb-header-bubbles import-low">Low‑importance</span></td></tr><tr><td class="mbox-text wpb-main" colspan="2"><table><tbody><tr><td class="mbox-image wpb-image"><span typeof="mw:File"><a href="/wiki/File:AIGA_Currency_Exchange_-_Euro.svg" class="mw-file-description"><img alt="WikiProject icon" src="//upload.wikimedia.org/wikipedia/commons/thumb/c/c8/AIGA_Currency_Exchange_-_Euro.svg/60px-AIGA_Currency_Exchange_-_Euro.svg.png" decoding="async" width="60" height="56" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/c/c8/AIGA_Currency_Exchange_-_Euro.svg/90px-AIGA_Currency_Exchange_-_Euro.svg.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/c/c8/AIGA_Currency_Exchange_-_Euro.svg/120px-AIGA_Currency_Exchange_-_Euro.svg.png 2x" data-file-width="446" data-file-height="416" /></a></span></td><td class="mbox-text"><style data-mw-deduplicate="TemplateStyles:r1266661725">.mw-parser-output .portalbox{padding:0;margin:0.5em 0;display:table;box-sizing:border-box;max-width:175px;list-style:none}.mw-parser-output .portalborder{border:1px solid var(--border-color-base,#a2a9b1);padding:0.1em;background:var(--background-color-neutral-subtle,#f8f9fa)}.mw-parser-output .portalbox-entry{display:table-row;font-size:85%;line-height:110%;height:1.9em;font-style:italic;font-weight:bold}.mw-parser-output .portalbox-image{display:table-cell;padding:0.2em;vertical-align:middle;text-align:center}.mw-parser-output .portalbox-link{display:table-cell;padding:0.2em 0.2em 0.2em 0.3em;vertical-align:middle}@media(min-width:720px){.mw-parser-output .portalleft{margin:0.5em 1em 0.5em 0}.mw-parser-output .portalright{clear:right;float:right;margin:0.5em 0 0.5em 1em}}</style><ul role="navigation" aria-label="Portals" class="noprint portalbox portalborder portalright"> <li class="portalbox-entry"><span class="portalbox-image"><span class="noviewer" typeof="mw:File"><span><img alt="" src="//upload.wikimedia.org/wikipedia/commons/thumb/4/46/United_States_penny%2C_obverse%2C_2002.png/28px-United_States_penny%2C_obverse%2C_2002.png" decoding="async" width="28" height="28" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/4/46/United_States_penny%2C_obverse%2C_2002.png/42px-United_States_penny%2C_obverse%2C_2002.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/4/46/United_States_penny%2C_obverse%2C_2002.png/56px-United_States_penny%2C_obverse%2C_2002.png 2x" data-file-width="903" data-file-height="901" /></span></span></span><span class="portalbox-link"><a href="/wiki/Portal:Numismatics" title="Portal:Numismatics">Numismatics portal</a></span></li></ul>This article is within the scope of <b><a href="/wiki/Wikipedia:WikiProject_Numismatics" title="Wikipedia:WikiProject Numismatics">WikiProject Numismatics</a></b>, a collaborative effort to improve the coverage of <a href="/wiki/Numismatics" title="Numismatics">numismatics</a> and <a href="/wiki/Currencies" class="mw-redirect" title="Currencies">currencies</a> on Wikipedia. If you would like to participate, please visit the project page, where you can join <a href="/wiki/Wikipedia_talk:WikiProject_Numismatics" title="Wikipedia talk:WikiProject Numismatics">the discussion</a> and see a list of open tasks.<span class="metadata wpb-metadata"><span class="wpb-project">Numismatics</span><span class="wpb-project_link">Wikipedia:WikiProject Numismatics</span><span class="wpb-banner_name">Template:WikiProject Numismatics</span><span class="wpb-assessment_cat">numismatic</span></span></td><td class="mbox-empty-cell"></td></tr><tr><td class="assess import-low"><a href="/wiki/Category:Low-importance_numismatic_articles" title="Category:Low-importance numismatic articles">Low</a></td><td class="mbox-text" colspan="2">This article has been rated as <b>Low-importance</b> on the <a href="/wiki/Wikipedia:WikiProject_Numismatics/Assessment#Importance_scale" title="Wikipedia:WikiProject Numismatics/Assessment">project's importance scale</a>.</td></tr></tbody></table></td></tr></tbody></table> <link rel="mw-deduplicated-inline-style" href="mw-data:TemplateStyles:r1237879475" /><link rel="mw-deduplicated-inline-style" href="mw-data:TemplateStyles:r1259570071" /><table class="tmbox tmbox-notice mw-collapsible innercollapse wpb wpb-table"><tbody><tr class="wpb-header"><td class="wpb-header-icon"><span typeof="mw:File"><a href="/wiki/File:Cryptocurrency_Gold.png" class="mw-file-description"><img alt="WikiProject icon" src="//upload.wikimedia.org/wikipedia/commons/thumb/9/97/Cryptocurrency_Gold.png/26px-Cryptocurrency_Gold.png" decoding="async" width="26" height="25" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/9/97/Cryptocurrency_Gold.png/40px-Cryptocurrency_Gold.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/9/97/Cryptocurrency_Gold.png/53px-Cryptocurrency_Gold.png 2x" data-file-width="633" data-file-height="600" /></a></span></td><td class="wpb-header-combined"><a href="/wiki/Wikipedia:WikiProject_Cryptocurrency" title="Wikipedia:WikiProject Cryptocurrency">Cryptocurrency</a> <span class="wpb-header-bubbles import-mid">Mid‑importance</span></td></tr><tr><td class="mbox-text wpb-main" colspan="2"><table><tbody><tr><td class="mbox-image wpb-image"><span typeof="mw:File"><a href="/wiki/File:Cryptocurrency_Gold.png" class="mw-file-description"><img alt="WikiProject icon" src="//upload.wikimedia.org/wikipedia/commons/thumb/9/97/Cryptocurrency_Gold.png/80px-Cryptocurrency_Gold.png" decoding="async" width="80" height="76" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/9/97/Cryptocurrency_Gold.png/120px-Cryptocurrency_Gold.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/9/97/Cryptocurrency_Gold.png/160px-Cryptocurrency_Gold.png 2x" data-file-width="633" data-file-height="600" /></a></span></td><td class="mbox-text">This article is within the scope of <b><a href="/wiki/Wikipedia:WikiProject_Cryptocurrency" title="Wikipedia:WikiProject Cryptocurrency">WikiProject Cryptocurrency</a></b>, a collaborative effort to improve the coverage of <a href="/wiki/Cryptocurrency" title="Cryptocurrency">cryptocurrency</a> on Wikipedia. If you would like to participate, please visit the project page, where you can join <a href="/wiki/Wikipedia_talk:WikiProject_Cryptocurrency" title="Wikipedia talk:WikiProject Cryptocurrency">the discussion</a> and see a list of open tasks.<span class="metadata wpb-metadata"><span class="wpb-project">Cryptocurrency</span><span class="wpb-project_link">Wikipedia:WikiProject Cryptocurrency</span><span class="wpb-banner_name">Template:WikiProject Cryptocurrency</span><span class="wpb-assessment_cat">WikiProject Cryptocurrency</span></span></td><td class="mbox-empty-cell"></td></tr><tr><td class="assess import-mid"><a href="/wiki/Category:Mid-importance_WikiProject_Cryptocurrency_articles" title="Category:Mid-importance WikiProject Cryptocurrency articles">Mid</a></td><td class="mbox-text" colspan="2">This article has been rated as <b>Mid-importance</b> on the <a href="/wiki/Wikipedia:Version_1.0_Editorial_Team/Release_Version_Criteria#Importance_of_topic" title="Wikipedia:Version 1.0 Editorial Team/Release Version Criteria">importance scale</a>.</td></tr></tbody></table></td></tr></tbody></table> <link rel="mw-deduplicated-inline-style" href="mw-data:TemplateStyles:r1237879475" /><link rel="mw-deduplicated-inline-style" href="mw-data:TemplateStyles:r1259570071" /><table class="tmbox tmbox-notice mw-collapsible innercollapse wpb wpb-table"><tbody><tr class="wpb-header"><td class="wpb-header-icon"><span typeof="mw:File"><a href="/wiki/File:Nuvola_apps_edu_mathematics-p.svg" class="mw-file-description"><img alt="WikiProject icon" src="//upload.wikimedia.org/wikipedia/commons/thumb/c/c2/Nuvola_apps_edu_mathematics-p.svg/25px-Nuvola_apps_edu_mathematics-p.svg.png" decoding="async" width="25" height="25" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/c/c2/Nuvola_apps_edu_mathematics-p.svg/38px-Nuvola_apps_edu_mathematics-p.svg.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/c/c2/Nuvola_apps_edu_mathematics-p.svg/50px-Nuvola_apps_edu_mathematics-p.svg.png 2x" data-file-width="128" data-file-height="128" /></a></span></td><td class="wpb-header-combined"><a href="/wiki/Wikipedia:WikiProject_Mathematics" title="Wikipedia:WikiProject Mathematics">Mathematics</a> <span class="wpb-header-bubbles import-mid">Mid‑priority</span></td></tr><tr><td class="mbox-text wpb-main" colspan="2"><table><tbody><tr><td class="mbox-image wpb-image"><span typeof="mw:File"><a href="/wiki/File:Nuvola_apps_edu_mathematics-p.svg" class="mw-file-description"><img alt="WikiProject icon" src="//upload.wikimedia.org/wikipedia/commons/thumb/c/c2/Nuvola_apps_edu_mathematics-p.svg/60px-Nuvola_apps_edu_mathematics-p.svg.png" decoding="async" width="60" height="60" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/c/c2/Nuvola_apps_edu_mathematics-p.svg/90px-Nuvola_apps_edu_mathematics-p.svg.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/c/c2/Nuvola_apps_edu_mathematics-p.svg/120px-Nuvola_apps_edu_mathematics-p.svg.png 2x" data-file-width="128" data-file-height="128" /></a></span></td><td class="mbox-text"><link rel="mw-deduplicated-inline-style" href="mw-data:TemplateStyles:r1266661725" /><ul role="navigation" aria-label="Portals" class="noprint portalbox portalborder portalright"> <li class="portalbox-entry"><span class="portalbox-image"><span class="noviewer" typeof="mw:File"><a href="/wiki/File:Nuvola_apps_edu_mathematics_blue-p.svg" class="mw-file-description"><img alt="icon" src="//upload.wikimedia.org/wikipedia/commons/thumb/3/3e/Nuvola_apps_edu_mathematics_blue-p.svg/28px-Nuvola_apps_edu_mathematics_blue-p.svg.png" decoding="async" width="28" height="28" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/3/3e/Nuvola_apps_edu_mathematics_blue-p.svg/42px-Nuvola_apps_edu_mathematics_blue-p.svg.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/3/3e/Nuvola_apps_edu_mathematics_blue-p.svg/56px-Nuvola_apps_edu_mathematics_blue-p.svg.png 2x" data-file-width="128" data-file-height="128" /></a></span></span><span class="portalbox-link"><a href="/wiki/Portal:Mathematics" title="Portal:Mathematics">Mathematics portal</a></span></li></ul>This article is within the scope of <b><a href="/wiki/Wikipedia:WikiProject_Mathematics" title="Wikipedia:WikiProject Mathematics">WikiProject Mathematics</a></b>, a collaborative effort to improve the coverage of <a href="/wiki/Mathematics" title="Mathematics">mathematics</a> on Wikipedia. If you would like to participate, please visit the project page, where you can join <a href="/wiki/Wikipedia_talk:WikiProject_Mathematics" title="Wikipedia talk:WikiProject Mathematics">the discussion</a> and see a list of open tasks.<span class="metadata wpb-metadata"><span class="wpb-project">Mathematics</span><span class="wpb-project_link">Wikipedia:WikiProject Mathematics</span><span class="wpb-banner_name">Template:WikiProject Mathematics</span><span class="wpb-assessment_cat">mathematics</span></span></td><td class="mbox-empty-cell"></td></tr><tr><td class="assess import-mid"><a href="/wiki/Category:Mid-priority_mathematics_articles" title="Category:Mid-priority mathematics articles">Mid</a></td><td class="mbox-text" colspan="2">This article has been rated as <b>Mid-priority</b> on the <a href="/wiki/Wikipedia:WikiProject_Mathematics/Wikipedia_1.0/Assessment#Priority_scale" class="mw-redirect" title="Wikipedia:WikiProject Mathematics/Wikipedia 1.0/Assessment">project's priority scale</a>.</td></tr></tbody></table></td></tr></tbody></table></td></tr></tbody></table> <p><br /> </p> <meta property="mw:PageProp/toc" /> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-153.46.253.213-20230804141800","type":"heading","level":0,"id":"h-Security_analysis_of_ECC-20230804141800","replies":["c-153.46.253.213-20230804141800-Security_analysis_of_ECC"],"text":"Security analysis of ECC","linkableTitle":"Security analysis of ECC"}--><h2 id="Security_analysis_of_ECC" data-mw-thread-id="h-Security_analysis_of_ECC-20230804141800"><span data-mw-comment-start="" id="h-Security_analysis_of_ECC-20230804141800"></span>Security analysis of ECC<span data-mw-comment-end="h-Security_analysis_of_ECC-20230804141800"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=1" title="Edit section: Security analysis of ECC"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-153.46.253.213-20230804141800","type":"heading","level":0,"id":"h-Security_analysis_of_ECC-20230804141800","replies":["c-153.46.253.213-20230804141800-Security_analysis_of_ECC"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-153.46.253.213-20230804141800-Security_analysis_of_ECC","timestamp":"20230804141800"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-153.46.253.213-20230804141800","type":"heading","level":0,"id":"h-Security_analysis_of_ECC-20230804141800","replies":["c-153.46.253.213-20230804141800-Security_analysis_of_ECC"],"text":"Security analysis of ECC","linkableTitle":"Security analysis of ECC"}--></div></div></div> <p><span data-mw-comment-start="" id="c-153.46.253.213-20230804141800-Security_analysis_of_ECC"></span>Interesting research and summary of security for different ECC: <a rel="nofollow" class="external free" href="https://safecurves.cr.yp.to/">https://safecurves.cr.yp.to/</a> <small class="autosigned">— Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/wiki/Special:Contributions/153.46.253.213" title="Special:Contributions/153.46.253.213">153.46.253.213</a> (<a href="/wiki/User_talk:153.46.253.213#top" title="User talk:153.46.253.213">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-153.46.253.213-20230804141800-Security_analysis_of_ECC" class="ext-discussiontools-init-timestamplink">14:18, 4 August 2023 (UTC)</a></small><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-153.46.253.213-20230804141800-Security_analysis_of_ECC"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"20230804141800","author":"153.46.253.213","type":"comment","level":1,"id":"c-153.46.253.213-20230804141800-Security_analysis_of_ECC","replies":[]}}--></span><span data-mw-comment-end="c-153.46.253.213-20230804141800-Security_analysis_of_ECC"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-Bdamm-2018-08-13T17:23:00.000Z","type":"heading","level":0,"id":"h-Cite_required-2018-08-13T17:23:00.000Z","replies":["c-Bdamm-2018-08-13T17:23:00.000Z-Cite_required"],"text":"Cite required","linkableTitle":"Cite required"}--><h2 id="Cite_required" data-mw-thread-id="h-Cite_required-2018-08-13T17:23:00.000Z"><span data-mw-comment-start="" id="h-Cite_required-2018-08-13T17:23:00.000Z"></span>Cite required<span data-mw-comment-end="h-Cite_required-2018-08-13T17:23:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=2" title="Edit section: Cite required"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-Bdamm-2018-08-13T17:23:00.000Z","type":"heading","level":0,"id":"h-Cite_required-2018-08-13T17:23:00.000Z","replies":["c-Bdamm-2018-08-13T17:23:00.000Z-Cite_required"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-Bdamm-2018-08-13T17:23:00.000Z-Cite_required","timestamp":"2018-08-13T17:23:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-Bdamm-2018-08-13T17:23:00.000Z","type":"heading","level":0,"id":"h-Cite_required-2018-08-13T17:23:00.000Z","replies":["c-Bdamm-2018-08-13T17:23:00.000Z-Cite_required"],"text":"Cite required","linkableTitle":"Cite required"}--></div></div></div> <p><span data-mw-comment-start="" id="c-Bdamm-2018-08-13T17:23:00.000Z-Cite_required"></span>From an earlier revision of the article: </p><p><i>For comparison, in 2001 some experts are suggesting these sizes for various public key systems for a security level appropriate to major business transactions that require secrecy:</i> </p><p>RSA (based on difficulty of factorisation) 1024 bits. </p><p>DSA (based on difficulty of discrete log for integers modulo a prime) 1024 bits. </p><p>ECC (based on difficulty of discrete log for discrete ECC system) 200 bits.<i></i> </p><p>I have removed this until it can be backed up firmly by a cite - instead, I have added external links to research papers in this field. -- <a href="/wiki/User:The_Anome" title="User:The Anome">The Anome</a> </p><p>I refer you to <a href="/wiki/Wikipedia:What_Wikipedia_is_not" title="Wikipedia:What Wikipedia is not">What Wikipedia is not</a>, item 9, and <a href="/wiki/Wikipedia:Most_common_Wikipedia_faux_pas" class="mw-redirect" title="Wikipedia:Most common Wikipedia faux pas">Most common Wikipedia faux pas</a> "Deleting useful content". You have deleted some useful inline information and replaced it with external links. Bad idea. If you actually know anything about this subject and don't like my numbers, then change them, they are fairly fuzzy and there is no recognized reliable method for generating them. But don't delete them. You didn't even give a reason for deleting them. It is NOT necessary to give a cite for every single factlet on the whole of Wikipedia, and lack of a cite is NOT a good reason to delete content. I'll be back in a few days to revert the edit and maybe add some more discussion. -- Geronimo Jones </p><p>See www.nist.gov/encryption for a list of recommended elliptic curves. ANSI X9 requires a minimum of 80 bits of *symmetric key equivalent* security. THis means use of SHA-1 with 160 bit output, use of RSA/DSA with 1024 bit keys and use of ECC with 160 bit keys. Don Johnson </p><p>The references of 256 bit ECC keys providing 128-bit security need citation. <a href="/wiki/User:Bdamm" title="User:Bdamm">Bdamm</a> (<a href="/w/index.php?title=User_talk:Bdamm&action=edit&redlink=1" class="new" title="User talk:Bdamm (page does not exist)">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Bdamm-2018-08-13T17:23:00.000Z-Cite_required" class="ext-discussiontools-init-timestamplink">17:23, 13 August 2018 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Bdamm-2018-08-13T17:23:00.000Z-Cite_required"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2018-08-13T17:23:00.000Z","author":"Bdamm","type":"comment","level":1,"id":"c-Bdamm-2018-08-13T17:23:00.000Z-Cite_required","replies":[]}}--></span><span data-mw-comment-end="c-Bdamm-2018-08-13T17:23:00.000Z-Cite_required"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-ArnoldReinhold-2006-04-16T12:10:00.000Z","type":"heading","level":0,"id":"h-Non-mathematical_description_needed-2006-04-16T12:10:00.000Z","replies":["c-ArnoldReinhold-2006-04-16T12:10:00.000Z-Non-mathematical_description_needed","c-74.93.34.241-2010-04-19T13:38:00.000Z-Non-mathematical_description_needed","c-72.177.115.161-2012-01-07T06:58:00.000Z-Non-mathematical_description_needed"],"text":"Non-mathematical description needed","linkableTitle":"Non-mathematical description needed"}--><h2 id="Non-mathematical_description_needed" data-mw-thread-id="h-Non-mathematical_description_needed-2006-04-16T12:10:00.000Z"><span data-mw-comment-start="" id="h-Non-mathematical_description_needed-2006-04-16T12:10:00.000Z"></span>Non-mathematical description needed<span data-mw-comment-end="h-Non-mathematical_description_needed-2006-04-16T12:10:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=3" title="Edit section: Non-mathematical description needed"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-ArnoldReinhold-2006-04-16T12:10:00.000Z","type":"heading","level":0,"id":"h-Non-mathematical_description_needed-2006-04-16T12:10:00.000Z","replies":["c-ArnoldReinhold-2006-04-16T12:10:00.000Z-Non-mathematical_description_needed","c-74.93.34.241-2010-04-19T13:38:00.000Z-Non-mathematical_description_needed","c-72.177.115.161-2012-01-07T06:58:00.000Z-Non-mathematical_description_needed"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-72.177.115.161-2012-01-07T06:58:00.000Z-Non-mathematical_description_needed","timestamp":"2012-01-07T06:58:00.000Z"}__--><!--__DTCOMMENTCOUNT__6__--><!--__DTAUTHORCOUNT__6__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-ArnoldReinhold-2006-04-16T12:10:00.000Z","type":"heading","level":0,"id":"h-Non-mathematical_description_needed-2006-04-16T12:10:00.000Z","replies":["c-ArnoldReinhold-2006-04-16T12:10:00.000Z-Non-mathematical_description_needed","c-74.93.34.241-2010-04-19T13:38:00.000Z-Non-mathematical_description_needed","c-72.177.115.161-2012-01-07T06:58:00.000Z-Non-mathematical_description_needed"],"text":"Non-mathematical description needed","linkableTitle":"Non-mathematical description needed"}--></div></div></div> <p><span data-mw-comment-start="" id="c-ArnoldReinhold-2006-04-16T12:10:00.000Z-Non-mathematical_description_needed"></span>I'm sure as ECC becomes more common, lay-people will be looking for information about it. A lot of these people (like me) are rather put off by seeing mathematical functions in the introductory section. Could someone write a lay description of ECC that doesn't use mathematical symbols? </p> <dl><dd>I tried to do this. --<a href="/wiki/User:ArnoldReinhold" title="User:ArnoldReinhold">agr</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-ArnoldReinhold-2006-04-16T12:10:00.000Z-Non-mathematical_description_needed" class="ext-discussiontools-init-timestamplink">12:10, 16 April 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-ArnoldReinhold-2006-04-16T12:10:00.000Z-Non-mathematical_description_needed"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-04-16T12:10:00.000Z","author":"ArnoldReinhold","type":"comment","level":1,"id":"c-ArnoldReinhold-2006-04-16T12:10:00.000Z-Non-mathematical_description_needed","replies":["c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z","c-82.43.137.103-2007-02-18T00:08:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z","c-93.97.48.217-2010-08-01T11:50:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z"],"displayName":"agr"}}--></span><span data-mw-comment-end="c-ArnoldReinhold-2006-04-16T12:10:00.000Z-Non-mathematical_description_needed"></span></dd></dl> <dl><dd><dl><dd><span data-mw-comment-start="" id="c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z"></span>A completely non-mathematical description of ECC is no more than that of PK crypto, so I doubt that it is actually possible to have it. <a href="/w/index.php?title=User:GBL&action=edit&redlink=1" class="new" title="User:GBL (page does not exist)">GBL</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z" class="ext-discussiontools-init-timestamplink">16:48, 20 April 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-04-20T16:48:00.000Z","author":"GBL","type":"comment","level":3,"id":"c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z","replies":[]}}--></span><span data-mw-comment-end="c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z"></span></dd></dl></dd></dl> <dl><dd><span data-mw-comment-start="" id="c-82.43.137.103-2007-02-18T00:08:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z"></span>I agree with the original poster - there needs to be an intermediate paragraph describing what's happening in simplified, analogous text before it launches into all the TeX stuff. <a href="/w/index.php?title=User:82.43.137.103&action=edit&redlink=1" class="new" title="User:82.43.137.103 (page does not exist)">82.43.137.103</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-82.43.137.103-2007-02-18T00:08:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z" class="ext-discussiontools-init-timestamplink">00:08, 18 February 2007 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-82.43.137.103-2007-02-18T00:08:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2007-02-18T00:08:00.000Z","author":"82.43.137.103","type":"comment","level":2,"id":"c-82.43.137.103-2007-02-18T00:08:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z","replies":[]}}--></span><span data-mw-comment-end="c-82.43.137.103-2007-02-18T00:08:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z"></span></dd></dl> <dl><dd><span data-mw-comment-start="" id="c-93.97.48.217-2010-08-01T11:50:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z"></span>I agree, this is endemic on wikipedia maths articles. <a href="/wiki/Special:Contributions/93.97.48.217" title="Special:Contributions/93.97.48.217">93.97.48.217</a> (<a href="/wiki/User_talk:93.97.48.217" title="User talk:93.97.48.217">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-93.97.48.217-2010-08-01T11:50:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z" class="ext-discussiontools-init-timestamplink">11:50, 1 August 2010 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-93.97.48.217-2010-08-01T11:50:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2010-08-01T11:50:00.000Z","author":"93.97.48.217","type":"comment","level":2,"id":"c-93.97.48.217-2010-08-01T11:50:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z","replies":[]}}--></span><span data-mw-comment-end="c-93.97.48.217-2010-08-01T11:50:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z"></span></dd></dl> <p><span data-mw-comment-start="" id="c-74.93.34.241-2010-04-19T13:38:00.000Z-Non-mathematical_description_needed"></span>I think a simplified mathematical explanation is desperately needed. It should be possible to make an example that uses numbers small enough to fit on an 8 digit calculator and is more easily understood. How is key generation done? How do I use the keys to en/de-crypt something. I understand math, but I'm not a genius or have a PhD in it. How about explaining this in a way that a common person can understand it? Note that they did a fairly good job explaining RSA on that page, but have dropped the ball here. <span style="font-size: smaller;" class="autosigned">—Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/wiki/Special:Contributions/74.93.34.241" title="Special:Contributions/74.93.34.241">74.93.34.241</a> (<a href="/w/index.php?title=User_talk:74.93.34.241&action=edit&redlink=1" class="new" title="User talk:74.93.34.241 (page does not exist)">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-74.93.34.241-2010-04-19T13:38:00.000Z-Non-mathematical_description_needed" class="ext-discussiontools-init-timestamplink">13:38, 19 April 2010 (UTC)</a></span><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-74.93.34.241-2010-04-19T13:38:00.000Z-Non-mathematical_description_needed"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2010-04-19T13:38:00.000Z","author":"74.93.34.241","type":"comment","level":1,"id":"c-74.93.34.241-2010-04-19T13:38:00.000Z-Non-mathematical_description_needed","replies":[]}}--></span><span data-mw-comment-end="c-74.93.34.241-2010-04-19T13:38:00.000Z-Non-mathematical_description_needed"></span> </p><p><span data-mw-comment-start="" id="c-72.177.115.161-2012-01-07T06:58:00.000Z-Non-mathematical_description_needed"></span>+1 <a href="/wiki/Special:Contributions/72.177.115.161" title="Special:Contributions/72.177.115.161">72.177.115.161</a> (<a href="/w/index.php?title=User_talk:72.177.115.161&action=edit&redlink=1" class="new" title="User talk:72.177.115.161 (page does not exist)">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-72.177.115.161-2012-01-07T06:58:00.000Z-Non-mathematical_description_needed" class="ext-discussiontools-init-timestamplink">06:58, 7 January 2012 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-72.177.115.161-2012-01-07T06:58:00.000Z-Non-mathematical_description_needed"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2012-01-07T06:58:00.000Z","author":"72.177.115.161","type":"comment","level":1,"id":"c-72.177.115.161-2012-01-07T06:58:00.000Z-Non-mathematical_description_needed","replies":[]}}--></span><span data-mw-comment-end="c-72.177.115.161-2012-01-07T06:58:00.000Z-Non-mathematical_description_needed"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-Augustojd-2006-04-02T14:25:00.000Z","type":"heading","level":0,"id":"h-Elliptic_curves_over_ternary_fields-2006-04-02T14:25:00.000Z","replies":["c-Augustojd-2006-04-02T14:25:00.000Z-Elliptic_curves_over_ternary_fields"],"text":"Elliptic curves over ternary fields","linkableTitle":"Elliptic curves over ternary fields"}--><h2 id="Elliptic_curves_over_ternary_fields" data-mw-thread-id="h-Elliptic_curves_over_ternary_fields-2006-04-02T14:25:00.000Z"><span data-mw-comment-start="" id="h-Elliptic_curves_over_ternary_fields-2006-04-02T14:25:00.000Z"></span>Elliptic curves over ternary fields<span data-mw-comment-end="h-Elliptic_curves_over_ternary_fields-2006-04-02T14:25:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=4" title="Edit section: Elliptic curves over ternary fields"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-Augustojd-2006-04-02T14:25:00.000Z","type":"heading","level":0,"id":"h-Elliptic_curves_over_ternary_fields-2006-04-02T14:25:00.000Z","replies":["c-Augustojd-2006-04-02T14:25:00.000Z-Elliptic_curves_over_ternary_fields"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-Augustojd-2006-04-02T14:25:00.000Z-Elliptic_curves_over_ternary_fields","timestamp":"2006-04-02T14:25:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-Augustojd-2006-04-02T14:25:00.000Z","type":"heading","level":0,"id":"h-Elliptic_curves_over_ternary_fields-2006-04-02T14:25:00.000Z","replies":["c-Augustojd-2006-04-02T14:25:00.000Z-Elliptic_curves_over_ternary_fields"],"text":"Elliptic curves over ternary fields","linkableTitle":"Elliptic curves over ternary fields"}--></div></div></div> <p><span data-mw-comment-start="" id="c-Augustojd-2006-04-02T14:25:00.000Z-Elliptic_curves_over_ternary_fields"></span>Hello. In the introduction, the article states that elliptic curves used in cryptography are defined over prime or binary fields. However, mainly due to pairing-based cryptography, there has been interest in elliptic curves over ternary fields as well. <a href="/wiki/User:Augustojd" title="User:Augustojd">augustojd</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Augustojd-2006-04-02T14:25:00.000Z-Elliptic_curves_over_ternary_fields" class="ext-discussiontools-init-timestamplink">14:25, 2 April 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Augustojd-2006-04-02T14:25:00.000Z-Elliptic_curves_over_ternary_fields"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-04-02T14:25:00.000Z","author":"Augustojd","type":"comment","level":1,"id":"c-Augustojd-2006-04-02T14:25:00.000Z-Elliptic_curves_over_ternary_fields","replies":[]}}--></span><span data-mw-comment-end="c-Augustojd-2006-04-02T14:25:00.000Z-Elliptic_curves_over_ternary_fields"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-GBL-2006-04-18T08:29:00.000Z","type":"heading","level":0,"id":"h-Pictures_and_intros-2006-04-18T08:29:00.000Z","replies":["c-GBL-2006-04-18T08:29:00.000Z-Pictures_and_intros"],"text":"Pictures and intros","linkableTitle":"Pictures and intros"}--><h2 id="Pictures_and_intros" data-mw-thread-id="h-Pictures_and_intros-2006-04-18T08:29:00.000Z"><span data-mw-comment-start="" id="h-Pictures_and_intros-2006-04-18T08:29:00.000Z"></span>Pictures and intros<span data-mw-comment-end="h-Pictures_and_intros-2006-04-18T08:29:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=5" title="Edit section: Pictures and intros"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-GBL-2006-04-18T08:29:00.000Z","type":"heading","level":0,"id":"h-Pictures_and_intros-2006-04-18T08:29:00.000Z","replies":["c-GBL-2006-04-18T08:29:00.000Z-Pictures_and_intros"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-ArnoldReinhold-2006-04-21T12:26:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z","timestamp":"2006-04-21T12:26:00.000Z"}__--><!--__DTCOMMENTCOUNT__5__--><!--__DTAUTHORCOUNT__3__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-GBL-2006-04-18T08:29:00.000Z","type":"heading","level":0,"id":"h-Pictures_and_intros-2006-04-18T08:29:00.000Z","replies":["c-GBL-2006-04-18T08:29:00.000Z-Pictures_and_intros"],"text":"Pictures and intros","linkableTitle":"Pictures and intros"}--></div></div></div> <p><span data-mw-comment-start="" id="c-GBL-2006-04-18T08:29:00.000Z-Pictures_and_intros"></span>Removed from todo: </p> <dl><dd>Please add a graph such as [a picture of EC over real numbers]</dd></dl> <p>If a picture does not communicate any information there is no reason to include it (there is already such a picture in EC—there is no need to copy it to ECC). BTW, this talk page needs major clean up <a href="/w/index.php?title=User:GBL&action=edit&redlink=1" class="new" title="User:GBL (page does not exist)">GBL</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-GBL-2006-04-18T08:29:00.000Z-Pictures_and_intros" class="ext-discussiontools-init-timestamplink">08:29, 18 April 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-GBL-2006-04-18T08:29:00.000Z-Pictures_and_intros"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-04-18T08:29:00.000Z","author":"GBL","type":"comment","level":1,"id":"c-GBL-2006-04-18T08:29:00.000Z-Pictures_and_intros","replies":["c-Matt_Crypto-2006-04-18T08:45:00.000Z-GBL-2006-04-18T08:29:00.000Z"]}}--></span><span data-mw-comment-end="c-GBL-2006-04-18T08:29:00.000Z-Pictures_and_intros"></span> </p> <dl><dd><span data-mw-comment-start="" id="c-Matt_Crypto-2006-04-18T08:45:00.000Z-GBL-2006-04-18T08:29:00.000Z"></span>I don't think we need the mathematic intro, either. A reader can read the EC article if they need it. <a href="/wiki/User:Matt_Crypto" title="User:Matt Crypto">— Matt <small>Crypto</small></a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Matt_Crypto-2006-04-18T08:45:00.000Z-GBL-2006-04-18T08:29:00.000Z" class="ext-discussiontools-init-timestamplink">08:45, 18 April 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Matt_Crypto-2006-04-18T08:45:00.000Z-GBL-2006-04-18T08:29:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-04-18T08:45:00.000Z","author":"Matt Crypto","type":"comment","level":2,"id":"c-Matt_Crypto-2006-04-18T08:45:00.000Z-GBL-2006-04-18T08:29:00.000Z","replies":["c-ArnoldReinhold-2006-04-18T09:18:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z","c-ArnoldReinhold-2006-04-21T12:26:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z"],"displayName":"\u2014 Matt Crypto"}}--></span><span data-mw-comment-end="c-Matt_Crypto-2006-04-18T08:45:00.000Z-GBL-2006-04-18T08:29:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-ArnoldReinhold-2006-04-18T09:18:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z"></span>There isn't much overlap between the math inro here and the EC article. ECC is a very specialized application of EC. Thanks for the cleanup here, btw. --<a href="/wiki/User:ArnoldReinhold" title="User:ArnoldReinhold">agr</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-ArnoldReinhold-2006-04-18T09:18:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z" class="ext-discussiontools-init-timestamplink">09:18, 18 April 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-ArnoldReinhold-2006-04-18T09:18:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-04-18T09:18:00.000Z","author":"ArnoldReinhold","type":"comment","level":3,"id":"c-ArnoldReinhold-2006-04-18T09:18:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z","replies":["c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-18T09:18:00.000Z"],"displayName":"agr"}}--></span><span data-mw-comment-end="c-ArnoldReinhold-2006-04-18T09:18:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-18T09:18:00.000Z"></span>IMO <i>Mathematical introduction</i> is needed since it is about EC over finite fields and it is not described elsewhere, OTOH <i>Introduction</i> is about PK crypto and general EC and thus can be safely removed here and merged into PK and EC. <a href="/w/index.php?title=User:GBL&action=edit&redlink=1" class="new" title="User:GBL (page does not exist)">GBL</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-18T09:18:00.000Z" class="ext-discussiontools-init-timestamplink">16:48, 20 April 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-18T09:18:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-04-20T16:48:00.000Z","author":"GBL","type":"comment","level":4,"id":"c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-18T09:18:00.000Z","replies":[]}}--></span><span data-mw-comment-end="c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-18T09:18:00.000Z"></span></dd></dl></dd> <dd><span data-mw-comment-start="" id="c-ArnoldReinhold-2006-04-21T12:26:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z"></span>Sorry, I don't agree. Even if a purely non-technical intro is not feasible, a less technical intro that summarizes the subject is totally appropriate and badly needed in this case.--<a href="/wiki/User:ArnoldReinhold" title="User:ArnoldReinhold">agr</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-ArnoldReinhold-2006-04-21T12:26:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z" class="ext-discussiontools-init-timestamplink">12:26, 21 April 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-ArnoldReinhold-2006-04-21T12:26:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-04-21T12:26:00.000Z","author":"ArnoldReinhold","type":"comment","level":3,"id":"c-ArnoldReinhold-2006-04-21T12:26:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z","replies":[],"displayName":"agr"}}--></span><span data-mw-comment-end="c-ArnoldReinhold-2006-04-21T12:26:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z"></span></dd></dl></dd></dl> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><h2 id="Resolved_issues" data-mw-thread-id="h-Resolved_issues"><span data-mw-comment-start="" id="h-Resolved_issues"></span>Resolved issues<span data-mw-comment-end="h-Resolved_issues"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=6" title="Edit section: Resolved issues"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-","type":"heading","level":0,"id":"h-Resolved_issues","replies":[]}}--></div> <ul><li>mathematical description of ECC was added</li> <li>109-bit EC provides only 55 bits of security</li> <li>a sentence <i>given integers j and k ...</i> was revised (it is not in the article any more)</li> <li>MQV</li> <li><i>Victor Miller</i> link was incorrect</li></ul> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-Lordspaz-2006-08-10T16:21:00.000Z","type":"heading","level":0,"id":"h-Factoring_link-2006-08-10T16:21:00.000Z","replies":["c-Lordspaz-2006-08-10T16:21:00.000Z-Factoring_link"],"text":"Factoring link","linkableTitle":"Factoring link"}--><h2 id="Factoring_link" data-mw-thread-id="h-Factoring_link-2006-08-10T16:21:00.000Z"><span data-mw-comment-start="" id="h-Factoring_link-2006-08-10T16:21:00.000Z"></span>Factoring link<span data-mw-comment-end="h-Factoring_link-2006-08-10T16:21:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=7" title="Edit section: Factoring link"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-Lordspaz-2006-08-10T16:21:00.000Z","type":"heading","level":0,"id":"h-Factoring_link-2006-08-10T16:21:00.000Z","replies":["c-Lordspaz-2006-08-10T16:21:00.000Z-Factoring_link"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-Lordspaz-2006-08-10T16:21:00.000Z-Factoring_link","timestamp":"2006-08-10T16:21:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-Lordspaz-2006-08-10T16:21:00.000Z","type":"heading","level":0,"id":"h-Factoring_link-2006-08-10T16:21:00.000Z","replies":["c-Lordspaz-2006-08-10T16:21:00.000Z-Factoring_link"],"text":"Factoring link","linkableTitle":"Factoring link"}--></div></div></div> <p><span data-mw-comment-start="" id="c-Lordspaz-2006-08-10T16:21:00.000Z-Factoring_link"></span>The link for factoring in "recent advances in factoring" points to the general factorization article; wouldn't the Integer factorization article be more appropriate in this case? <a href="/w/index.php?title=User:Lordspaz&action=edit&redlink=1" class="new" title="User:Lordspaz (page does not exist)">lordspaz</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Lordspaz-2006-08-10T16:21:00.000Z-Factoring_link" class="ext-discussiontools-init-timestamplink">16:21, 10 August 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Lordspaz-2006-08-10T16:21:00.000Z-Factoring_link"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-08-10T16:21:00.000Z","author":"Lordspaz","type":"comment","level":1,"id":"c-Lordspaz-2006-08-10T16:21:00.000Z-Factoring_link","replies":[]}}--></span><span data-mw-comment-end="c-Lordspaz-2006-08-10T16:21:00.000Z-Factoring_link"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-83.64.176.129-2006-08-27T11:13:00.000Z","type":"heading","level":0,"id":"h-Cryptographic_schemes-2006-08-27T11:13:00.000Z","replies":["c-83.64.176.129-2006-08-27T11:13:00.000Z-Cryptographic_schemes","c-BrunoX-2006-11-29T16:24:00.000Z-Cryptographic_schemes"],"text":"Cryptographic schemes","linkableTitle":"Cryptographic schemes"}--><h2 id="Cryptographic_schemes" data-mw-thread-id="h-Cryptographic_schemes-2006-08-27T11:13:00.000Z"><span data-mw-comment-start="" id="h-Cryptographic_schemes-2006-08-27T11:13:00.000Z"></span>Cryptographic schemes<span data-mw-comment-end="h-Cryptographic_schemes-2006-08-27T11:13:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=8" title="Edit section: Cryptographic schemes"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-83.64.176.129-2006-08-27T11:13:00.000Z","type":"heading","level":0,"id":"h-Cryptographic_schemes-2006-08-27T11:13:00.000Z","replies":["c-83.64.176.129-2006-08-27T11:13:00.000Z-Cryptographic_schemes","c-BrunoX-2006-11-29T16:24:00.000Z-Cryptographic_schemes"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-BrunoX-2006-11-29T16:24:00.000Z-Cryptographic_schemes","timestamp":"2006-11-29T16:24:00.000Z"}__--><!--__DTCOMMENTCOUNT__2__--><!--__DTAUTHORCOUNT__2__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-83.64.176.129-2006-08-27T11:13:00.000Z","type":"heading","level":0,"id":"h-Cryptographic_schemes-2006-08-27T11:13:00.000Z","replies":["c-83.64.176.129-2006-08-27T11:13:00.000Z-Cryptographic_schemes","c-BrunoX-2006-11-29T16:24:00.000Z-Cryptographic_schemes"],"text":"Cryptographic schemes","linkableTitle":"Cryptographic schemes"}--></div></div></div> <p><span data-mw-comment-start="" id="c-83.64.176.129-2006-08-27T11:13:00.000Z-Cryptographic_schemes"></span>Just to note... </p><p>> (Another factor is that ElGamal scheme is vulnerable to chosen-ciphertext attacks.) That's certainly not a real factor as e.g. plain RSA is vulnerable to chosen-ciphertext attacks as well. That's what the padding schemes are for (PCKS, OAEP, SAEP...). </p><p>> ...cryptography based on integer factorization (e.g., RSA) and finite-field cryptography (e.g., DSA). Well, both RSA and standard DSA are based on finite-field cryptography. </p><p><a href="/w/index.php?title=User:83.64.176.129&action=edit&redlink=1" class="new" title="User:83.64.176.129 (page does not exist)">83.64.176.129</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-83.64.176.129-2006-08-27T11:13:00.000Z-Cryptographic_schemes" class="ext-discussiontools-init-timestamplink">11:13, 27 August 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-83.64.176.129-2006-08-27T11:13:00.000Z-Cryptographic_schemes"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-08-27T11:13:00.000Z","author":"83.64.176.129","type":"comment","level":1,"id":"c-83.64.176.129-2006-08-27T11:13:00.000Z-Cryptographic_schemes","replies":[]}}--></span><span data-mw-comment-end="c-83.64.176.129-2006-08-27T11:13:00.000Z-Cryptographic_schemes"></span> </p><p><span data-mw-comment-start="" id="c-BrunoX-2006-11-29T16:24:00.000Z-Cryptographic_schemes"></span>==== Actually, RSA is based on Rings, not finite-field - <a href="/wiki/User:BrunoX" title="User:BrunoX">BrunoX</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-BrunoX-2006-11-29T16:24:00.000Z-Cryptographic_schemes" class="ext-discussiontools-init-timestamplink">16:24, 29 November 2006 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-BrunoX-2006-11-29T16:24:00.000Z-Cryptographic_schemes"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2006-11-29T16:24:00.000Z","author":"BrunoX","type":"comment","level":1,"id":"c-BrunoX-2006-11-29T16:24:00.000Z-Cryptographic_schemes","replies":[]}}--></span><span data-mw-comment-end="c-BrunoX-2006-11-29T16:24:00.000Z-Cryptographic_schemes"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-Grendelkhan-2008-02-27T21:09:00.000Z","type":"heading","level":0,"id":"h-The_section_referencing_RSA_is_wrong.-2008-02-27T21:09:00.000Z","replies":["c-Grendelkhan-2008-02-27T21:09:00.000Z-The_section_referencing_RSA_is_wrong.","c-DRLB-2008-02-27T21:34:00.000Z-The_section_referencing_RSA_is_wrong."],"text":"The section referencing RSA is wrong.","linkableTitle":"The section referencing RSA is wrong."}--><h2 id="The_section_referencing_RSA_is_wrong." data-mw-thread-id="h-The_section_referencing_RSA_is_wrong.-2008-02-27T21:09:00.000Z"><span data-mw-comment-start="" id="h-The_section_referencing_RSA_is_wrong.-2008-02-27T21:09:00.000Z"></span>The section referencing RSA is wrong.<span data-mw-comment-end="h-The_section_referencing_RSA_is_wrong.-2008-02-27T21:09:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=9" title="Edit section: The section referencing RSA is wrong."><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-Grendelkhan-2008-02-27T21:09:00.000Z","type":"heading","level":0,"id":"h-The_section_referencing_RSA_is_wrong.-2008-02-27T21:09:00.000Z","replies":["c-Grendelkhan-2008-02-27T21:09:00.000Z-The_section_referencing_RSA_is_wrong.","c-DRLB-2008-02-27T21:34:00.000Z-The_section_referencing_RSA_is_wrong."]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-ArnoldReinhold-2008-03-02T12:41:00.000Z-Brusegadi-2008-03-02T08:24:00.000Z","timestamp":"2008-03-02T12:41:00.000Z"}__--><!--__DTCOMMENTCOUNT__16__--><!--__DTAUTHORCOUNT__7__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-Grendelkhan-2008-02-27T21:09:00.000Z","type":"heading","level":0,"id":"h-The_section_referencing_RSA_is_wrong.-2008-02-27T21:09:00.000Z","replies":["c-Grendelkhan-2008-02-27T21:09:00.000Z-The_section_referencing_RSA_is_wrong.","c-DRLB-2008-02-27T21:34:00.000Z-The_section_referencing_RSA_is_wrong."],"text":"The section referencing RSA is wrong.","linkableTitle":"The section referencing RSA is wrong."}--></div></div></div> <p><span data-mw-comment-start="" id="c-Grendelkhan-2008-02-27T21:09:00.000Z-The_section_referencing_RSA_is_wrong."></span>The introductory states that "... a user picks two large random primes as his private key, and publishes their product as his public key. The difficulty of factoring ensures that no one else can derive the private key (i.e., the two prime factors) from the public one within a reasonable amount of time." This is wrong. Consider the article <a href="/wiki/RSA#Operation" class="mw-disambig" title="RSA">RSA</a>; in short, RSA generates two primes, <i>p</i> and <i>q</i>, but these are <i>not</i> the private key. The user then creates two exponents <i>d</i> and <i>e</i>, such that <i>de</i> = <i>k</i>(<i>p</i>-1)(<i>q</i>-1) for some <i>k</i>. (There are other restrictions on <i>e</i>, and I'm unsure if the two are really interchangeable.) Unless certain shortcuts are taken, both <i>p</i> and <i>q</i> are deleted at the end of the key generation process (though <i>n</i> = <i>pq</i> is retained). </p><p>In any case, this is a rather crucial distinction: in the system described in the article currently, the public key doesn't contain any information that the holder of the private key (assuming they somehow don't have the public key) doesn't already have, and so it doesn't make sense that it could be used to encrypt data that only they could decrypt. </p><p>I've rewritten it, but I'm not very happy with my layman's explanations of things. Future editors, please reference the actual operation of RSA before writing about it; there are a lot of misconceptions about cryptography out there. <a href="/wiki/User:Grendelkhan" title="User:Grendelkhan">grendel</a>|<a href="/wiki/User_talk:Grendelkhan" title="User talk:Grendelkhan">khan</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Grendelkhan-2008-02-27T21:09:00.000Z-The_section_referencing_RSA_is_wrong." class="ext-discussiontools-init-timestamplink">21:09, 27 February 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Grendelkhan-2008-02-27T21:09:00.000Z-The_section_referencing_RSA_is_wrong."><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-27T21:09:00.000Z","author":"Grendelkhan","type":"comment","level":1,"id":"c-Grendelkhan-2008-02-27T21:09:00.000Z-The_section_referencing_RSA_is_wrong.","replies":[],"displayName":"grendel"}}--></span><span data-mw-comment-end="c-Grendelkhan-2008-02-27T21:09:00.000Z-The_section_referencing_RSA_is_wrong."></span> </p><p><br /><span data-mw-comment-start="" id="c-DRLB-2008-02-27T21:34:00.000Z-The_section_referencing_RSA_is_wrong."></span> In <a href="/wiki/RSA" class="mw-disambig" title="RSA">RSA</a>, the private key has several equivalent forms, including (<i>n</i>,<i>d</i>) and (<i>p</i>,<i>q</i>). The previous version article was written using the latter in mind, which is fine. This emphasizes the dependence of RSA on <a href="/wiki/Integer_factorization" title="Integer factorization">integer factorization</a>, while ignoring other details (such as the <a href="/wiki/RSA_problem" title="RSA problem">RSA problem</a> being required to hard too). </p><p>With this new edit, the article now appears to suggest that <i>p</i>, one of the primes, is to be included in the public key. This would be wrong. Given <i>n</i> and <i>p</i>, one can recover <i>q</i>, and therefore determine the private key. From your talk page comment above, I gather that you meant <i>e</i> was the value to be made public, not <i>p</i>, but this was not made sufficiently clear in the article edit. </p><p>Either the current version should be clarified, or the article should be put back the way it was. <a href="/wiki/User:DRLB" title="User:DRLB">DRLB</a> (<a href="/wiki/User_talk:DRLB" title="User talk:DRLB">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-DRLB-2008-02-27T21:34:00.000Z-The_section_referencing_RSA_is_wrong." class="ext-discussiontools-init-timestamplink">21:34, 27 February 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-DRLB-2008-02-27T21:34:00.000Z-The_section_referencing_RSA_is_wrong."><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-27T21:34:00.000Z","author":"DRLB","type":"comment","level":1,"id":"c-DRLB-2008-02-27T21:34:00.000Z-The_section_referencing_RSA_is_wrong.","replies":["c-Grendelkhan-2008-02-28T21:30:00.000Z-DRLB-2008-02-27T21:34:00.000Z","c-Brusegadi-2008-02-28T05:07:00.000Z-DRLB-2008-02-27T21:34:00.000Z"]}}--></span><span data-mw-comment-end="c-DRLB-2008-02-27T21:34:00.000Z-The_section_referencing_RSA_is_wrong."></span> </p> <dl><dd><span data-mw-comment-start="" id="c-Grendelkhan-2008-02-28T21:30:00.000Z-DRLB-2008-02-27T21:34:00.000Z"></span>Yeah, I see how it looks like I'm talking about <i>p</i> and <i>q</i> rather than <i>d</i> and <i>e</i> (the user does create two primes, but they use those to create two <i>different</i> primes which are actually used in the keys--I don't stress that there are two sets of primes). Is it particularly vital to make this distinction? I'm not sure it adds anything to a layman's overview. <a href="/wiki/User:Grendelkhan" title="User:Grendelkhan">grendel</a>|<a href="/wiki/User_talk:Grendelkhan" title="User talk:Grendelkhan">khan</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Grendelkhan-2008-02-28T21:30:00.000Z-DRLB-2008-02-27T21:34:00.000Z" class="ext-discussiontools-init-timestamplink">21:30, 28 February 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Grendelkhan-2008-02-28T21:30:00.000Z-DRLB-2008-02-27T21:34:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-28T21:30:00.000Z","author":"Grendelkhan","type":"comment","level":2,"id":"c-Grendelkhan-2008-02-28T21:30:00.000Z-DRLB-2008-02-27T21:34:00.000Z","replies":["c-DRLB-2008-02-28T22:47:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z"],"displayName":"grendel"}}--></span><span data-mw-comment-end="c-Grendelkhan-2008-02-28T21:30:00.000Z-DRLB-2008-02-27T21:34:00.000Z"></span></dd></dl> <dl><dd><dl><dd><span data-mw-comment-start="" id="c-DRLB-2008-02-28T22:47:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z"></span>Well, neither <i>d</i> nor <i>e</i> need to be prime (although in practice <i>e</i> is often a fixed, but not a random prime), so by saying one prime is included in the public key and the other in the private key is strongly suggestive that <i>p</i> is made public, especially to those already familiar with RSA, as typically, the first thing one learns about RSA about is the secret primes <i>p</i> and <i>q</i>, whose product is difficult to factor. Maybe the article's reference to RSA should be simplified, just to say that is another public key cryptography scheme, which requires integer factorization to be hard, letting <a href="/wiki/RSA" class="mw-disambig" title="RSA">RSA</a> explain the details. <small>—Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/wiki/User:DRLB" title="User:DRLB">DRLB</a> (<a href="/wiki/User_talk:DRLB" title="User talk:DRLB">talk</a> • <a href="/wiki/Special:Contributions/DRLB" title="Special:Contributions/DRLB">contribs</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-DRLB-2008-02-28T22:47:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z" class="ext-discussiontools-init-timestamplink">22:47, 28 February 2008 (UTC)</a><span data-mw-comment-end="c-DRLB-2008-02-28T22:47:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z"></span></small><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-DRLB-2008-02-28T22:47:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-28T22:47:00.000Z","author":"DRLB","type":"comment","level":3,"id":"c-DRLB-2008-02-28T22:47:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z","replies":[]}}--></span></dd></dl></dd></dl> <dl><dd><span data-mw-comment-start="" id="c-Brusegadi-2008-02-28T05:07:00.000Z-DRLB-2008-02-27T21:34:00.000Z"></span>To keep it simple the private is (p,q) and the public N=p*q. e and d can be introduced in the RSA article along with the RSA problem. <a href="/wiki/User:Brusegadi" title="User:Brusegadi">Brusegadi</a> (<a href="/wiki/User_talk:Brusegadi" title="User talk:Brusegadi">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Brusegadi-2008-02-28T05:07:00.000Z-DRLB-2008-02-27T21:34:00.000Z" class="ext-discussiontools-init-timestamplink">05:07, 28 February 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Brusegadi-2008-02-28T05:07:00.000Z-DRLB-2008-02-27T21:34:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-28T05:07:00.000Z","author":"Brusegadi","type":"comment","level":2,"id":"c-Brusegadi-2008-02-28T05:07:00.000Z-DRLB-2008-02-27T21:34:00.000Z","replies":["c-Grendelkhan-2008-02-28T21:30:00.000Z-Brusegadi-2008-02-28T05:07:00.000Z"]}}--></span><span data-mw-comment-end="c-Brusegadi-2008-02-28T05:07:00.000Z-DRLB-2008-02-27T21:34:00.000Z"></span></dd></dl> <dl><dd><dl><dd><span data-mw-comment-start="" id="c-Grendelkhan-2008-02-28T21:30:00.000Z-Brusegadi-2008-02-28T05:07:00.000Z"></span>That's still not really accurate. The public key can't just include <i>n</i>; it also has to include <i>e</i>. The essential nature of RSA is that key operations are symmetric: what can be done with one key can only be undone with the other, and vice versa. The system as described is very much a one-way scheme, where the public key can be derived solely from the private key, but not vice versa, which is not how RSA works. The rewritten explanation describes it properly, as does somehow shoehorning in a mention of <i>e</i> in the original description. We shouldn't sacrifice accuracy while we're trying to make the explanation simpler. <a href="/wiki/User:Grendelkhan" title="User:Grendelkhan">grendel</a>|<a href="/wiki/User_talk:Grendelkhan" title="User talk:Grendelkhan">khan</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Grendelkhan-2008-02-28T21:30:00.000Z-Brusegadi-2008-02-28T05:07:00.000Z" class="ext-discussiontools-init-timestamplink">21:30, 28 February 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Grendelkhan-2008-02-28T21:30:00.000Z-Brusegadi-2008-02-28T05:07:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-28T21:30:00.000Z","author":"Grendelkhan","type":"comment","level":3,"id":"c-Grendelkhan-2008-02-28T21:30:00.000Z-Brusegadi-2008-02-28T05:07:00.000Z","replies":["c-ArnoldReinhold-2008-02-28T22:54:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z"],"displayName":"grendel"}}--></span><span data-mw-comment-end="c-Grendelkhan-2008-02-28T21:30:00.000Z-Brusegadi-2008-02-28T05:07:00.000Z"></span></dd></dl></dd></dl> <dl><dd><dl><dd><dl><dd><span data-mw-comment-start="" id="c-ArnoldReinhold-2008-02-28T22:54:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z"></span>While it's true that to use a public key, one has to also know the value of e, it is often not specified explicitly, rather all users of a given encryption product typically agree on a default value for e. For example, PGP uses 17 by default and will try other popular values. So e is a technicality that does not have to be discussed here. It has no confidentiality implications in usual practice. All the public key confidentiality is in <i>n.</i> --<a href="/wiki/User:ArnoldReinhold" title="User:ArnoldReinhold">agr</a> (<a href="/wiki/User_talk:ArnoldReinhold" title="User talk:ArnoldReinhold">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-ArnoldReinhold-2008-02-28T22:54:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z" class="ext-discussiontools-init-timestamplink">22:54, 28 February 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-ArnoldReinhold-2008-02-28T22:54:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-28T22:54:00.000Z","author":"ArnoldReinhold","type":"comment","level":4,"id":"c-ArnoldReinhold-2008-02-28T22:54:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z","replies":["c-Brusegadi-2008-02-29T03:02:00.000Z-ArnoldReinhold-2008-02-28T22:54:00.000Z"],"displayName":"agr"}}--></span><span data-mw-comment-end="c-ArnoldReinhold-2008-02-28T22:54:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-Brusegadi-2008-02-29T03:02:00.000Z-ArnoldReinhold-2008-02-28T22:54:00.000Z"></span>I agree. The most important technical aspect might be gcd(e,(p - 1)(q - 1))=1 , and the fact that if you choose e such that d is smaller than N^(1/4) then RSA becomes vulnerable (D. Boneh and G. Durfee. Cryptanalysis of RSA with private key d less than N^(.292) . IEEE Trans. Inform. Theory, 46(4):1339-1349, 2000. ) according to my textbook is good further reading... In summary, I see what grendel says, but I am not sure if adding the bit about e would make things too complicated. Is there a third opinion thats somewhere in between proposals? <a href="/wiki/User:Brusegadi" title="User:Brusegadi">Brusegadi</a> (<a href="/wiki/User_talk:Brusegadi" title="User talk:Brusegadi">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Brusegadi-2008-02-29T03:02:00.000Z-ArnoldReinhold-2008-02-28T22:54:00.000Z" class="ext-discussiontools-init-timestamplink">03:02, 29 February 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Brusegadi-2008-02-29T03:02:00.000Z-ArnoldReinhold-2008-02-28T22:54:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-29T03:02:00.000Z","author":"Brusegadi","type":"comment","level":5,"id":"c-Brusegadi-2008-02-29T03:02:00.000Z-ArnoldReinhold-2008-02-28T22:54:00.000Z","replies":["c-ArnoldReinhold-2008-02-29T04:19:00.000Z-Brusegadi-2008-02-29T03:02:00.000Z"]}}--></span><span data-mw-comment-end="c-Brusegadi-2008-02-29T03:02:00.000Z-ArnoldReinhold-2008-02-28T22:54:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-ArnoldReinhold-2008-02-29T04:19:00.000Z-Brusegadi-2008-02-29T03:02:00.000Z"></span>Right, but that level of detail isn't needed in this article. --<a href="/wiki/User:ArnoldReinhold" title="User:ArnoldReinhold">agr</a> (<a href="/wiki/User_talk:ArnoldReinhold" title="User talk:ArnoldReinhold">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-ArnoldReinhold-2008-02-29T04:19:00.000Z-Brusegadi-2008-02-29T03:02:00.000Z" class="ext-discussiontools-init-timestamplink">04:19, 29 February 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-ArnoldReinhold-2008-02-29T04:19:00.000Z-Brusegadi-2008-02-29T03:02:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-29T04:19:00.000Z","author":"ArnoldReinhold","type":"comment","level":6,"id":"c-ArnoldReinhold-2008-02-29T04:19:00.000Z-Brusegadi-2008-02-29T03:02:00.000Z","replies":["c-85.2.102.219-2008-02-29T06:35:00.000Z-ArnoldReinhold-2008-02-29T04:19:00.000Z"],"displayName":"agr"}}--></span><span data-mw-comment-end="c-ArnoldReinhold-2008-02-29T04:19:00.000Z-Brusegadi-2008-02-29T03:02:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-85.2.102.219-2008-02-29T06:35:00.000Z-ArnoldReinhold-2008-02-29T04:19:00.000Z"></span>Agreed. The article is about elliptic curve cryptography in general and not just one specific cryptosystem. Hence the introduction should compare the mathematical problems that are the basis of different classes of cryptosystems, i.e. integer factorisation vs. discrete logarithms over GF(p) vs. discrete logarithms over elliptic curves. Details about RSA do not belong here, simply because there are many other cryptosystmes that are also based on integer factorisation. <a href="/wiki/Special:Contributions/85.2.102.219" title="Special:Contributions/85.2.102.219">85.2.102.219</a> (<a href="/w/index.php?title=User_talk:85.2.102.219&action=edit&redlink=1" class="new" title="User talk:85.2.102.219 (page does not exist)">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-85.2.102.219-2008-02-29T06:35:00.000Z-ArnoldReinhold-2008-02-29T04:19:00.000Z" class="ext-discussiontools-init-timestamplink">06:35, 29 February 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-85.2.102.219-2008-02-29T06:35:00.000Z-ArnoldReinhold-2008-02-29T04:19:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-29T06:35:00.000Z","author":"85.2.102.219","type":"comment","level":7,"id":"c-85.2.102.219-2008-02-29T06:35:00.000Z-ArnoldReinhold-2008-02-29T04:19:00.000Z","replies":["c-Brusegadi-2008-02-29T06:44:00.000Z-85.2.102.219-2008-02-29T06:35:00.000Z"]}}--></span><span data-mw-comment-end="c-85.2.102.219-2008-02-29T06:35:00.000Z-ArnoldReinhold-2008-02-29T04:19:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-Brusegadi-2008-02-29T06:44:00.000Z-85.2.102.219-2008-02-29T06:35:00.000Z"></span>Yet, we still should be careful about equating solving RSA to integer factorization... It is not proven that the only way to crack RSA is by factorization... Am I being too picky? <a href="/wiki/User:Brusegadi" title="User:Brusegadi">Brusegadi</a> (<a href="/wiki/User_talk:Brusegadi" title="User talk:Brusegadi">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Brusegadi-2008-02-29T06:44:00.000Z-85.2.102.219-2008-02-29T06:35:00.000Z" class="ext-discussiontools-init-timestamplink">06:44, 29 February 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Brusegadi-2008-02-29T06:44:00.000Z-85.2.102.219-2008-02-29T06:35:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-02-29T06:44:00.000Z","author":"Brusegadi","type":"comment","level":8,"id":"c-Brusegadi-2008-02-29T06:44:00.000Z-85.2.102.219-2008-02-29T06:35:00.000Z","replies":["c-85.2.99.242-2008-03-01T19:12:00.000Z-Brusegadi-2008-02-29T06:44:00.000Z"]}}--></span><span data-mw-comment-end="c-Brusegadi-2008-02-29T06:44:00.000Z-85.2.102.219-2008-02-29T06:35:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-85.2.99.242-2008-03-01T19:12:00.000Z-Brusegadi-2008-02-29T06:44:00.000Z"></span>If you find such a mistake, fix it. Right now the article only claims that finding the private key is as difficult as factoring, which is correct. Still there is much room to improve the introduction. E.g., right now the introduction appears to claim that DSA is based on factorisation. <a href="/wiki/Special:Contributions/85.2.99.242" title="Special:Contributions/85.2.99.242">85.2.99.242</a> (<a href="/w/index.php?title=User_talk:85.2.99.242&action=edit&redlink=1" class="new" title="User talk:85.2.99.242 (page does not exist)">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-85.2.99.242-2008-03-01T19:12:00.000Z-Brusegadi-2008-02-29T06:44:00.000Z" class="ext-discussiontools-init-timestamplink">19:12, 1 March 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-85.2.99.242-2008-03-01T19:12:00.000Z-Brusegadi-2008-02-29T06:44:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-03-01T19:12:00.000Z","author":"85.2.99.242","type":"comment","level":9,"id":"c-85.2.99.242-2008-03-01T19:12:00.000Z-Brusegadi-2008-02-29T06:44:00.000Z","replies":["c-ArnoldReinhold-2008-03-02T02:21:00.000Z-85.2.99.242-2008-03-01T19:12:00.000Z"]}}--></span><span data-mw-comment-end="c-85.2.99.242-2008-03-01T19:12:00.000Z-Brusegadi-2008-02-29T06:44:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-ArnoldReinhold-2008-03-02T02:21:00.000Z-85.2.99.242-2008-03-01T19:12:00.000Z"></span>Brusegadi's point is that in fact we don't know if finding the private key is as difficult as factoring. That is the <a href="/wiki/RSA_problem" title="RSA problem">RSA problem</a>. I tried to clarify the article on this point, without getting too far off topic.--<a href="/wiki/User:ArnoldReinhold" title="User:ArnoldReinhold">agr</a> (<a href="/wiki/User_talk:ArnoldReinhold" title="User talk:ArnoldReinhold">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-ArnoldReinhold-2008-03-02T02:21:00.000Z-85.2.99.242-2008-03-01T19:12:00.000Z" class="ext-discussiontools-init-timestamplink">02:21, 2 March 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-ArnoldReinhold-2008-03-02T02:21:00.000Z-85.2.99.242-2008-03-01T19:12:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-03-02T02:21:00.000Z","author":"ArnoldReinhold","type":"comment","level":10,"id":"c-ArnoldReinhold-2008-03-02T02:21:00.000Z-85.2.99.242-2008-03-01T19:12:00.000Z","replies":["c-85.2.53.248-2008-03-02T07:58:00.000Z-ArnoldReinhold-2008-03-02T02:21:00.000Z"],"displayName":"agr"}}--></span><span data-mw-comment-end="c-ArnoldReinhold-2008-03-02T02:21:00.000Z-85.2.99.242-2008-03-01T19:12:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-85.2.53.248-2008-03-02T07:58:00.000Z-ArnoldReinhold-2008-03-02T02:21:00.000Z"></span>That is wrong. Rivest, Shamir and Adleman already showed in their original RSA paper that N can be factored in propabilistic polynimial time given N,e and d. But it is still unknown whether there exists another method for decrypting RSA that does not require the private key. <a href="/wiki/Special:Contributions/85.2.53.248" title="Special:Contributions/85.2.53.248">85.2.53.248</a> (<a href="/w/index.php?title=User_talk:85.2.53.248&action=edit&redlink=1" class="new" title="User talk:85.2.53.248 (page does not exist)">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-85.2.53.248-2008-03-02T07:58:00.000Z-ArnoldReinhold-2008-03-02T02:21:00.000Z" class="ext-discussiontools-init-timestamplink">07:58, 2 March 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-85.2.53.248-2008-03-02T07:58:00.000Z-ArnoldReinhold-2008-03-02T02:21:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-03-02T07:58:00.000Z","author":"85.2.53.248","type":"comment","level":11,"id":"c-85.2.53.248-2008-03-02T07:58:00.000Z-ArnoldReinhold-2008-03-02T02:21:00.000Z","replies":["c-Brusegadi-2008-03-02T08:24:00.000Z-85.2.53.248-2008-03-02T07:58:00.000Z"]}}--></span><span data-mw-comment-end="c-85.2.53.248-2008-03-02T07:58:00.000Z-ArnoldReinhold-2008-03-02T02:21:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-Brusegadi-2008-03-02T08:24:00.000Z-85.2.53.248-2008-03-02T07:58:00.000Z"></span>Yeah, the RSA problem is to decipher without the private key, with e, N and Cipher text. We know we can do it if we factor, the question is, can we do it without factoring? Thus, factoring is not equivalent to solving RSA although the first implies the second... (I am pretty sure of this, I was once penalized for saying they were equivalent...) <a href="/wiki/User:Brusegadi" title="User:Brusegadi">Brusegadi</a> (<a href="/wiki/User_talk:Brusegadi" title="User talk:Brusegadi">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Brusegadi-2008-03-02T08:24:00.000Z-85.2.53.248-2008-03-02T07:58:00.000Z" class="ext-discussiontools-init-timestamplink">08:24, 2 March 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Brusegadi-2008-03-02T08:24:00.000Z-85.2.53.248-2008-03-02T07:58:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-03-02T08:24:00.000Z","author":"Brusegadi","type":"comment","level":12,"id":"c-Brusegadi-2008-03-02T08:24:00.000Z-85.2.53.248-2008-03-02T07:58:00.000Z","replies":["c-ArnoldReinhold-2008-03-02T12:41:00.000Z-Brusegadi-2008-03-02T08:24:00.000Z"]}}--></span><span data-mw-comment-end="c-Brusegadi-2008-03-02T08:24:00.000Z-85.2.53.248-2008-03-02T07:58:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-ArnoldReinhold-2008-03-02T12:41:00.000Z-Brusegadi-2008-03-02T08:24:00.000Z"></span>Sorry, you're right, I missed that distinction, but I think the current article text still covers this point.--<a href="/wiki/User:ArnoldReinhold" title="User:ArnoldReinhold">agr</a> (<a href="/wiki/User_talk:ArnoldReinhold" title="User talk:ArnoldReinhold">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-ArnoldReinhold-2008-03-02T12:41:00.000Z-Brusegadi-2008-03-02T08:24:00.000Z" class="ext-discussiontools-init-timestamplink">12:41, 2 March 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-ArnoldReinhold-2008-03-02T12:41:00.000Z-Brusegadi-2008-03-02T08:24:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-03-02T12:41:00.000Z","author":"ArnoldReinhold","type":"comment","level":13,"id":"c-ArnoldReinhold-2008-03-02T12:41:00.000Z-Brusegadi-2008-03-02T08:24:00.000Z","replies":[],"displayName":"agr"}}--></span><span data-mw-comment-end="c-ArnoldReinhold-2008-03-02T12:41:00.000Z-Brusegadi-2008-03-02T08:24:00.000Z"></span></dd></dl></dd></dl></dd></dl></dd></dl></dd></dl></dd></dl></dd></dl></dd></dl></dd></dl></dd></dl></dd></dl></dd></dl> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-NoDepositNoReturn-2008-06-14T06:51:00.000Z","type":"heading","level":0,"id":"h-Curve25519-2008-06-14T06:51:00.000Z","replies":["c-NoDepositNoReturn-2008-06-14T06:51:00.000Z-Curve25519"],"text":"Curve25519","linkableTitle":"Curve25519"}--><h2 id="Curve25519" data-mw-thread-id="h-Curve25519-2008-06-14T06:51:00.000Z"><span data-mw-comment-start="" id="h-Curve25519-2008-06-14T06:51:00.000Z"></span>Curve25519<span data-mw-comment-end="h-Curve25519-2008-06-14T06:51:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=10" title="Edit section: Curve25519"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-NoDepositNoReturn-2008-06-14T06:51:00.000Z","type":"heading","level":0,"id":"h-Curve25519-2008-06-14T06:51:00.000Z","replies":["c-NoDepositNoReturn-2008-06-14T06:51:00.000Z-Curve25519"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-CesarB-2013-10-12T15:40:00.000Z-NoDepositNoReturn-2008-06-14T06:51:00.000Z","timestamp":"2013-10-12T15:40:00.000Z"}__--><!--__DTCOMMENTCOUNT__2__--><!--__DTAUTHORCOUNT__2__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-NoDepositNoReturn-2008-06-14T06:51:00.000Z","type":"heading","level":0,"id":"h-Curve25519-2008-06-14T06:51:00.000Z","replies":["c-NoDepositNoReturn-2008-06-14T06:51:00.000Z-Curve25519"],"text":"Curve25519","linkableTitle":"Curve25519"}--></div></div></div> <p><span data-mw-comment-start="" id="c-NoDepositNoReturn-2008-06-14T06:51:00.000Z-Curve25519"></span>I believe that <a href="/wiki/Curve25519" title="Curve25519">Curve25519</a> can be considered a cipher in its own right, and have added a page for it; however, I lack the time to write a full article for it, so I have redirected it here for the time being (rather than provide a meaningless stub.) I am not sure whether a Curve25519 section in the ECC page makes more sense than its own page; I suspect that it is best handled in a dedicated page. But at least now there's something for it. <a href="/wiki/User:NoDepositNoReturn" title="User:NoDepositNoReturn">NoDepositNoReturn</a> (<a href="/wiki/User_talk:NoDepositNoReturn" title="User talk:NoDepositNoReturn">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-NoDepositNoReturn-2008-06-14T06:51:00.000Z-Curve25519" class="ext-discussiontools-init-timestamplink">06:51, 14 June 2008 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-NoDepositNoReturn-2008-06-14T06:51:00.000Z-Curve25519"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2008-06-14T06:51:00.000Z","author":"NoDepositNoReturn","type":"comment","level":1,"id":"c-NoDepositNoReturn-2008-06-14T06:51:00.000Z-Curve25519","replies":["c-CesarB-2013-10-12T15:40:00.000Z-NoDepositNoReturn-2008-06-14T06:51:00.000Z"]}}--></span><span data-mw-comment-end="c-NoDepositNoReturn-2008-06-14T06:51:00.000Z-Curve25519"></span> </p> <dl><dd><span data-mw-comment-start="" id="c-CesarB-2013-10-12T15:40:00.000Z-NoDepositNoReturn-2008-06-14T06:51:00.000Z"></span>Looking at Bernstein's article "Curve25519: new Diffie-Hellman speed records", is see that the domain he use is y<sup>2</sup> = x<sup>3</sup> + <b>a</b>x<sup>2</sup> + x which is different from the one presented on this page. Being a non expert in elliptic curve cryptography I would like to know if this makes a significant difference ? If I take this page by the word, curve25519 is not performing elliptic cryptography. <small><span class="autosigned">— Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/w/index.php?title=User:134.158.16.169&action=edit&redlink=1" class="new" title="User:134.158.16.169 (page does not exist)">134.158.16.169</a> (<a href="/w/index.php?title=User_talk:134.158.16.169&action=edit&redlink=1" class="new" title="User talk:134.158.16.169 (page does not exist)">talk</a> • <a href="/wiki/Special:Contributions/134.158.16.169" title="Special:Contributions/134.158.16.169">contribs</a>) 15:36, 25 March 2010</span></small></dd></dl> <dl><dd><dl><dd>That is a <a href="/wiki/Montgomery_curve" title="Montgomery curve">Montgomery curve</a>. If you look at that article, there is a section on how to convert it into the Weierstrass form used by this article. --<a href="/wiki/User:CesarB" title="User:CesarB">cesarb</a> (<a href="/wiki/User_talk:CesarB" title="User talk:CesarB">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-CesarB-2013-10-12T15:40:00.000Z-NoDepositNoReturn-2008-06-14T06:51:00.000Z" class="ext-discussiontools-init-timestamplink">15:40, 12 October 2013 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-CesarB-2013-10-12T15:40:00.000Z-NoDepositNoReturn-2008-06-14T06:51:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2013-10-12T15:40:00.000Z","author":"CesarB","type":"comment","level":2,"id":"c-CesarB-2013-10-12T15:40:00.000Z-NoDepositNoReturn-2008-06-14T06:51:00.000Z","replies":[]}}--></span><span data-mw-comment-end="c-CesarB-2013-10-12T15:40:00.000Z-NoDepositNoReturn-2008-06-14T06:51:00.000Z"></span></dd></dl></dd></dl> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-Skippydo-2009-10-04T19:12:00.000Z","type":"heading","level":0,"id":"h-A_Set_forms_a_Group?-2009-10-04T19:12:00.000Z","replies":["c-Skippydo-2009-10-04T19:12:00.000Z-A_Set_forms_a_Group?"],"text":"A Set forms a Group?","linkableTitle":"A Set forms a Group?"}--><h2 id="A_Set_forms_a_Group?" data-mw-thread-id="h-A_Set_forms_a_Group?-2009-10-04T19:12:00.000Z"><span id="A_Set_forms_a_Group.3F"></span><span data-mw-comment-start="" id="h-A_Set_forms_a_Group?-2009-10-04T19:12:00.000Z"></span>A Set forms a Group?<span data-mw-comment-end="h-A_Set_forms_a_Group?-2009-10-04T19:12:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=11" title="Edit section: A Set forms a Group?"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-Skippydo-2009-10-04T19:12:00.000Z","type":"heading","level":0,"id":"h-A_Set_forms_a_Group?-2009-10-04T19:12:00.000Z","replies":["c-Skippydo-2009-10-04T19:12:00.000Z-A_Set_forms_a_Group?"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-Dimawik-2010-02-03T23:06:00.000Z-212.159.69.4-2010-02-03T20:15:00.000Z","timestamp":"2010-02-03T23:06:00.000Z"}__--><!--__DTCOMMENTCOUNT__3__--><!--__DTAUTHORCOUNT__3__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-Skippydo-2009-10-04T19:12:00.000Z","type":"heading","level":0,"id":"h-A_Set_forms_a_Group?-2009-10-04T19:12:00.000Z","replies":["c-Skippydo-2009-10-04T19:12:00.000Z-A_Set_forms_a_Group?"],"text":"A Set forms a Group?","linkableTitle":"A Set forms a Group?"}--></div></div></div> <p><span data-mw-comment-start="" id="c-Skippydo-2009-10-04T19:12:00.000Z-A_Set_forms_a_Group?"></span>It's unhelpful to say that a set of points (x,y) forms a group, without giving some hint as to what the group operator is. How do (x1,y1) and (x2,y2) combine to form (x3,y3), also a solution? And why is the "point at infinity" (which point at infinity?) the identity element for this combination? <a href="/w/index.php?title=User:213.123.226.227&action=edit&redlink=1" class="new" title="User:213.123.226.227 (page does not exist)">213.123.226.227</a> </p> <dl><dd>Good point, I've added a line about the source of the group. <a href="/wiki/User:Skippydo" title="User:Skippydo">Skippydo</a> (<a href="/wiki/User_talk:Skippydo" title="User talk:Skippydo">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Skippydo-2009-10-04T19:12:00.000Z-A_Set_forms_a_Group?" class="ext-discussiontools-init-timestamplink">19:12, 4 October 2009 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Skippydo-2009-10-04T19:12:00.000Z-A_Set_forms_a_Group?"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2009-10-04T19:12:00.000Z","author":"Skippydo","type":"comment","level":1,"id":"c-Skippydo-2009-10-04T19:12:00.000Z-A_Set_forms_a_Group?","replies":["c-212.159.69.4-2010-02-03T20:15:00.000Z-Skippydo-2009-10-04T19:12:00.000Z"]}}--></span><span data-mw-comment-end="c-Skippydo-2009-10-04T19:12:00.000Z-A_Set_forms_a_Group?"></span></dd></dl> <dl><dd><dl><dd><span data-mw-comment-start="" id="c-212.159.69.4-2010-02-03T20:15:00.000Z-Skippydo-2009-10-04T19:12:00.000Z"></span>Speaking as an informed layman (i.e. I have some post-secondary mathematics study under my belt, but am neither a mathematician nor a cryptographer), I have no idea what the sentence you added there means, and the articles linked in it are basically incomprehensible to me.</dd> <dd>What I do know is that the article still states that a set of points forms a group, which to my (admittedly basic) understanding of discrete mathematics simply cannot be true: a group consists of a set of items and an operator on those items.</dd> <dd>Can somebody, please, add a simple explanation of what the operator in question actually is, and hence correct the clearly incorrect statement that "this set [of points on a curve plus a point at infinity] forms an Abelian group, with the point at infinity as identity element." <a href="/wiki/Special:Contributions/212.159.69.4" title="Special:Contributions/212.159.69.4">212.159.69.4</a> (<a href="/wiki/User_talk:212.159.69.4" title="User talk:212.159.69.4">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-212.159.69.4-2010-02-03T20:15:00.000Z-Skippydo-2009-10-04T19:12:00.000Z" class="ext-discussiontools-init-timestamplink">20:15, 3 February 2010 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-212.159.69.4-2010-02-03T20:15:00.000Z-Skippydo-2009-10-04T19:12:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2010-02-03T20:15:00.000Z","author":"212.159.69.4","type":"comment","level":3,"id":"c-212.159.69.4-2010-02-03T20:15:00.000Z-Skippydo-2009-10-04T19:12:00.000Z","replies":["c-Dimawik-2010-02-03T23:06:00.000Z-212.159.69.4-2010-02-03T20:15:00.000Z"]}}--></span><span data-mw-comment-end="c-212.159.69.4-2010-02-03T20:15:00.000Z-Skippydo-2009-10-04T19:12:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-Dimawik-2010-02-03T23:06:00.000Z-212.159.69.4-2010-02-03T20:15:00.000Z"></span>I have added some wording referring to the group operation defined in the <a href="/wiki/Elliptic_curve" title="Elliptic curve">Elliptic curve</a> article. The explanations there are admittedly very <a href="/wiki/Bourbaki" class="mw-disambig" title="Bourbaki">Bourbakish</a> and therefore totally incomprehensible, but the theory shall not be replicated here - but instead fixed in the <a href="/wiki/Elliptic_curve" title="Elliptic curve">Elliptic curve</a> article, IMHO. <a href="/wiki/User:Dimawik" title="User:Dimawik">Dimawik</a> (<a href="/wiki/User_talk:Dimawik" title="User talk:Dimawik">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Dimawik-2010-02-03T23:06:00.000Z-212.159.69.4-2010-02-03T20:15:00.000Z" class="ext-discussiontools-init-timestamplink">23:06, 3 February 2010 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Dimawik-2010-02-03T23:06:00.000Z-212.159.69.4-2010-02-03T20:15:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2010-02-03T23:06:00.000Z","author":"Dimawik","type":"comment","level":4,"id":"c-Dimawik-2010-02-03T23:06:00.000Z-212.159.69.4-2010-02-03T20:15:00.000Z","replies":[]}}--></span><span data-mw-comment-end="c-Dimawik-2010-02-03T23:06:00.000Z-212.159.69.4-2010-02-03T20:15:00.000Z"></span></dd> <dd>The group operation is referred to as "addition".</dd></dl></dd></dl></dd></dl> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-192.118.32.80-2009-12-13T08:46:00.000Z","type":"heading","level":0,"id":"h-Design_choices_and_ECC-2009-12-13T08:46:00.000Z","replies":["c-192.118.32.80-2009-12-13T08:46:00.000Z-Design_choices_and_ECC"],"text":"Design choices and ECC","linkableTitle":"Design choices and ECC"}--><h2 id="Design_choices_and_ECC" data-mw-thread-id="h-Design_choices_and_ECC-2009-12-13T08:46:00.000Z"><span data-mw-comment-start="" id="h-Design_choices_and_ECC-2009-12-13T08:46:00.000Z"></span>Design choices and ECC<span data-mw-comment-end="h-Design_choices_and_ECC-2009-12-13T08:46:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=12" title="Edit section: Design choices and ECC"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-192.118.32.80-2009-12-13T08:46:00.000Z","type":"heading","level":0,"id":"h-Design_choices_and_ECC-2009-12-13T08:46:00.000Z","replies":["c-192.118.32.80-2009-12-13T08:46:00.000Z-Design_choices_and_ECC"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-192.118.32.80-2009-12-13T08:46:00.000Z-Design_choices_and_ECC","timestamp":"2009-12-13T08:46:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-192.118.32.80-2009-12-13T08:46:00.000Z","type":"heading","level":0,"id":"h-Design_choices_and_ECC-2009-12-13T08:46:00.000Z","replies":["c-192.118.32.80-2009-12-13T08:46:00.000Z-Design_choices_and_ECC"],"text":"Design choices and ECC","linkableTitle":"Design choices and ECC"}--></div></div></div> <p><span data-mw-comment-start="" id="c-192.118.32.80-2009-12-13T08:46:00.000Z-Design_choices_and_ECC"></span>This article is written almost entirely from the mathematical POV. There are other important POVs which should be reflected here. </p><p>For example, what guides a design choice to incorporate ECC vs. alternatives? How does ECC compare to alternatives such as RSA? e.g. the key length is shorter, computational complexity on each side of an exchange, etc. <span style="font-size: smaller;" class="autosigned">—Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/wiki/Special:Contributions/192.118.32.80" title="Special:Contributions/192.118.32.80">192.118.32.80</a> (<a href="/wiki/User_talk:192.118.32.80" title="User talk:192.118.32.80">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-192.118.32.80-2009-12-13T08:46:00.000Z-Design_choices_and_ECC" class="ext-discussiontools-init-timestamplink">08:46, 13 December 2009 (UTC)</a></span><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-192.118.32.80-2009-12-13T08:46:00.000Z-Design_choices_and_ECC"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2009-12-13T08:46:00.000Z","author":"192.118.32.80","type":"comment","level":1,"id":"c-192.118.32.80-2009-12-13T08:46:00.000Z-Design_choices_and_ECC","replies":[]}}--></span><span data-mw-comment-end="c-192.118.32.80-2009-12-13T08:46:00.000Z-Design_choices_and_ECC"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-84.157.71.42-2010-06-17T19:32:00.000Z","type":"heading","level":0,"id":"h-Broken_link_in_reference-2010-06-17T19:32:00.000Z","replies":["c-84.157.71.42-2010-06-17T19:32:00.000Z-Broken_link_in_reference"],"text":"Broken link in reference","linkableTitle":"Broken link in reference"}--><h2 id="Broken_link_in_reference" data-mw-thread-id="h-Broken_link_in_reference-2010-06-17T19:32:00.000Z"><span data-mw-comment-start="" id="h-Broken_link_in_reference-2010-06-17T19:32:00.000Z"></span>Broken link in reference<span data-mw-comment-end="h-Broken_link_in_reference-2010-06-17T19:32:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=13" title="Edit section: Broken link in reference"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-84.157.71.42-2010-06-17T19:32:00.000Z","type":"heading","level":0,"id":"h-Broken_link_in_reference-2010-06-17T19:32:00.000Z","replies":["c-84.157.71.42-2010-06-17T19:32:00.000Z-Broken_link_in_reference"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-84.157.71.42-2010-06-17T19:32:00.000Z-Broken_link_in_reference","timestamp":"2010-06-17T19:32:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-84.157.71.42-2010-06-17T19:32:00.000Z","type":"heading","level":0,"id":"h-Broken_link_in_reference-2010-06-17T19:32:00.000Z","replies":["c-84.157.71.42-2010-06-17T19:32:00.000Z-Broken_link_in_reference"],"text":"Broken link in reference","linkableTitle":"Broken link in reference"}--></div></div></div> <p><span data-mw-comment-start="" id="c-84.157.71.42-2010-06-17T19:32:00.000Z-Broken_link_in_reference"></span>The link hxxp://www.nsa.gov/ia/programs/suiteb_cryptography/index.shtml in reference 3 is broken. –<a href="/wiki/Special:Contributions/84.157.71.42" title="Special:Contributions/84.157.71.42">84.157.71.42</a> (<a href="/w/index.php?title=User_talk:84.157.71.42&action=edit&redlink=1" class="new" title="User talk:84.157.71.42 (page does not exist)">talk</a>) <span style="font-size: smaller;" class="autosigned">—Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">undated</a> comment added <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-84.157.71.42-2010-06-17T19:32:00.000Z-Broken_link_in_reference" class="ext-discussiontools-init-timestamplink">19:32, 17 June 2010 (UTC)</a>.</span><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-84.157.71.42-2010-06-17T19:32:00.000Z-Broken_link_in_reference"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2010-06-17T19:32:00.000Z","author":"84.157.71.42","type":"comment","level":1,"id":"c-84.157.71.42-2010-06-17T19:32:00.000Z-Broken_link_in_reference","replies":[]}}--></span><span data-mw-comment-end="c-84.157.71.42-2010-06-17T19:32:00.000Z-Broken_link_in_reference"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-Doctorhook-2010-12-22T20:24:00.000Z","type":"heading","level":0,"id":"h-Generator-2010-12-22T20:24:00.000Z","replies":["c-Doctorhook-2010-12-22T20:24:00.000Z-Generator"],"text":"Generator","linkableTitle":"Generator"}--><h2 id="Generator" data-mw-thread-id="h-Generator-2010-12-22T20:24:00.000Z"><span data-mw-comment-start="" id="h-Generator-2010-12-22T20:24:00.000Z"></span>Generator<span data-mw-comment-end="h-Generator-2010-12-22T20:24:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=14" title="Edit section: Generator"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-Doctorhook-2010-12-22T20:24:00.000Z","type":"heading","level":0,"id":"h-Generator-2010-12-22T20:24:00.000Z","replies":["c-Doctorhook-2010-12-22T20:24:00.000Z-Generator"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-Schlafly-2010-12-22T22:48:00.000Z-Doctorhook-2010-12-22T20:24:00.000Z","timestamp":"2010-12-22T22:48:00.000Z"}__--><!--__DTCOMMENTCOUNT__2__--><!--__DTAUTHORCOUNT__2__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-Doctorhook-2010-12-22T20:24:00.000Z","type":"heading","level":0,"id":"h-Generator-2010-12-22T20:24:00.000Z","replies":["c-Doctorhook-2010-12-22T20:24:00.000Z-Generator"],"text":"Generator","linkableTitle":"Generator"}--></div></div></div> <p><span data-mw-comment-start="" id="c-Doctorhook-2010-12-22T20:24:00.000Z-Generator"></span>The article currently states that "For cryptographic application the order of G [...] must be prime." This agrees with SP800-56A, but the only references I have seen that justify a restriction on the order only say that it should be large and divisible by a large prime. (E.g., <i>Algebraic aspects of cryptography</i>, Neal Koblitz.) Does anyone know of a reason why the order would <b>have</b> to be prime? <a href="/wiki/User:Doctorhook" title="User:Doctorhook">Doctorhook</a> (<a href="/wiki/User_talk:Doctorhook" title="User talk:Doctorhook">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Doctorhook-2010-12-22T20:24:00.000Z-Generator" class="ext-discussiontools-init-timestamplink">20:24, 22 December 2010 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Doctorhook-2010-12-22T20:24:00.000Z-Generator"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2010-12-22T20:24:00.000Z","author":"Doctorhook","type":"comment","level":1,"id":"c-Doctorhook-2010-12-22T20:24:00.000Z-Generator","replies":["c-Schlafly-2010-12-22T22:48:00.000Z-Doctorhook-2010-12-22T20:24:00.000Z"]}}--></span><span data-mw-comment-end="c-Doctorhook-2010-12-22T20:24:00.000Z-Generator"></span> </p> <dl><dd><span data-mw-comment-start="" id="c-Schlafly-2010-12-22T22:48:00.000Z-Doctorhook-2010-12-22T20:24:00.000Z"></span>You're right, it does not have to be prime. If it is not prime, then some complexity would be added to some protocols. For example, someone might choose a public key that has order 2, and that is useless. So it is customary to choose the generator to have prime order. <a href="/wiki/User:Schlafly" title="User:Schlafly">Roger</a> (<a href="/wiki/User_talk:Schlafly" title="User talk:Schlafly">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Schlafly-2010-12-22T22:48:00.000Z-Doctorhook-2010-12-22T20:24:00.000Z" class="ext-discussiontools-init-timestamplink">22:48, 22 December 2010 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Schlafly-2010-12-22T22:48:00.000Z-Doctorhook-2010-12-22T20:24:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2010-12-22T22:48:00.000Z","author":"Schlafly","type":"comment","level":2,"id":"c-Schlafly-2010-12-22T22:48:00.000Z-Doctorhook-2010-12-22T20:24:00.000Z","replies":[],"displayName":"Roger"}}--></span><span data-mw-comment-end="c-Schlafly-2010-12-22T22:48:00.000Z-Doctorhook-2010-12-22T20:24:00.000Z"></span></dd></dl> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-Gryllida-2011-11-21T03:07:00.000Z","type":"heading","level":0,"id":"h-External_link_one-2011-11-21T03:07:00.000Z","replies":["c-Gryllida-2011-11-21T03:07:00.000Z-External_link_one","c-BeEs1-2011-12-01T11:08:00.000Z-External_link_one"],"text":"External link one","linkableTitle":"External link one"}--><h2 id="External_link_one" data-mw-thread-id="h-External_link_one-2011-11-21T03:07:00.000Z"><span data-mw-comment-start="" id="h-External_link_one-2011-11-21T03:07:00.000Z"></span>External link one<span data-mw-comment-end="h-External_link_one-2011-11-21T03:07:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=15" title="Edit section: External link one"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-Gryllida-2011-11-21T03:07:00.000Z","type":"heading","level":0,"id":"h-External_link_one-2011-11-21T03:07:00.000Z","replies":["c-Gryllida-2011-11-21T03:07:00.000Z-External_link_one","c-BeEs1-2011-12-01T11:08:00.000Z-External_link_one"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-BeEs1-2011-12-01T11:08:00.000Z-External_link_one","timestamp":"2011-12-01T11:08:00.000Z"}__--><!--__DTCOMMENTCOUNT__2__--><!--__DTAUTHORCOUNT__2__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-Gryllida-2011-11-21T03:07:00.000Z","type":"heading","level":0,"id":"h-External_link_one-2011-11-21T03:07:00.000Z","replies":["c-Gryllida-2011-11-21T03:07:00.000Z-External_link_one","c-BeEs1-2011-12-01T11:08:00.000Z-External_link_one"],"text":"External link one","linkableTitle":"External link one"}--></div></div></div> <p><span data-mw-comment-start="" id="c-Gryllida-2011-11-21T03:07:00.000Z-External_link_one"></span>The first of the external links (<a rel="nofollow" class="external autonumber" href="http://sagenb.org/home/pub/1126/">[1]</a>) shows a page with no substantial or interactive content to me? <a href="/wiki/User:Gryllida" title="User:Gryllida">Gryllida</a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Gryllida-2011-11-21T03:07:00.000Z-External_link_one" class="ext-discussiontools-init-timestamplink">03:07, 21 November 2011 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Gryllida-2011-11-21T03:07:00.000Z-External_link_one"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2011-11-21T03:07:00.000Z","author":"Gryllida","type":"comment","level":1,"id":"c-Gryllida-2011-11-21T03:07:00.000Z-External_link_one","replies":[]}}--></span><span data-mw-comment-end="c-Gryllida-2011-11-21T03:07:00.000Z-External_link_one"></span> </p><p><span data-mw-comment-start="" id="c-BeEs1-2011-12-01T11:08:00.000Z-External_link_one"></span>This is a link to a SAGE notebook. SAGE is an important open-source computer-algebra system. A notebook has to be run in your browser to use it -- when you just open it, without starting it, you see the source-code which may appear to be similar to TeX. To start the notebook just click "Evaluate". [BE] <small><span class="autosigned">— Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/w/index.php?title=User:BeEs1&action=edit&redlink=1" class="new" title="User:BeEs1 (page does not exist)">BeEs1</a> (<a href="/wiki/User_talk:BeEs1" title="User talk:BeEs1">talk</a> • <a href="/wiki/Special:Contributions/BeEs1" title="Special:Contributions/BeEs1">contribs</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-BeEs1-2011-12-01T11:08:00.000Z-External_link_one" class="ext-discussiontools-init-timestamplink">11:08, 1 December 2011 (UTC)</a></span></small><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-BeEs1-2011-12-01T11:08:00.000Z-External_link_one"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2011-12-01T11:08:00.000Z","author":"BeEs1","type":"comment","level":1,"id":"c-BeEs1-2011-12-01T11:08:00.000Z-External_link_one","replies":[]}}--></span><span data-mw-comment-end="c-BeEs1-2011-12-01T11:08:00.000Z-External_link_one"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-GromXXVII-2012-06-25T22:20:00.000Z","type":"heading","level":0,"id":"h-Quantum_Computing_Attack_Citations-2012-06-25T22:20:00.000Z","replies":["c-GromXXVII-2012-06-25T22:20:00.000Z-Quantum_Computing_Attack_Citations","c-Tarcieri-2017-11-03T18:40:00.000Z-Quantum_Computing_Attack_Citations"],"text":"Quantum Computing Attack Citations","linkableTitle":"Quantum Computing Attack Citations"}--><h2 id="Quantum_Computing_Attack_Citations" data-mw-thread-id="h-Quantum_Computing_Attack_Citations-2012-06-25T22:20:00.000Z"><span data-mw-comment-start="" id="h-Quantum_Computing_Attack_Citations-2012-06-25T22:20:00.000Z"></span>Quantum Computing Attack Citations<span data-mw-comment-end="h-Quantum_Computing_Attack_Citations-2012-06-25T22:20:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=16" title="Edit section: Quantum Computing Attack Citations"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-GromXXVII-2012-06-25T22:20:00.000Z","type":"heading","level":0,"id":"h-Quantum_Computing_Attack_Citations-2012-06-25T22:20:00.000Z","replies":["c-GromXXVII-2012-06-25T22:20:00.000Z-Quantum_Computing_Attack_Citations","c-Tarcieri-2017-11-03T18:40:00.000Z-Quantum_Computing_Attack_Citations"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-Tarcieri-2017-11-03T18:40:00.000Z-Quantum_Computing_Attack_Citations","timestamp":"2017-11-03T18:40:00.000Z"}__--><!--__DTCOMMENTCOUNT__4__--><!--__DTAUTHORCOUNT__4__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-GromXXVII-2012-06-25T22:20:00.000Z","type":"heading","level":0,"id":"h-Quantum_Computing_Attack_Citations-2012-06-25T22:20:00.000Z","replies":["c-GromXXVII-2012-06-25T22:20:00.000Z-Quantum_Computing_Attack_Citations","c-Tarcieri-2017-11-03T18:40:00.000Z-Quantum_Computing_Attack_Citations"],"text":"Quantum Computing Attack Citations","linkableTitle":"Quantum Computing Attack Citations"}--></div></div></div> <p><span data-mw-comment-start="" id="c-GromXXVII-2012-06-25T22:20:00.000Z-Quantum_Computing_Attack_Citations"></span>In reference to quantum computing attacks the article reads "Elliptic curve cryptography is vulnerable to a modified Shor's algorithm for solving the discrete logarithm problem on elliptic curves" with two citations (<sup id="cite_ref-1" class="reference"><a href="#cite_note-1"><span class="cite-bracket">[</span>1<span class="cite-bracket">]</span></a></sup><sup id="cite_ref-2" class="reference"><a href="#cite_note-2"><span class="cite-bracket">[</span>2<span class="cite-bracket">]</span></a></sup>). Looking through both of these citations, they both work over fields of prime order, with the latter paper explicitly stating that they did not consider fields of prime power order. If ECC over fields of prime power order is truly vulnerable to QC attacks, I think there should be a citation that references this. <a href="/wiki/User:GromXXVII" title="User:GromXXVII">GromXXVII</a> (<a href="/wiki/User_talk:GromXXVII" title="User talk:GromXXVII">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-GromXXVII-2012-06-25T22:20:00.000Z-Quantum_Computing_Attack_Citations" class="ext-discussiontools-init-timestamplink">22:20, 25 June 2012 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-GromXXVII-2012-06-25T22:20:00.000Z-Quantum_Computing_Attack_Citations"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2012-06-25T22:20:00.000Z","author":"GromXXVII","type":"comment","level":1,"id":"c-GromXXVII-2012-06-25T22:20:00.000Z-Quantum_Computing_Attack_Citations","replies":["c-Skippydo-2012-06-26T01:58:00.000Z-GromXXVII-2012-06-25T22:20:00.000Z"]}}--></span><span data-mw-comment-end="c-GromXXVII-2012-06-25T22:20:00.000Z-Quantum_Computing_Attack_Citations"></span> </p> <dl><dd><span data-mw-comment-start="" id="c-Skippydo-2012-06-26T01:58:00.000Z-GromXXVII-2012-06-25T22:20:00.000Z"></span>Good catch! I updated the reference. If you need more information or have any other ideas, please share. <a href="/wiki/User:Skippydo" title="User:Skippydo">Skippydo</a> (<a href="/wiki/User_talk:Skippydo" title="User talk:Skippydo">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Skippydo-2012-06-26T01:58:00.000Z-GromXXVII-2012-06-25T22:20:00.000Z" class="ext-discussiontools-init-timestamplink">01:58, 26 June 2012 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Skippydo-2012-06-26T01:58:00.000Z-GromXXVII-2012-06-25T22:20:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2012-06-26T01:58:00.000Z","author":"Skippydo","type":"comment","level":2,"id":"c-Skippydo-2012-06-26T01:58:00.000Z-GromXXVII-2012-06-25T22:20:00.000Z","replies":["c-Jimw338-2016-09-12T04:18:00.000Z-Skippydo-2012-06-26T01:58:00.000Z"]}}--></span><span data-mw-comment-end="c-Skippydo-2012-06-26T01:58:00.000Z-GromXXVII-2012-06-25T22:20:00.000Z"></span> <dl><dd><span data-mw-comment-start="" id="c-Jimw338-2016-09-12T04:18:00.000Z-Skippydo-2012-06-26T01:58:00.000Z"></span>I found a copy of the first 1997 Eicher reference if it is still of use: (cite tag: <style data-mw-deduplicate="TemplateStyles:r1238218222">.mw-parser-output cite.citation{font-style:inherit;word-wrap:break-word}.mw-parser-output .citation q{quotes:"\"""\"""'""'"}.mw-parser-output .citation:target{background-color:rgba(0,127,255,0.133)}.mw-parser-output .id-lock-free.id-lock-free a{background:url("//upload.wikimedia.org/wikipedia/commons/6/65/Lock-green.svg")right 0.1em center/9px no-repeat}.mw-parser-output .id-lock-limited.id-lock-limited a,.mw-parser-output .id-lock-registration.id-lock-registration a{background:url("//upload.wikimedia.org/wikipedia/commons/d/d6/Lock-gray-alt-2.svg")right 0.1em center/9px no-repeat}.mw-parser-output .id-lock-subscription.id-lock-subscription a{background:url("//upload.wikimedia.org/wikipedia/commons/a/aa/Lock-red-alt-2.svg")right 0.1em center/9px no-repeat}.mw-parser-output .cs1-ws-icon a{background:url("//upload.wikimedia.org/wikipedia/commons/4/4c/Wikisource-logo.svg")right 0.1em center/12px no-repeat}body:not(.skin-timeless):not(.skin-minerva) .mw-parser-output .id-lock-free a,body:not(.skin-timeless):not(.skin-minerva) .mw-parser-output .id-lock-limited a,body:not(.skin-timeless):not(.skin-minerva) .mw-parser-output .id-lock-registration a,body:not(.skin-timeless):not(.skin-minerva) .mw-parser-output .id-lock-subscription a,body:not(.skin-timeless):not(.skin-minerva) .mw-parser-output .cs1-ws-icon a{background-size:contain;padding:0 1em 0 0}.mw-parser-output .cs1-code{color:inherit;background:inherit;border:none;padding:inherit}.mw-parser-output .cs1-hidden-error{display:none;color:var(--color-error,#d33)}.mw-parser-output .cs1-visible-error{color:var(--color-error,#d33)}.mw-parser-output .cs1-maint{display:none;color:#085;margin-left:0.3em}.mw-parser-output .cs1-kern-left{padding-left:0.2em}.mw-parser-output .cs1-kern-right{padding-right:0.2em}.mw-parser-output .citation .mw-selflink{font-weight:inherit}@media screen{.mw-parser-output .cs1-format{font-size:95%}html.skin-theme-clientpref-night .mw-parser-output .cs1-maint{color:#18911f}}@media screen and (prefers-color-scheme:dark){html.skin-theme-clientpref-os .mw-parser-output .cs1-maint{color:#18911f}}</style><cite id="CITEREFEicherOpoku1997" class="citation journal cs1">Eicher, Jodie; Opoku, Yaw (July 29, 1997). <a rel="nofollow" class="external text" href="http://web.archive.org/web/20030509012110/http://www.mathcs.richmond.edu/~jad/summerwork/ellipticcurvequantum.pdf">"Using the Quantum Computer to Break Elliptic Curve Cryptosystems"</a> <span class="cs1-format">(PDF)</span>. Archived from <a rel="nofollow" class="external text" href="http://www.mathcs.richmond.edu/~jad/summerwork/ellipticcurvequantum.pdf">the original</a> <span class="cs1-format">(PDF)</span> on 2003-05-09.</cite><span title="ctx_ver=Z39.88-2004&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=article&rft.atitle=Using+the+Quantum+Computer+to+Break+Elliptic+Curve+Cryptosystems&rft.date=1997-07-29&rft.aulast=Eicher&rft.aufirst=Jodie&rft.au=Opoku%2C+Yaw&rft_id=http%3A%2F%2Fwww.mathcs.richmond.edu%2F~jad%2Fsummerwork%2Fellipticcurvequantum.pdf&rfr_id=info%3Asid%2Fen.wikipedia.org%3ATalk%3AElliptic-curve+cryptography" class="Z3988"></span> <span class="cs1-visible-error citation-comment"><code class="cs1-code">{{<a href="/wiki/Template:Cite_journal" title="Template:Cite journal">cite journal</a>}}</code>: </span><span class="cs1-visible-error citation-comment">Cite journal requires <code class="cs1-code">|journal=</code> (<a href="/wiki/Help:CS1_errors#missing_periodical" title="Help:CS1 errors">help</a>)</span>; <span class="cs1-visible-error citation-comment">Unknown parameter <code class="cs1-code">|dead-url=</code> ignored (<code class="cs1-code">|url-status=</code> suggested) (<a href="/wiki/Help:CS1_errors#parameter_ignored_suggest" title="Help:CS1 errors">help</a>)</span>). I (probably is) be outdated though, though it might be useful for background info (?). <a href="/wiki/User:Jimw338" title="User:Jimw338">Jimw338</a> (<a href="/wiki/User_talk:Jimw338" title="User talk:Jimw338">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Jimw338-2016-09-12T04:18:00.000Z-Skippydo-2012-06-26T01:58:00.000Z" class="ext-discussiontools-init-timestamplink">04:18, 12 September 2016 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Jimw338-2016-09-12T04:18:00.000Z-Skippydo-2012-06-26T01:58:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2016-09-12T04:18:00.000Z","author":"Jimw338","type":"comment","level":3,"id":"c-Jimw338-2016-09-12T04:18:00.000Z-Skippydo-2012-06-26T01:58:00.000Z","replies":[]}}--></span><span data-mw-comment-end="c-Jimw338-2016-09-12T04:18:00.000Z-Skippydo-2012-06-26T01:58:00.000Z"></span></dd></dl></dd></dl> <p><span data-mw-comment-start="" id="c-Tarcieri-2017-11-03T18:40:00.000Z-Quantum_Computing_Attack_Citations"></span>I just rewrote the whole section with an updated citation and what I hope is both clearer wording and a more NPOV. <a href="/wiki/User:Tarcieri" title="User:Tarcieri">Tarcieri</a> (<a href="/wiki/User_talk:Tarcieri" title="User talk:Tarcieri">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Tarcieri-2017-11-03T18:40:00.000Z-Quantum_Computing_Attack_Citations" class="ext-discussiontools-init-timestamplink">18:40, 3 November 2017 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Tarcieri-2017-11-03T18:40:00.000Z-Quantum_Computing_Attack_Citations"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2017-11-03T18:40:00.000Z","author":"Tarcieri","type":"comment","level":1,"id":"c-Tarcieri-2017-11-03T18:40:00.000Z-Quantum_Computing_Attack_Citations","replies":[]}}--></span><span data-mw-comment-end="c-Tarcieri-2017-11-03T18:40:00.000Z-Quantum_Computing_Attack_Citations"></span> </p> <style data-mw-deduplicate="TemplateStyles:r1232521257">.mw-parser-output .reflist-talk{margin:auto 0;border:1px dashed var(--border-color-base,#a2a9b1);padding:4px;padding-left:1em}.mw-parser-output .reflist-talk-title{font-weight:bold}</style><div class="reflist-talk"> <p class="reflist-talk-title">References</p> <style data-mw-deduplicate="TemplateStyles:r1239543626">.mw-parser-output .reflist{margin-bottom:0.5em;list-style-type:decimal}@media screen{.mw-parser-output .reflist{font-size:90%}}.mw-parser-output .reflist .references{font-size:100%;margin-bottom:0;list-style-type:inherit}.mw-parser-output .reflist-columns-2{column-width:30em}.mw-parser-output .reflist-columns-3{column-width:25em}.mw-parser-output .reflist-columns{margin-top:0.3em}.mw-parser-output .reflist-columns ol{margin-top:0}.mw-parser-output .reflist-columns li{page-break-inside:avoid;break-inside:avoid-column}.mw-parser-output .reflist-upper-alpha{list-style-type:upper-alpha}.mw-parser-output .reflist-upper-roman{list-style-type:upper-roman}.mw-parser-output .reflist-lower-alpha{list-style-type:lower-alpha}.mw-parser-output .reflist-lower-greek{list-style-type:lower-greek}.mw-parser-output .reflist-lower-roman{list-style-type:lower-roman}</style><div class="reflist"> <div class="mw-references-wrap"><ol class="references"> <li id="cite_note-1"><span class="mw-cite-backlink"><b><a href="#cite_ref-1">^</a></b></span> <span class="reference-text"><link rel="mw-deduplicated-inline-style" href="mw-data:TemplateStyles:r1238218222" /><cite id="CITEREFEicherOpoku1997" class="citation journal cs1">Eicher, Jodie; Opoku, Yaw (July 29, 1997). "Using the Quantum Computer to Break Elliptic Curve Cryptosystems".</cite><span title="ctx_ver=Z39.88-2004&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=article&rft.atitle=Using+the+Quantum+Computer+to+Break+Elliptic+Curve+Cryptosystems&rft.date=1997-07-29&rft.aulast=Eicher&rft.aufirst=Jodie&rft.au=Opoku%2C+Yaw&rfr_id=info%3Asid%2Fen.wikipedia.org%3ATalk%3AElliptic-curve+cryptography" class="Z3988"></span> <span class="cs1-visible-error citation-comment"><code class="cs1-code">{{<a href="/wiki/Template:Cite_journal" title="Template:Cite journal">cite journal</a>}}</code>: </span><span class="cs1-visible-error citation-comment">Cite journal requires <code class="cs1-code">|journal=</code> (<a href="/wiki/Help:CS1_errors#missing_periodical" title="Help:CS1 errors">help</a>)</span></span> </li> <li id="cite_note-2"><span class="mw-cite-backlink"><b><a href="#cite_ref-2">^</a></b></span> <span class="reference-text"><link rel="mw-deduplicated-inline-style" href="mw-data:TemplateStyles:r1238218222" /><cite id="CITEREFProosZalka2003" class="citation journal cs1">Proos, John; Zalka, Christof (2003). "Shor's Discrete Logarithm Quantum Algorithm for Elliptic Curves". <i>Quantum Information and Computing</i>. <b>3</b> (4): <span class="nowrap">317–</span>344. <a href="/wiki/ArXiv_(identifier)" class="mw-redirect" title="ArXiv (identifier)">arXiv</a>:<span class="id-lock-free" title="Freely accessible"><a rel="nofollow" class="external text" href="https://arxiv.org/abs/quant-ph/0301141">quant-ph/0301141</a></span>. <a href="/wiki/Bibcode_(identifier)" class="mw-redirect" title="Bibcode (identifier)">Bibcode</a>:<a rel="nofollow" class="external text" href="https://ui.adsabs.harvard.edu/abs/2003quant.ph..1141P">2003quant.ph..1141P</a>.</cite><span title="ctx_ver=Z39.88-2004&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=article&rft.jtitle=Quantum+Information+and+Computing&rft.atitle=Shor%27s+Discrete+Logarithm+Quantum+Algorithm+for+Elliptic+Curves&rft.volume=3&rft.issue=4&rft.pages=%3Cspan+class%3D%22nowrap%22%3E317-%3C%2Fspan%3E344&rft.date=2003&rft_id=info%3Aarxiv%2Fquant-ph%2F0301141&rft_id=info%3Abibcode%2F2003quant.ph..1141P&rft.aulast=Proos&rft.aufirst=John&rft.au=Zalka%2C+Christof&rfr_id=info%3Asid%2Fen.wikipedia.org%3ATalk%3AElliptic-curve+cryptography" class="Z3988"></span></span> </li> </ol></div></div> </div> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-24.126.40.36-2013-09-06T17:29:00.000Z","type":"heading","level":0,"id":"h-Possible_NSA_backdoor-2013-09-06T17:29:00.000Z","replies":["c-24.126.40.36-2013-09-06T17:29:00.000Z-Possible_NSA_backdoor","c-68.45.155.10-2015-01-22T15:42:00.000Z-Possible_NSA_backdoor"],"text":"Possible NSA backdoor","linkableTitle":"Possible NSA backdoor"}--><h2 id="Possible_NSA_backdoor" data-mw-thread-id="h-Possible_NSA_backdoor-2013-09-06T17:29:00.000Z"><span data-mw-comment-start="" id="h-Possible_NSA_backdoor-2013-09-06T17:29:00.000Z"></span>Possible NSA backdoor<span data-mw-comment-end="h-Possible_NSA_backdoor-2013-09-06T17:29:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=17" title="Edit section: Possible NSA backdoor"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-24.126.40.36-2013-09-06T17:29:00.000Z","type":"heading","level":0,"id":"h-Possible_NSA_backdoor-2013-09-06T17:29:00.000Z","replies":["c-24.126.40.36-2013-09-06T17:29:00.000Z-Possible_NSA_backdoor","c-68.45.155.10-2015-01-22T15:42:00.000Z-Possible_NSA_backdoor"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-68.45.155.10-2015-01-22T15:42:00.000Z-Possible_NSA_backdoor","timestamp":"2015-01-22T15:42:00.000Z"}__--><!--__DTCOMMENTCOUNT__8__--><!--__DTAUTHORCOUNT__8__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-24.126.40.36-2013-09-06T17:29:00.000Z","type":"heading","level":0,"id":"h-Possible_NSA_backdoor-2013-09-06T17:29:00.000Z","replies":["c-24.126.40.36-2013-09-06T17:29:00.000Z-Possible_NSA_backdoor","c-68.45.155.10-2015-01-22T15:42:00.000Z-Possible_NSA_backdoor"],"text":"Possible NSA backdoor","linkableTitle":"Possible NSA backdoor"}--></div></div></div> <p><span data-mw-comment-start="" id="c-24.126.40.36-2013-09-06T17:29:00.000Z-Possible_NSA_backdoor"></span>I don't have the technical competence to write a section about this, but I think it is important to point out that there is serious speculation that the NSA inserted a backdoor into the NIST Special Publication 800-90 Dual_EC_DRBG elliptic curve pseudo random generator. If I understand the concern, it is basically that some defined constants in the standard are related to a second, unknown set of numbers, but whoever originally generated those constants does know those numbers. Cryptographic experts say that whoever knows those numbers can gain encryption keys given only 32 bytes of cyphertext. </p><p>The technical discussion of the issue is found in these sources: </p><p><a rel="nofollow" class="external free" href="http://www.wired.com/politics/security/commentary/securitymatters/2007/11/securitymatters_1115">http://www.wired.com/politics/security/commentary/securitymatters/2007/11/securitymatters_1115</a> <a rel="nofollow" class="external free" href="http://eprint.iacr.org/2007/048.pdf">http://eprint.iacr.org/2007/048.pdf</a> <a rel="nofollow" class="external free" href="http://rump2007.cr.yp.to/15-shumow.pdf">http://rump2007.cr.yp.to/15-shumow.pdf</a> </p><p>And some analysis of the possibility that these concerns are founded, based on leaks from Edward Snowden, is found here: </p><p><a rel="nofollow" class="external free" href="http://arstechnica.com/security/2013/09/the-nsas-work-to-make-crypto-worse-and-better/">http://arstechnica.com/security/2013/09/the-nsas-work-to-make-crypto-worse-and-better/</a> <span style="font-size: smaller;" class="autosigned">— Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/wiki/Special:Contributions/24.126.40.36" title="Special:Contributions/24.126.40.36">24.126.40.36</a> (<a href="/w/index.php?title=User_talk:24.126.40.36&action=edit&redlink=1" class="new" title="User talk:24.126.40.36 (page does not exist)">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-24.126.40.36-2013-09-06T17:29:00.000Z-Possible_NSA_backdoor" class="ext-discussiontools-init-timestamplink">17:29, 6 September 2013 (UTC)</a></span><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-24.126.40.36-2013-09-06T17:29:00.000Z-Possible_NSA_backdoor"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2013-09-06T17:29:00.000Z","author":"24.126.40.36","type":"comment","level":1,"id":"c-24.126.40.36-2013-09-06T17:29:00.000Z-Possible_NSA_backdoor","replies":["c-Mightyname-2013-09-06T20:39:00.000Z-24.126.40.36-2013-09-06T17:29:00.000Z"]}}--></span><span data-mw-comment-end="c-24.126.40.36-2013-09-06T17:29:00.000Z-Possible_NSA_backdoor"></span> </p> <dl><dd><span data-mw-comment-start="" id="c-Mightyname-2013-09-06T20:39:00.000Z-24.126.40.36-2013-09-06T17:29:00.000Z"></span>Wrong place here. Go to the <a href="/wiki/Dual_EC_DRBG" title="Dual EC DRBG">Dual_EC_DRBG</a> article. Besides this is about a specific random number generator. It's about a possible weakness on the practicality of the technique based on geometrical identity of elliptic curves, I think. Something like finding a twin to get the answer. <a href="/w/index.php?title=User:Mightyname&action=edit&redlink=1" class="new" title="User:Mightyname (page does not exist)">Mightyname</a> (<a href="/wiki/User_talk:Mightyname" title="User talk:Mightyname">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Mightyname-2013-09-06T20:39:00.000Z-24.126.40.36-2013-09-06T17:29:00.000Z" class="ext-discussiontools-init-timestamplink">20:39, 6 September 2013 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Mightyname-2013-09-06T20:39:00.000Z-24.126.40.36-2013-09-06T17:29:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2013-09-06T20:39:00.000Z","author":"Mightyname","type":"comment","level":2,"id":"c-Mightyname-2013-09-06T20:39:00.000Z-24.126.40.36-2013-09-06T17:29:00.000Z","replies":["c-Yakatz-2013-09-11T15:35:00.000Z-Mightyname-2013-09-06T20:39:00.000Z"]}}--></span><span data-mw-comment-end="c-Mightyname-2013-09-06T20:39:00.000Z-24.126.40.36-2013-09-06T17:29:00.000Z"></span></dd></dl> <dl><dd><dl><dd><span data-mw-comment-start="" id="c-Yakatz-2013-09-11T15:35:00.000Z-Mightyname-2013-09-06T20:39:00.000Z"></span>I think it might be appropriate to mention it in the section about <b>NIST-recommended elliptic curves</b>. <br /> I think there are good sources in the Slashdot summary: <a rel="nofollow" class="external free" href="http://it.slashdot.org/firehose.pl?op=view&type=story&sid=13/09/11/1224252">http://it.slashdot.org/firehose.pl?op=view&type=story&sid=13/09/11/1224252</a> <br /> <a href="/wiki/User:Yakatz" title="User:Yakatz">Yakatz</a> (<a href="/wiki/User_talk:Yakatz" title="User talk:Yakatz">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Yakatz-2013-09-11T15:35:00.000Z-Mightyname-2013-09-06T20:39:00.000Z" class="ext-discussiontools-init-timestamplink">15:35, 11 September 2013 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Yakatz-2013-09-11T15:35:00.000Z-Mightyname-2013-09-06T20:39:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2013-09-11T15:35:00.000Z","author":"Yakatz","type":"comment","level":3,"id":"c-Yakatz-2013-09-11T15:35:00.000Z-Mightyname-2013-09-06T20:39:00.000Z","replies":["c-Dbachmann-2013-09-21T10:10:00.000Z-Yakatz-2013-09-11T15:35:00.000Z"]}}--></span><span data-mw-comment-end="c-Yakatz-2013-09-11T15:35:00.000Z-Mightyname-2013-09-06T20:39:00.000Z"></span></dd></dl></dd></dl> <dl><dd><dl><dd><dl><dd><span data-mw-comment-start="" id="c-Dbachmann-2013-09-21T10:10:00.000Z-Yakatz-2013-09-11T15:35:00.000Z"></span>considering the gravity of the scandal, there should obviously be a paragraph dedicated to it here. Details can still go to <a href="/wiki/Dual_EC_DRBG" title="Dual EC DRBG">Dual_EC_DRBG</a>, but the topic needs to be given <a href="/wiki/Wikipedia:SS" class="mw-redirect" title="Wikipedia:SS">WP:SS</a> treatment on this page, because this page is the first people will come to when they read about the "NSA ECC backdoor". --<a href="/wiki/User:Dbachmann" class="mw-redirect" title="User:Dbachmann">dab</a> <small><a href="/wiki/User_talk:Dbachmann" title="User talk:Dbachmann">(𒁳)</a></small> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Dbachmann-2013-09-21T10:10:00.000Z-Yakatz-2013-09-11T15:35:00.000Z" class="ext-discussiontools-init-timestamplink">10:10, 21 September 2013 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Dbachmann-2013-09-21T10:10:00.000Z-Yakatz-2013-09-11T15:35:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2013-09-21T10:10:00.000Z","author":"Dbachmann","type":"comment","level":4,"id":"c-Dbachmann-2013-09-21T10:10:00.000Z-Yakatz-2013-09-11T15:35:00.000Z","replies":["c-DokReggar-2014-01-03T12:46:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z","c-130.89.106.70-2014-03-17T15:22:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z"],"displayName":"dab"}}--></span><span data-mw-comment-end="c-Dbachmann-2013-09-21T10:10:00.000Z-Yakatz-2013-09-11T15:35:00.000Z"></span></dd></dl></dd></dl></dd></dl> <dl><dd><dl><dd><dl><dd><dl><dd><span data-mw-comment-start="" id="c-DokReggar-2014-01-03T12:46:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z"></span>I think this is quite out of topic and should be removed. Even though there are links between random number generation and cryptography, Dual_EC_DBRG is a random number generator, based on elliptic curves (the mathematical objects). This article should be about the cryptographic primitives. <code>#!/bin/<a href="/wiki/User:DokReggar" title="User:DokReggar">DokReggar</a> <a href="/wiki/User_talk:DokReggar" title="User talk:DokReggar">-talk</a></code> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-DokReggar-2014-01-03T12:46:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z" class="ext-discussiontools-init-timestamplink">12:46, 3 January 2014 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-DokReggar-2014-01-03T12:46:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2014-01-03T12:46:00.000Z","author":"DokReggar","type":"comment","level":5,"id":"c-DokReggar-2014-01-03T12:46:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z","replies":[]}}--></span><span data-mw-comment-end="c-DokReggar-2014-01-03T12:46:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z"></span></dd></dl></dd></dl></dd></dl></dd></dl> <dl><dd><dl><dd><dl><dd><dl><dd><span data-mw-comment-start="" id="c-130.89.106.70-2014-03-17T15:22:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z"></span>I strongly disagree. There is no such thing as an NSA ECC backdoor (that we know of), there is an NSA Dual_EC_DBRG backdoor. Furthermore, the fact that elliptic curves were used as the construct for this RNG is a mere detail; the NSA could have just as easily based this upon modular exponentiation in integer fields. Elliptic curves just <i>happen</i> to be used by this backdoored construct, but this coincidence is only of interest in other articles. It is irrelevant here, especially when positioned <i>actual implementation issues specific to elliptic curve cryptography</i>. Please remove it here. <small><span class="autosigned">— Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/w/index.php?title=User:130.89.106.70&action=edit&redlink=1" class="new" title="User:130.89.106.70 (page does not exist)">130.89.106.70</a> (<a href="/w/index.php?title=User_talk:130.89.106.70&action=edit&redlink=1" class="new" title="User talk:130.89.106.70 (page does not exist)">talk</a> • <a href="/wiki/Special:Contributions/130.89.106.70" title="Special:Contributions/130.89.106.70">contribs</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-130.89.106.70-2014-03-17T15:22:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z" class="ext-discussiontools-init-timestamplink">15:22, 17 March 2014 (UTC)</a></span><span data-mw-comment-end="c-130.89.106.70-2014-03-17T15:22:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z"></span></small><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-130.89.106.70-2014-03-17T15:22:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2014-03-17T15:22:00.000Z","author":"130.89.106.70","type":"comment","level":5,"id":"c-130.89.106.70-2014-03-17T15:22:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z","replies":["c-Quondum-2014-03-17T18:09:00.000Z-130.89.106.70-2014-03-17T15:22:00.000Z"]}}--></span></dd></dl></dd></dl></dd></dl></dd></dl> <dl><dd><dl><dd><dl><dd><dl><dd><dl><dd><span data-mw-comment-start="" id="c-Quondum-2014-03-17T18:09:00.000Z-130.89.106.70-2014-03-17T15:22:00.000Z"></span>You should clearly read the text a little more closely. The fact that quotable sources are making comments about the possible untrustworthiness of the NSA-recommended elliptic curves, and hence on their use in ECC, is relevant in the section. —<a href="/wiki/User_talk:Quondum" title="User talk:Quondum"><i>Quondum</i></a> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Quondum-2014-03-17T18:09:00.000Z-130.89.106.70-2014-03-17T15:22:00.000Z" class="ext-discussiontools-init-timestamplink">18:09, 17 March 2014 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Quondum-2014-03-17T18:09:00.000Z-130.89.106.70-2014-03-17T15:22:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2014-03-17T18:09:00.000Z","author":"Quondum","type":"comment","level":6,"id":"c-Quondum-2014-03-17T18:09:00.000Z-130.89.106.70-2014-03-17T15:22:00.000Z","replies":[]}}--></span><span data-mw-comment-end="c-Quondum-2014-03-17T18:09:00.000Z-130.89.106.70-2014-03-17T15:22:00.000Z"></span></dd></dl></dd></dl></dd></dl></dd></dl></dd></dl> <p><span data-mw-comment-start="" id="c-68.45.155.10-2015-01-22T15:42:00.000Z-Possible_NSA_backdoor"></span>Just have to agree with people saying it should be mentioned if only to disambiguate the issue from this page. I too expected to see something about it and had to read the talk page to understand that not all ECC was compromised. Only a very small number of potential readers here know enough to make the distinction required; the vast majority simply think ECC->NSA->backdoored. It's just the reality of the situation. <small class="autosigned">— Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/wiki/Special:Contributions/68.45.155.10" title="Special:Contributions/68.45.155.10">68.45.155.10</a> (<a href="/w/index.php?title=User_talk:68.45.155.10&action=edit&redlink=1" class="new" title="User talk:68.45.155.10 (page does not exist)">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-68.45.155.10-2015-01-22T15:42:00.000Z-Possible_NSA_backdoor" class="ext-discussiontools-init-timestamplink">15:42, 22 January 2015 (UTC)</a></small><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-68.45.155.10-2015-01-22T15:42:00.000Z-Possible_NSA_backdoor"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2015-01-22T15:42:00.000Z","author":"68.45.155.10","type":"comment","level":1,"id":"c-68.45.155.10-2015-01-22T15:42:00.000Z-Possible_NSA_backdoor","replies":[]}}--></span><span data-mw-comment-end="c-68.45.155.10-2015-01-22T15:42:00.000Z-Possible_NSA_backdoor"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-John_Palkovic-2014-11-03T15:37:00.000Z","type":"heading","level":0,"id":"h-Group_Order-2014-11-03T15:37:00.000Z","replies":["c-John_Palkovic-2014-11-03T15:37:00.000Z-Group_Order"],"text":"Group Order","linkableTitle":"Group Order"}--><h2 id="Group_Order" data-mw-thread-id="h-Group_Order-2014-11-03T15:37:00.000Z"><span data-mw-comment-start="" id="h-Group_Order-2014-11-03T15:37:00.000Z"></span>Group Order<span data-mw-comment-end="h-Group_Order-2014-11-03T15:37:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=18" title="Edit section: Group Order"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-John_Palkovic-2014-11-03T15:37:00.000Z","type":"heading","level":0,"id":"h-Group_Order-2014-11-03T15:37:00.000Z","replies":["c-John_Palkovic-2014-11-03T15:37:00.000Z-Group_Order"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-Gurnec-2015-01-15T21:33:00.000Z-John_Palkovic-2014-11-03T15:37:00.000Z","timestamp":"2015-01-15T21:33:00.000Z"}__--><!--__DTCOMMENTCOUNT__2__--><!--__DTAUTHORCOUNT__2__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-John_Palkovic-2014-11-03T15:37:00.000Z","type":"heading","level":0,"id":"h-Group_Order-2014-11-03T15:37:00.000Z","replies":["c-John_Palkovic-2014-11-03T15:37:00.000Z-Group_Order"],"text":"Group Order","linkableTitle":"Group Order"}--></div></div></div> <p><span data-mw-comment-start="" id="c-John_Palkovic-2014-11-03T15:37:00.000Z-Group_Order"></span>The article states, under the heading "Domain Parameters," that </p> <dl><dd>For cryptographic application the <a href="/wiki/Order_(group_theory)" title="Order (group theory)">order</a> of <i>G</i>, that is the smallest positive number <i>n</i> such that <span class="mwe-math-element"><span class="mwe-math-mathml-inline mwe-math-mathml-a11y" style="display: none;"><math xmlns="http://www.w3.org/1998/Math/MathML" alttext="{\displaystyle nG=\infty }"> <semantics> <mrow class="MJX-TeXAtom-ORD"> <mstyle displaystyle="true" scriptlevel="0"> <mi>n</mi> <mi>G</mi> <mo>=</mo> <mi mathvariant="normal">∞<!-- ∞ --></mi> </mstyle> </mrow> <annotation encoding="application/x-tex">{\displaystyle nG=\infty }</annotation> </semantics> </math></span><img src="https://wikimedia.org/api/rest_v1/media/math/render/svg/f80988ce7f5ba73e0d7c45b8600933fa78af25a1" class="mwe-math-fallback-image-inline mw-invert skin-invert" aria-hidden="true" style="vertical-align: -0.338ex; width:8.644ex; height:2.176ex;" alt="{\displaystyle nG=\infty }" /></span>, is normally prime.</dd></dl> <p>The <i>order</i> of an element <i>G</i> in an additive group is the smallest positive integer <i>n</i> such that <span class="mwe-math-element"><span class="mwe-math-mathml-inline mwe-math-mathml-a11y" style="display: none;"><math xmlns="http://www.w3.org/1998/Math/MathML" alttext="{\displaystyle nG=0}"> <semantics> <mrow class="MJX-TeXAtom-ORD"> <mstyle displaystyle="true" scriptlevel="0"> <mi>n</mi> <mi>G</mi> <mo>=</mo> <mn>0</mn> </mstyle> </mrow> <annotation encoding="application/x-tex">{\displaystyle nG=0}</annotation> </semantics> </math></span><img src="https://wikimedia.org/api/rest_v1/media/math/render/svg/d30e7ba74017ea6ab9da0fff0c2383122a501274" class="mwe-math-fallback-image-inline mw-invert skin-invert" aria-hidden="true" style="vertical-align: -0.338ex; width:7.482ex; height:2.176ex;" alt="{\displaystyle nG=0}" /></span>, not ∞ (Gallian, <i>Contemporary Abstract Algebra</i>, ch. 4). This needs to be fixed. </p><p><a href="/wiki/User:John_Palkovic" title="User:John Palkovic">John</a> (<a href="/wiki/User_talk:John_Palkovic" title="User talk:John Palkovic">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-John_Palkovic-2014-11-03T15:37:00.000Z-Group_Order" class="ext-discussiontools-init-timestamplink">15:37, 3 November 2014 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-John_Palkovic-2014-11-03T15:37:00.000Z-Group_Order"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2014-11-03T15:37:00.000Z","author":"John Palkovic","type":"comment","level":1,"id":"c-John_Palkovic-2014-11-03T15:37:00.000Z-Group_Order","replies":["c-Gurnec-2015-01-15T21:33:00.000Z-John_Palkovic-2014-11-03T15:37:00.000Z"],"displayName":"John"}}--></span><span data-mw-comment-end="c-John_Palkovic-2014-11-03T15:37:00.000Z-Group_Order"></span> </p> <dl><dd><dl><dd><span data-mw-comment-start="" id="c-Gurnec-2015-01-15T21:33:00.000Z-John_Palkovic-2014-11-03T15:37:00.000Z"></span>I believe either is accurate -- it's equal to the identity element of the group (denoted 0 (zero), O (uppercase o), or e), which is a <a href="/wiki/Point_at_infinity" title="Point at infinity">point at infinity</a>, specifically [0:1:0]. I suspect this is what the original author was trying to convey.... <a href="/wiki/User:Gurnec" title="User:Gurnec">gurnec</a> (<a href="/wiki/User_talk:Gurnec" title="User talk:Gurnec">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-Gurnec-2015-01-15T21:33:00.000Z-John_Palkovic-2014-11-03T15:37:00.000Z" class="ext-discussiontools-init-timestamplink">21:33, 15 January 2015 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-Gurnec-2015-01-15T21:33:00.000Z-John_Palkovic-2014-11-03T15:37:00.000Z"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2015-01-15T21:33:00.000Z","author":"Gurnec","type":"comment","level":3,"id":"c-Gurnec-2015-01-15T21:33:00.000Z-John_Palkovic-2014-11-03T15:37:00.000Z","replies":[]}}--></span><span data-mw-comment-end="c-Gurnec-2015-01-15T21:33:00.000Z-John_Palkovic-2014-11-03T15:37:00.000Z"></span></dd></dl></dd></dl> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-InternetArchiveBot-2016-09-11T20:15:00.000Z","type":"heading","level":0,"id":"h-External_links_modified-2016-09-11T20:15:00.000Z","replies":["c-InternetArchiveBot-2016-09-11T20:15:00.000Z-External_links_modified"],"text":"External links modified","linkableTitle":"External links modified"}--><h2 id="External_links_modified" data-mw-thread-id="h-External_links_modified-2016-09-11T20:15:00.000Z"><span data-mw-comment-start="" id="h-External_links_modified-2016-09-11T20:15:00.000Z"></span>External links modified<span data-mw-comment-end="h-External_links_modified-2016-09-11T20:15:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=19" title="Edit section: External links modified"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-InternetArchiveBot-2016-09-11T20:15:00.000Z","type":"heading","level":0,"id":"h-External_links_modified-2016-09-11T20:15:00.000Z","replies":["c-InternetArchiveBot-2016-09-11T20:15:00.000Z-External_links_modified"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-InternetArchiveBot-2016-09-11T20:15:00.000Z-External_links_modified","timestamp":"2016-09-11T20:15:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-InternetArchiveBot-2016-09-11T20:15:00.000Z","type":"heading","level":0,"id":"h-External_links_modified-2016-09-11T20:15:00.000Z","replies":["c-InternetArchiveBot-2016-09-11T20:15:00.000Z-External_links_modified"],"text":"External links modified","linkableTitle":"External links modified"}--></div></div></div> <p><span data-mw-comment-start="" id="c-InternetArchiveBot-2016-09-11T20:15:00.000Z-External_links_modified"></span>Hello fellow Wikipedians, </p><p>I have just modified 2 external links on <a href="/wiki/Elliptic_curve_cryptography" class="mw-redirect" title="Elliptic curve cryptography">Elliptic curve cryptography</a>. Please take a moment to review <a class="external text" href="https://en.wikipedia.org/w/index.php?diff=prev&oldid=738924504">my edit</a>. If you have any questions, or need the bot to ignore the links, or the page altogether, please visit <a href="/wiki/User:Cyberpower678/FaQs#InternetArchiveBot" title="User:Cyberpower678/FaQs">this simple FaQ</a> for additional information. I made the following changes: </p> <ul><li>Added archive <a rel="nofollow" class="external free" href="https://web.archive.org/web/20110719233751/https://www.certicom.com/index.php/2004-press-releases/36-2004-press-releases/300-solution-required-team-of-mathematicians-2600-computers-and-17-months-">https://web.archive.org/web/20110719233751/https://www.certicom.com/index.php/2004-press-releases/36-2004-press-releases/300-solution-required-team-of-mathematicians-2600-computers-and-17-months-</a> to <a rel="nofollow" class="external free" href="http://www.certicom.com/index.php/2004-press-releases/36-2004-press-releases/300-solution-required-team-of-mathematicians-2600-computers-and-17-months-">http://www.certicom.com/index.php/2004-press-releases/36-2004-press-releases/300-solution-required-team-of-mathematicians-2600-computers-and-17-months-</a></li> <li>Added archive <a rel="nofollow" class="external free" href="https://web.archive.org/web/20060327202009/https://anziamj.austms.org.au:80/V44/CTAC2001/Hitc/Hitc.pdf">https://web.archive.org/web/20060327202009/https://anziamj.austms.org.au:80/V44/CTAC2001/Hitc/Hitc.pdf</a> to <a rel="nofollow" class="external free" href="http://anziamj.austms.org.au/V44/CTAC2001/Hitc/Hitc.pdf">http://anziamj.austms.org.au/V44/CTAC2001/Hitc/Hitc.pdf</a></li></ul> <p>When you have finished reviewing my changes, please set the <i>checked</i> parameter below to <b>true</b> or <b>failed</b> to let others know (documentation at <code>{{<a href="/wiki/Template:Sourcecheck" class="mw-redirect" title="Template:Sourcecheck">Sourcecheck</a>}}</code>). </p><p><span typeof="mw:File"><span><img alt="☒" src="//upload.wikimedia.org/wikipedia/commons/thumb/a/a2/X_mark.svg/20px-X_mark.svg.png" decoding="async" width="20" height="23" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/a/a2/X_mark.svg/30px-X_mark.svg.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/a/a2/X_mark.svg/40px-X_mark.svg.png 2x" data-file-width="525" data-file-height="600" /></span></span><span style="display:none">N</span> <i>An editor has determined that the edit contains an error somewhere. Please follow the instructions below and mark the <code class="tpl-para" style="word-break:break-word;">|checked=</code> to <b>true</b></i> </p> <ul><li>If you have discovered URLs which were erroneously considered dead by the bot, you can report them with <a rel="nofollow" class="external text" href="https://iabot.wmcloud.org/index.php?page=reportfalsepositive">this tool</a>.</li> <li>If you found an error with any archives or the URLs themselves, you can fix them with <a rel="nofollow" class="external text" href="https://iabot.wmcloud.org/index.php?page=manageurlsingle">this tool</a>.</li></ul> <p>Archive link for anziamj.austms.org.au fails with 504 Gateway Timeout </p><p>Cheers.—<a href="/wiki/User:InternetArchiveBot" title="User:InternetArchiveBot"><b><span style="color:darkgrey;font-family:monospace">InternetArchiveBot</span></b></a> <span style="color:green;font-family:Rockwell">(<a href="/wiki/User_talk:InternetArchiveBot" title="User talk:InternetArchiveBot">Report bug</a>)</span> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-InternetArchiveBot-2016-09-11T20:15:00.000Z-External_links_modified" class="ext-discussiontools-init-timestamplink">20:15, 11 September 2016 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-InternetArchiveBot-2016-09-11T20:15:00.000Z-External_links_modified"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2016-09-11T20:15:00.000Z","author":"InternetArchiveBot","type":"comment","level":1,"id":"c-InternetArchiveBot-2016-09-11T20:15:00.000Z-External_links_modified","replies":[]}}--></span><span data-mw-comment-end="c-InternetArchiveBot-2016-09-11T20:15:00.000Z-External_links_modified"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-InternetArchiveBot-2016-12-23T02:32:00.000Z","type":"heading","level":0,"id":"h-External_links_modified_2-2016-12-23T02:32:00.000Z","replies":["c-InternetArchiveBot-2016-12-23T02:32:00.000Z-External_links_modified_2"],"text":"External links modified","linkableTitle":"External links modified 2"}--><h2 id="External_links_modified_2" data-mw-thread-id="h-External_links_modified_2-2016-12-23T02:32:00.000Z"><span data-mw-comment-start="" id="h-External_links_modified_2-2016-12-23T02:32:00.000Z"></span>External links modified<span data-mw-comment-end="h-External_links_modified_2-2016-12-23T02:32:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=20" title="Edit section: External links modified"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-InternetArchiveBot-2016-12-23T02:32:00.000Z","type":"heading","level":0,"id":"h-External_links_modified_2-2016-12-23T02:32:00.000Z","replies":["c-InternetArchiveBot-2016-12-23T02:32:00.000Z-External_links_modified_2"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-InternetArchiveBot-2016-12-23T02:32:00.000Z-External_links_modified_2","timestamp":"2016-12-23T02:32:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-InternetArchiveBot-2016-12-23T02:32:00.000Z","type":"heading","level":0,"id":"h-External_links_modified_2-2016-12-23T02:32:00.000Z","replies":["c-InternetArchiveBot-2016-12-23T02:32:00.000Z-External_links_modified_2"],"text":"External links modified","linkableTitle":"External links modified 2"}--></div></div></div> <p><span data-mw-comment-start="" id="c-InternetArchiveBot-2016-12-23T02:32:00.000Z-External_links_modified_2"></span>Hello fellow Wikipedians, </p><p>I have just modified one external link on <a href="/wiki/Elliptic_curve_cryptography" class="mw-redirect" title="Elliptic curve cryptography">Elliptic curve cryptography</a>. Please take a moment to review <a class="external text" href="https://en.wikipedia.org/w/index.php?diff=prev&oldid=756267458">my edit</a>. If you have any questions, or need the bot to ignore the links, or the page altogether, please visit <a href="/wiki/User:Cyberpower678/FaQs#InternetArchiveBot" title="User:Cyberpower678/FaQs">this simple FaQ</a> for additional information. I made the following changes: </p> <ul><li>Added archive <a rel="nofollow" class="external free" href="https://web.archive.org/web/20090117023500/http://www.nsa.gov/business/programs/elliptic_curve.shtml">https://web.archive.org/web/20090117023500/http://www.nsa.gov/business/programs/elliptic_curve.shtml</a> to <a rel="nofollow" class="external free" href="http://www.nsa.gov/business/programs/elliptic_curve.shtml">http://www.nsa.gov/business/programs/elliptic_curve.shtml</a></li></ul> <p>When you have finished reviewing my changes, please set the <i>checked</i> parameter below to <b>true</b> or <b>failed</b> to let others know (documentation at <code>{{<a href="/wiki/Template:Sourcecheck" class="mw-redirect" title="Template:Sourcecheck">Sourcecheck</a>}}</code>). </p><p><span typeof="mw:File"><span><img alt="check" src="//upload.wikimedia.org/wikipedia/en/thumb/f/fb/Yes_check.svg/20px-Yes_check.svg.png" decoding="async" width="20" height="20" class="mw-file-element" srcset="//upload.wikimedia.org/wikipedia/en/thumb/f/fb/Yes_check.svg/30px-Yes_check.svg.png 1.5x, //upload.wikimedia.org/wikipedia/en/thumb/f/fb/Yes_check.svg/40px-Yes_check.svg.png 2x" data-file-width="600" data-file-height="600" /></span></span><span style="display:none">Y</span> <i>An editor has reviewed this edit and fixed any errors that were found.</i> </p> <ul><li>If you have discovered URLs which were erroneously considered dead by the bot, you can report them with <a rel="nofollow" class="external text" href="https://iabot.wmcloud.org/index.php?page=reportfalsepositive">this tool</a>.</li> <li>If you found an error with any archives or the URLs themselves, you can fix them with <a rel="nofollow" class="external text" href="https://iabot.wmcloud.org/index.php?page=manageurlsingle">this tool</a>.</li></ul> <p>Cheers.—<a href="/wiki/User:InternetArchiveBot" title="User:InternetArchiveBot"><b><span style="color:darkgrey;font-family:monospace">InternetArchiveBot</span></b></a> <span style="color:green;font-family:Rockwell">(<a href="/wiki/User_talk:InternetArchiveBot" title="User talk:InternetArchiveBot">Report bug</a>)</span> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-InternetArchiveBot-2016-12-23T02:32:00.000Z-External_links_modified_2" class="ext-discussiontools-init-timestamplink">02:32, 23 December 2016 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-InternetArchiveBot-2016-12-23T02:32:00.000Z-External_links_modified_2"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2016-12-23T02:32:00.000Z","author":"InternetArchiveBot","type":"comment","level":1,"id":"c-InternetArchiveBot-2016-12-23T02:32:00.000Z-External_links_modified_2","replies":[]}}--></span><span data-mw-comment-end="c-InternetArchiveBot-2016-12-23T02:32:00.000Z-External_links_modified_2"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-InternetArchiveBot-2017-09-19T21:14:00.000Z","type":"heading","level":0,"id":"h-External_links_modified_3-2017-09-19T21:14:00.000Z","replies":["c-InternetArchiveBot-2017-09-19T21:14:00.000Z-External_links_modified_3"],"text":"External links modified","linkableTitle":"External links modified 3"}--><h2 id="External_links_modified_3" data-mw-thread-id="h-External_links_modified_3-2017-09-19T21:14:00.000Z"><span data-mw-comment-start="" id="h-External_links_modified_3-2017-09-19T21:14:00.000Z"></span>External links modified<span data-mw-comment-end="h-External_links_modified_3-2017-09-19T21:14:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=21" title="Edit section: External links modified"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-InternetArchiveBot-2017-09-19T21:14:00.000Z","type":"heading","level":0,"id":"h-External_links_modified_3-2017-09-19T21:14:00.000Z","replies":["c-InternetArchiveBot-2017-09-19T21:14:00.000Z-External_links_modified_3"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-InternetArchiveBot-2017-09-19T21:14:00.000Z-External_links_modified_3","timestamp":"2017-09-19T21:14:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-InternetArchiveBot-2017-09-19T21:14:00.000Z","type":"heading","level":0,"id":"h-External_links_modified_3-2017-09-19T21:14:00.000Z","replies":["c-InternetArchiveBot-2017-09-19T21:14:00.000Z-External_links_modified_3"],"text":"External links modified","linkableTitle":"External links modified 3"}--></div></div></div> <p><span data-mw-comment-start="" id="c-InternetArchiveBot-2017-09-19T21:14:00.000Z-External_links_modified_3"></span>Hello fellow Wikipedians, </p><p>I have just modified 2 external links on <a href="/wiki/Elliptic-curve_cryptography" title="Elliptic-curve cryptography">Elliptic-curve cryptography</a>. Please take a moment to review <a class="external text" href="https://en.wikipedia.org/w/index.php?diff=prev&oldid=801469098">my edit</a>. If you have any questions, or need the bot to ignore the links, or the page altogether, please visit <a href="/wiki/User:Cyberpower678/FaQs#InternetArchiveBot" title="User:Cyberpower678/FaQs">this simple FaQ</a> for additional information. I made the following changes: </p> <ul><li>Added archive <a rel="nofollow" class="external free" href="https://web.archive.org/web/20140503190338/http://eprint.iacr.org/2011/506">https://web.archive.org/web/20140503190338/http://eprint.iacr.org/2011/506</a> to <a rel="nofollow" class="external free" href="https://eprint.iacr.org/2011/506">https://eprint.iacr.org/2011/506</a></li> <li>Added archive <a rel="nofollow" class="external free" href="https://archive.is/20121208212741/http://wiki.crypto.rub.de/Buch/movies.php">https://archive.is/20121208212741/http://wiki.crypto.rub.de/Buch/movies.php</a> to <a rel="nofollow" class="external free" href="http://wiki.crypto.rub.de/Buch/movies.php">http://wiki.crypto.rub.de/Buch/movies.php</a></li></ul> <p>When you have finished reviewing my changes, you may follow the instructions on the template below to fix any issues with the URLs. </p><p>This message was posted before February 2018. <a href="/wiki/Wikipedia:Village_pump_(proposals)/Archive_145#Disable_messages_left_by_InternetArchiveBot" title="Wikipedia:Village pump (proposals)/Archive 145">After February 2018</a>, "External links modified" talk page sections are no longer generated or monitored by <b><span style="color:darkgrey;font-family:monospace">InternetArchiveBot</span></b>. No special action is required regarding these talk page notices, other than <a href="/wiki/Wikipedia:V" class="mw-redirect" title="Wikipedia:V">regular verification</a> using the archive tool instructions below. Editors <a href="/wiki/Wikipedia:Village_pump_(proposals)/Archive_150#RfC:_Delete_IABot_talk_page_posts?" title="Wikipedia:Village pump (proposals)/Archive 150">have permission</a> to delete these "External links modified" talk page sections if they want to de-clutter talk pages, but see the <a href="/wiki/Wikipedia:Village_pump_(proposals)/Archive_150#RfC:_Delete_IABot_talk_page_posts?" title="Wikipedia:Village pump (proposals)/Archive 150">RfC</a> before doing mass systematic removals. This message is updated dynamically through the template <code>{{<a href="/wiki/Template:Source_check" title="Template:Source check">source check</a>}}</code> <small>(last update: 5 June 2024)</small>. </p> <ul><li>If you have discovered URLs which were erroneously considered dead by the bot, you can report them with <a rel="nofollow" class="external text" href="https://iabot.wmcloud.org/index.php?page=reportfalsepositive">this tool</a>.</li> <li>If you found an error with any archives or the URLs themselves, you can fix them with <a rel="nofollow" class="external text" href="https://iabot.wmcloud.org/index.php?page=manageurlsingle">this tool</a>.</li></ul> <p>Cheers.—<a href="/wiki/User:InternetArchiveBot" title="User:InternetArchiveBot"><b><span style="color:darkgrey;font-family:monospace">InternetArchiveBot</span></b></a> <span style="color:green;font-family:Rockwell">(<a href="/wiki/User_talk:InternetArchiveBot" title="User talk:InternetArchiveBot">Report bug</a>)</span> <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-InternetArchiveBot-2017-09-19T21:14:00.000Z-External_links_modified_3" class="ext-discussiontools-init-timestamplink">21:14, 19 September 2017 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-InternetArchiveBot-2017-09-19T21:14:00.000Z-External_links_modified_3"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2017-09-19T21:14:00.000Z","author":"InternetArchiveBot","type":"comment","level":1,"id":"c-InternetArchiveBot-2017-09-19T21:14:00.000Z-External_links_modified_3","replies":[]}}--></span><span data-mw-comment-end="c-InternetArchiveBot-2017-09-19T21:14:00.000Z-External_links_modified_3"></span> </p><p><br /> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-198.52.160.180-2019-12-06T20:30:00.000Z","type":"heading","level":0,"id":"h-Algorithm_needed-2019-12-06T20:30:00.000Z","replies":["c-198.52.160.180-2019-12-06T20:30:00.000Z-Algorithm_needed"],"text":"Algorithm needed","linkableTitle":"Algorithm needed"}--><h2 id="Algorithm_needed" data-mw-thread-id="h-Algorithm_needed-2019-12-06T20:30:00.000Z"><span data-mw-comment-start="" id="h-Algorithm_needed-2019-12-06T20:30:00.000Z"></span>Algorithm needed<span data-mw-comment-end="h-Algorithm_needed-2019-12-06T20:30:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=22" title="Edit section: Algorithm needed"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-198.52.160.180-2019-12-06T20:30:00.000Z","type":"heading","level":0,"id":"h-Algorithm_needed-2019-12-06T20:30:00.000Z","replies":["c-198.52.160.180-2019-12-06T20:30:00.000Z-Algorithm_needed"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-198.52.160.180-2019-12-06T20:30:00.000Z-Algorithm_needed","timestamp":"2019-12-06T20:30:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-198.52.160.180-2019-12-06T20:30:00.000Z","type":"heading","level":0,"id":"h-Algorithm_needed-2019-12-06T20:30:00.000Z","replies":["c-198.52.160.180-2019-12-06T20:30:00.000Z-Algorithm_needed"],"text":"Algorithm needed","linkableTitle":"Algorithm needed"}--></div></div></div> <p><span data-mw-comment-start="" id="c-198.52.160.180-2019-12-06T20:30:00.000Z-Algorithm_needed"></span>This article doesn't contain the algorithm for ECC like the RSA article does. <small class="autosigned">— Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/wiki/Special:Contributions/198.52.160.180" title="Special:Contributions/198.52.160.180">198.52.160.180</a> (<a href="/wiki/User_talk:198.52.160.180#top" title="User talk:198.52.160.180">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-198.52.160.180-2019-12-06T20:30:00.000Z-Algorithm_needed" class="ext-discussiontools-init-timestamplink">20:30, 6 December 2019 (UTC)</a></small><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-198.52.160.180-2019-12-06T20:30:00.000Z-Algorithm_needed"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2019-12-06T20:30:00.000Z","author":"198.52.160.180","type":"comment","level":1,"id":"c-198.52.160.180-2019-12-06T20:30:00.000Z-Algorithm_needed","replies":[]}}--></span><span data-mw-comment-end="c-198.52.160.180-2019-12-06T20:30:00.000Z-Algorithm_needed"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-VecLuci-2018-10-10T04:13:00.000Z","type":"heading","level":0,"id":"h-The_first_paragraph_seems_self-contradictory-2018-10-10T04:13:00.000Z","replies":["c-VecLuci-2018-10-10T04:13:00.000Z-The_first_paragraph_seems_self-contradictory"],"text":"The first paragraph seems self-contradictory","linkableTitle":"The first paragraph seems self-contradictory"}--><h2 id="The_first_paragraph_seems_self-contradictory" data-mw-thread-id="h-The_first_paragraph_seems_self-contradictory-2018-10-10T04:13:00.000Z"><span data-mw-comment-start="" id="h-The_first_paragraph_seems_self-contradictory-2018-10-10T04:13:00.000Z"></span>The first paragraph seems self-contradictory<span data-mw-comment-end="h-The_first_paragraph_seems_self-contradictory-2018-10-10T04:13:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=23" title="Edit section: The first paragraph seems self-contradictory"><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-VecLuci-2018-10-10T04:13:00.000Z","type":"heading","level":0,"id":"h-The_first_paragraph_seems_self-contradictory-2018-10-10T04:13:00.000Z","replies":["c-VecLuci-2018-10-10T04:13:00.000Z-The_first_paragraph_seems_self-contradictory"]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-VecLuci-2018-10-10T04:13:00.000Z-The_first_paragraph_seems_self-contradictory","timestamp":"2018-10-10T04:13:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-VecLuci-2018-10-10T04:13:00.000Z","type":"heading","level":0,"id":"h-The_first_paragraph_seems_self-contradictory-2018-10-10T04:13:00.000Z","replies":["c-VecLuci-2018-10-10T04:13:00.000Z-The_first_paragraph_seems_self-contradictory"],"text":"The first paragraph seems self-contradictory","linkableTitle":"The first paragraph seems self-contradictory"}--></div></div></div> <p><span data-mw-comment-start="" id="c-VecLuci-2018-10-10T04:13:00.000Z-The_first_paragraph_seems_self-contradictory"></span>The first paragraph states that ECC is based on finite fields, as opposed to non-EC cryptography, which is based on plain Galois fields. However, the referenced article on <a href="/wiki/Finite_field" title="Finite field">finite fields</a> explains that finite fields and Galois fields are one and the same. I suspect the intended meaning is that non-EC crypto is based structures over finite fields which are not elliptic curves. If so, this is not clear from the text. I won't change the formulation myself, since I'm not an expert in the field. <small class="autosigned">— Preceding <a href="/wiki/Wikipedia:Signatures" title="Wikipedia:Signatures">unsigned</a> comment added by <a href="/w/index.php?title=User:VecLuci&action=edit&redlink=1" class="new" title="User:VecLuci (page does not exist)">VecLuci</a> (<a href="/wiki/User_talk:VecLuci#top" title="User talk:VecLuci">talk</a> • <a href="/wiki/Special:Contributions/VecLuci" title="Special:Contributions/VecLuci">contribs</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-VecLuci-2018-10-10T04:13:00.000Z-The_first_paragraph_seems_self-contradictory" class="ext-discussiontools-init-timestamplink">04:13, 10 October 2018 (UTC)</a></small><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-VecLuci-2018-10-10T04:13:00.000Z-The_first_paragraph_seems_self-contradictory"><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2018-10-10T04:13:00.000Z","author":"VecLuci","type":"comment","level":1,"id":"c-VecLuci-2018-10-10T04:13:00.000Z-The_first_paragraph_seems_self-contradictory","replies":[]}}--></span><span data-mw-comment-end="c-VecLuci-2018-10-10T04:13:00.000Z-The_first_paragraph_seems_self-contradictory"></span> </p> <div class="mw-heading mw-heading2 ext-discussiontools-init-section"><!--__DTSUBSCRIBEBUTTONDESKTOP__{"headingLevel":2,"name":"h-76.216.220.191-2021-12-28T04:00:00.000Z","type":"heading","level":0,"id":"h-Not_a_typo._521,_not_512.-2021-12-28T04:00:00.000Z","replies":["c-76.216.220.191-2021-12-28T04:00:00.000Z-Not_a_typo._521,_not_512."],"text":"Not a typo. 521, not 512.","linkableTitle":"Not a typo. 521, not 512."}--><h2 id="Not_a_typo._521,_not_512." data-mw-thread-id="h-Not_a_typo._521,_not_512.-2021-12-28T04:00:00.000Z"><span id="Not_a_typo._521.2C_not_512."></span><span data-mw-comment-start="" id="h-Not_a_typo._521,_not_512.-2021-12-28T04:00:00.000Z"></span>Not a typo. 521, not 512.<span data-mw-comment-end="h-Not_a_typo._521,_not_512.-2021-12-28T04:00:00.000Z"></span></h2><span class="mw-editsection"><span class="mw-editsection-bracket">[</span><a href="/w/index.php?title=Talk:Elliptic-curve_cryptography&action=edit&section=24" title="Edit section: Not a typo. 521, not 512."><span>edit</span></a><span class="mw-editsection-bracket">]</span></span><!--__DTELLIPSISBUTTON__{"threadItem":{"headingLevel":2,"name":"h-76.216.220.191-2021-12-28T04:00:00.000Z","type":"heading","level":0,"id":"h-Not_a_typo._521,_not_512.-2021-12-28T04:00:00.000Z","replies":["c-76.216.220.191-2021-12-28T04:00:00.000Z-Not_a_typo._521,_not_512."]}}--><div class="ext-discussiontools-init-section-bar"><div class="ext-discussiontools-init-section-metadata"><!--__DTLATESTCOMMENTTHREAD__{"id":"c-76.216.220.191-2021-12-28T04:00:00.000Z-Not_a_typo._521,_not_512.","timestamp":"2021-12-28T04:00:00.000Z"}__--><!--__DTCOMMENTCOUNT__1__--><!--__DTAUTHORCOUNT__1__--></div><div class="ext-discussiontools-init-section-actions"><!--__DTSUBSCRIBEBUTTONMOBILE__{"headingLevel":2,"name":"h-76.216.220.191-2021-12-28T04:00:00.000Z","type":"heading","level":0,"id":"h-Not_a_typo._521,_not_512.-2021-12-28T04:00:00.000Z","replies":["c-76.216.220.191-2021-12-28T04:00:00.000Z-Not_a_typo._521,_not_512."],"text":"Not a typo. 521, not 512.","linkableTitle":"Not a typo. 521, not 512."}--></div></div></div> <p><span data-mw-comment-start="" id="c-76.216.220.191-2021-12-28T04:00:00.000Z-Not_a_typo._521,_not_512."></span>"Five prime fields <span class="mwe-math-element"><span class="mwe-math-mathml-inline mwe-math-mathml-a11y" style="display: none;"><math xmlns="http://www.w3.org/1998/Math/MathML" alttext="{\displaystyle \mathbb {F} _{p}}"> <semantics> <mrow class="MJX-TeXAtom-ORD"> <mstyle displaystyle="true" scriptlevel="0"> <msub> <mrow class="MJX-TeXAtom-ORD"> <mi mathvariant="double-struck">F</mi> </mrow> <mrow class="MJX-TeXAtom-ORD"> <mi>p</mi> </mrow> </msub> </mstyle> </mrow> <annotation encoding="application/x-tex">{\displaystyle \mathbb {F} _{p}}</annotation> </semantics> </math></span><img src="https://wikimedia.org/api/rest_v1/media/math/render/svg/2d35035371db7bee93733c68c1802114c17d8bb4" class="mwe-math-fallback-image-inline mw-invert skin-invert" aria-hidden="true" style="vertical-align: -1.005ex; width:2.479ex; height:2.843ex;" alt="{\displaystyle \mathbb {F} _{p}}" /></span> for certain primes <i>p</i> of sizes 192, 224, 256, 384, and {{Not a typo|521}} bits. For each of the prime fields, one elliptic curve is recommended." </p><p>Should there be a footnote about that 521 not being a typo? It really is 521 (see <a rel="nofollow" class="external autonumber" href="https://crypto.stackexchange.com/questions/62083/why-would-diffie-hellman-group-21-be-521-bits-rather-than-512">[2]</a> among many, many sources) but it really looks like someone mis-typed "512". <a href="/wiki/Special:Contributions/76.216.220.191" title="Special:Contributions/76.216.220.191">76.216.220.191</a> (<a href="/wiki/User_talk:76.216.220.191" title="User talk:76.216.220.191">talk</a>) <a href="https://en.wikipedia.org/wiki/Talk:Elliptic-curve_cryptography#c-76.216.220.191-2021-12-28T04:00:00.000Z-Not_a_typo._521,_not_512." class="ext-discussiontools-init-timestamplink">04:00, 28 December 2021 (UTC)</a><span class="ext-discussiontools-init-replylink-buttons" data-mw-thread-id="c-76.216.220.191-2021-12-28T04:00:00.000Z-Not_a_typo._521,_not_512."><span class="ext-discussiontools-init-replylink-bracket">[</span><a class="ext-discussiontools-init-replylink-reply" role="button" tabindex="0" href="">reply</a><span class="ext-discussiontools-init-replylink-bracket">]</span><!--__DTELLIPSISBUTTON__{"threadItem":{"timestamp":"2021-12-28T04:00:00.000Z","author":"76.216.220.191","type":"comment","level":1,"id":"c-76.216.220.191-2021-12-28T04:00:00.000Z-Not_a_typo._521,_not_512.","replies":[]}}--></span><span data-mw-comment-end="c-76.216.220.191-2021-12-28T04:00:00.000Z-Not_a_typo._521,_not_512."></span> </p> <!-- NewPP limit report Parsed by mw‐web.eqiad.main‐6f657cdd5b‐b7l6r Cached time: 20250304094336 Cache expiry: 864000 Reduced expiry: true Complications: [vary‐revision‐sha1, vary‐revision‐id, show‐toc] DiscussionTools time usage: 0.049 seconds CPU time usage: 0.464 seconds Real time usage: 0.686 seconds Preprocessor visited node count: 1136/1000000 Post‐expand include size: 48135/2097152 bytes Template argument size: 58/2097152 bytes Highest expansion depth: 10/100 Expensive parser function count: 14/500 Unstrip recursion depth: 1/20 Unstrip post‐expand size: 39548/5000000 bytes Lua time usage: 0.241/10.000 seconds Lua memory usage: 4534466/52428800 bytes Number of Wikibase entities loaded: 0/400 --> <!-- Transclusion expansion time report (%,ms,calls,template) 100.00% 408.080 1 -total 55.48% 226.391 1 Template:WikiProject_banner_shell 32.16% 131.235 3 Template:Cite_journal 18.30% 74.666 1 Template:WikiProject_Cryptography 7.99% 32.596 1 Template:Reflist-talk 7.70% 31.436 1 Template:WikiProject_Numismatics 6.72% 27.428 1 Template:Reflist 5.68% 23.161 1 Template:WikiProject_Mathematics 4.48% 18.286 3 Template:Sourcecheck 4.29% 17.516 1 Template:WikiProject_Cryptocurrency --> <!-- Saved in parser cache with key enwiki:pcache:9973:|#|:idhash:canonical and timestamp 20250304094336 and revision id 1243174542. Rendering was triggered because: page-view --> </div><!--esi <esi:include src="/esitest-fa8a495983347898/content" /> --><noscript><img src="https://login.wikimedia.org/wiki/Special:CentralAutoLogin/start?useformat=desktop&type=1x1&usesul3=0" alt="" width="1" height="1" style="border: none; position: absolute;"></noscript> <div class="printfooter" data-nosnippet="">Retrieved from "<a dir="ltr" href="https://en.wikipedia.org/w/index.php?title=Talk:Elliptic-curve_cryptography&oldid=1243174542">https://en.wikipedia.org/w/index.php?title=Talk:Elliptic-curve_cryptography&oldid=1243174542</a>"</div></div> <div id="catlinks" class="catlinks" data-mw="interface"><div id="mw-normal-catlinks" class="mw-normal-catlinks"><a href="/wiki/Help:Category" title="Help:Category">Categories</a>: <ul><li><a href="/wiki/Category:C-Class_Cryptography_articles" title="Category:C-Class Cryptography articles">C-Class Cryptography articles</a></li><li><a href="/wiki/Category:High-importance_Cryptography_articles" title="Category:High-importance Cryptography articles">High-importance Cryptography articles</a></li><li><a href="/wiki/Category:C-Class_Computer_science_articles" title="Category:C-Class Computer science articles">C-Class Computer science articles</a></li><li><a href="/wiki/Category:High-importance_Computer_science_articles" title="Category:High-importance Computer science articles">High-importance Computer science articles</a></li><li><a href="/wiki/Category:WikiProject_Computer_science_articles" title="Category:WikiProject Computer science articles">WikiProject Computer science articles</a></li><li><a href="/wiki/Category:WikiProject_Cryptography_articles" title="Category:WikiProject Cryptography articles">WikiProject Cryptography articles</a></li><li><a href="/wiki/Category:C-Class_numismatic_articles" title="Category:C-Class numismatic articles">C-Class numismatic articles</a></li><li><a href="/wiki/Category:Low-importance_numismatic_articles" title="Category:Low-importance numismatic articles">Low-importance numismatic articles</a></li><li><a href="/wiki/Category:WikiProject_Numismatics_articles" title="Category:WikiProject Numismatics articles">WikiProject Numismatics articles</a></li><li><a href="/wiki/Category:C-Class_WikiProject_Cryptocurrency_articles" title="Category:C-Class WikiProject Cryptocurrency articles">C-Class WikiProject Cryptocurrency articles</a></li><li><a href="/wiki/Category:Mid-importance_WikiProject_Cryptocurrency_articles" title="Category:Mid-importance WikiProject Cryptocurrency articles">Mid-importance WikiProject Cryptocurrency articles</a></li><li><a href="/wiki/Category:WikiProject_Cryptocurrency_articles" title="Category:WikiProject Cryptocurrency articles">WikiProject Cryptocurrency articles</a></li><li><a href="/wiki/Category:C-Class_mathematics_articles" title="Category:C-Class mathematics articles">C-Class mathematics articles</a></li><li><a href="/wiki/Category:Mid-priority_mathematics_articles" title="Category:Mid-priority mathematics articles">Mid-priority mathematics articles</a></li></ul></div></div> </div> </main> </div> <div class="mw-footer-container"> <footer id="footer" class="mw-footer" > <ul id="footer-info"> <li id="footer-info-lastmod"> This page was last edited on 30 August 2024, at 23:20<span class="anonymous-show"> (UTC)</span>.</li> <li id="footer-info-copyright">Text is available under the <a href="/wiki/Wikipedia:Text_of_the_Creative_Commons_Attribution-ShareAlike_4.0_International_License" title="Wikipedia:Text of the Creative Commons Attribution-ShareAlike 4.0 International License">Creative Commons Attribution-ShareAlike 4.0 License</a>; additional terms may apply. By using this site, you agree to the <a href="https://foundation.wikimedia.org/wiki/Special:MyLanguage/Policy:Terms_of_Use" class="extiw" title="foundation:Special:MyLanguage/Policy:Terms of Use">Terms of Use</a> and <a href="https://foundation.wikimedia.org/wiki/Special:MyLanguage/Policy:Privacy_policy" class="extiw" title="foundation:Special:MyLanguage/Policy:Privacy policy">Privacy Policy</a>. Wikipedia® is a registered trademark of the <a rel="nofollow" class="external text" href="https://wikimediafoundation.org/">Wikimedia Foundation, Inc.</a>, a non-profit organization.</li> </ul> <ul id="footer-places"> <li id="footer-places-privacy"><a href="https://foundation.wikimedia.org/wiki/Special:MyLanguage/Policy:Privacy_policy">Privacy policy</a></li> <li id="footer-places-about"><a href="/wiki/Wikipedia:About">About Wikipedia</a></li> <li id="footer-places-disclaimers"><a href="/wiki/Wikipedia:General_disclaimer">Disclaimers</a></li> <li id="footer-places-contact"><a href="//en.wikipedia.org/wiki/Wikipedia:Contact_us">Contact Wikipedia</a></li> <li id="footer-places-wm-codeofconduct"><a href="https://foundation.wikimedia.org/wiki/Special:MyLanguage/Policy:Universal_Code_of_Conduct">Code of Conduct</a></li> <li id="footer-places-developers"><a href="https://developer.wikimedia.org">Developers</a></li> <li id="footer-places-statslink"><a href="https://stats.wikimedia.org/#/en.wikipedia.org">Statistics</a></li> <li id="footer-places-cookiestatement"><a href="https://foundation.wikimedia.org/wiki/Special:MyLanguage/Policy:Cookie_statement">Cookie statement</a></li> <li id="footer-places-mobileview"><a href="//en.m.wikipedia.org/w/index.php?title=Talk:Elliptic-curve_cryptography&mobileaction=toggle_view_mobile" class="noprint stopMobileRedirectToggle">Mobile view</a></li> </ul> <ul id="footer-icons" class="noprint"> <li id="footer-copyrightico"><a href="https://wikimediafoundation.org/" class="cdx-button cdx-button--fake-button cdx-button--size-large cdx-button--fake-button--enabled"><picture><source media="(min-width: 500px)" srcset="/static/images/footer/wikimedia-button.svg" width="84" height="29"><img src="/static/images/footer/wikimedia.svg" width="25" height="25" alt="Wikimedia Foundation" lang="en" loading="lazy"></picture></a></li> <li id="footer-poweredbyico"><a href="https://www.mediawiki.org/" class="cdx-button cdx-button--fake-button cdx-button--size-large cdx-button--fake-button--enabled"><picture><source media="(min-width: 500px)" srcset="/w/resources/assets/poweredby_mediawiki.svg" width="88" height="31"><img src="/w/resources/assets/mediawiki_compact.svg" alt="Powered by MediaWiki" lang="en" width="25" height="25" loading="lazy"></picture></a></li> </ul> </footer> </div> </div> </div> <div class="vector-header-container vector-sticky-header-container"> <div id="vector-sticky-header" class="vector-sticky-header"> <div class="vector-sticky-header-start"> <div class="vector-sticky-header-icon-start vector-button-flush-left vector-button-flush-right" aria-hidden="true"> <button class="cdx-button cdx-button--weight-quiet cdx-button--icon-only vector-sticky-header-search-toggle" tabindex="-1" data-event-name="ui.vector-sticky-search-form.icon"><span class="vector-icon mw-ui-icon-search mw-ui-icon-wikimedia-search"></span> <span>Search</span> </button> </div> <div role="search" class="vector-search-box-vue vector-search-box-show-thumbnail vector-search-box"> <div class="vector-typeahead-search-container"> <div class="cdx-typeahead-search cdx-typeahead-search--show-thumbnail"> <form action="/w/index.php" id="vector-sticky-search-form" class="cdx-search-input cdx-search-input--has-end-button"> <div class="cdx-search-input__input-wrapper" data-search-loc="header-moved"> <div class="cdx-text-input cdx-text-input--has-start-icon"> <input class="cdx-text-input__input" type="search" name="search" placeholder="Search Wikipedia"> <span class="cdx-text-input__icon cdx-text-input__start-icon"></span> </div> <input type="hidden" name="title" value="Special:Search"> </div> <button class="cdx-button cdx-search-input__end-button">Search</button> </form> </div> </div> </div> <div class="vector-sticky-header-context-bar"> <nav aria-label="Contents" class="vector-toc-landmark"> <div id="vector-sticky-header-toc" class="vector-dropdown mw-portlet mw-portlet-sticky-header-toc vector-sticky-header-toc vector-button-flush-left" > <input type="checkbox" id="vector-sticky-header-toc-checkbox" role="button" aria-haspopup="true" data-event-name="ui.dropdown-vector-sticky-header-toc" class="vector-dropdown-checkbox " aria-label="Toggle the table of contents" > <label id="vector-sticky-header-toc-label" for="vector-sticky-header-toc-checkbox" class="vector-dropdown-label cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only " aria-hidden="true" ><span class="vector-icon mw-ui-icon-listBullet mw-ui-icon-wikimedia-listBullet"></span> <span class="vector-dropdown-label-text">Toggle the table of contents</span> </label> <div class="vector-dropdown-content"> <div id="vector-sticky-header-toc-unpinned-container" class="vector-unpinned-container"> </div> </div> </div> </nav> <div class="vector-sticky-header-context-bar-primary" aria-hidden="true" ><span class="mw-page-title-namespace">Talk</span><span class="mw-page-title-separator">:</span><span class="mw-page-title-main">Elliptic-curve cryptography</span></div> </div> </div> <div class="vector-sticky-header-end" aria-hidden="true"> <div class="vector-sticky-header-icons"> <a href="#" class="cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only" id="ca-talk-sticky-header" tabindex="-1" data-event-name="talk-sticky-header"><span class="vector-icon mw-ui-icon-speechBubbles mw-ui-icon-wikimedia-speechBubbles"></span> <span></span> </a> <a href="#" class="cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only" id="ca-subject-sticky-header" tabindex="-1" data-event-name="subject-sticky-header"><span class="vector-icon mw-ui-icon-article mw-ui-icon-wikimedia-article"></span> <span></span> </a> <a href="#" class="cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only" id="ca-history-sticky-header" tabindex="-1" data-event-name="history-sticky-header"><span class="vector-icon mw-ui-icon-wikimedia-history mw-ui-icon-wikimedia-wikimedia-history"></span> <span></span> </a> <a href="#" class="cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only mw-watchlink" id="ca-watchstar-sticky-header" tabindex="-1" data-event-name="watch-sticky-header"><span class="vector-icon mw-ui-icon-wikimedia-star mw-ui-icon-wikimedia-wikimedia-star"></span> <span></span> </a> <a href="#" class="cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only" id="ca-edit-sticky-header" tabindex="-1" data-event-name="wikitext-edit-sticky-header"><span class="vector-icon mw-ui-icon-wikimedia-wikiText mw-ui-icon-wikimedia-wikimedia-wikiText"></span> <span></span> </a> <a href="#" class="cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only" id="ca-ve-edit-sticky-header" tabindex="-1" data-event-name="ve-edit-sticky-header"><span class="vector-icon mw-ui-icon-wikimedia-edit mw-ui-icon-wikimedia-wikimedia-edit"></span> <span></span> </a> <a href="#" class="cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--icon-only" id="ca-viewsource-sticky-header" tabindex="-1" data-event-name="ve-edit-protected-sticky-header"><span class="vector-icon mw-ui-icon-wikimedia-editLock mw-ui-icon-wikimedia-wikimedia-editLock"></span> <span></span> </a> </div> <div class="vector-sticky-header-buttons"> <a href="#" class="cdx-button cdx-button--fake-button cdx-button--fake-button--enabled cdx-button--weight-quiet cdx-button--action-progressive" id="ca-addsection-sticky-header" tabindex="-1" data-event-name="addsection-sticky-header"><span class="vector-icon mw-ui-icon-speechBubbleAdd-progressive mw-ui-icon-wikimedia-speechBubbleAdd-progressive"></span> <span>Add topic</span> </a> </div> <div class="vector-sticky-header-icon-end"> <div class="vector-user-links"> </div> </div> </div> </div> </div> <div class="mw-portlet mw-portlet-dock-bottom emptyPortlet" id="p-dock-bottom"> <ul> </ul> </div> <script>(RLQ=window.RLQ||[]).push(function(){mw.config.set({"wgHostname":"mw-web.codfw.main-7d4fddb9cf-2nwxj","wgBackendResponseTime":196,"wgDiscussionToolsPageThreads":[{"headingLevel":2,"name":"h-153.46.253.213-20230804141800","type":"heading","level":0,"id":"h-Security_analysis_of_ECC-20230804141800","replies":[{"timestamp":"20230804141800","author":"153.46.253.213","type":"comment","level":1,"id":"c-153.46.253.213-20230804141800-Security_analysis_of_ECC","replies":[]}]},{"headingLevel":2,"name":"h-Bdamm-2018-08-13T17:23:00.000Z","type":"heading","level":0,"id":"h-Cite_required-2018-08-13T17:23:00.000Z","replies":[{"timestamp":"2018-08-13T17:23:00.000Z","author":"Bdamm","type":"comment","level":1,"id":"c-Bdamm-2018-08-13T17:23:00.000Z-Cite_required","replies":[]}]},{"headingLevel":2,"name":"h-ArnoldReinhold-2006-04-16T12:10:00.000Z","type":"heading","level":0,"id":"h-Non-mathematical_description_needed-2006-04-16T12:10:00.000Z","replies":[{"timestamp":"2006-04-16T12:10:00.000Z","author":"ArnoldReinhold","type":"comment","level":1,"id":"c-ArnoldReinhold-2006-04-16T12:10:00.000Z-Non-mathematical_description_needed","replies":[{"timestamp":"2006-04-20T16:48:00.000Z","author":"GBL","type":"comment","level":3,"id":"c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z","replies":[]},{"timestamp":"2007-02-18T00:08:00.000Z","author":"82.43.137.103","type":"comment","level":2,"id":"c-82.43.137.103-2007-02-18T00:08:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z","replies":[]},{"timestamp":"2010-08-01T11:50:00.000Z","author":"93.97.48.217","type":"comment","level":2,"id":"c-93.97.48.217-2010-08-01T11:50:00.000Z-ArnoldReinhold-2006-04-16T12:10:00.000Z","replies":[]}],"displayName":"agr"},{"timestamp":"2010-04-19T13:38:00.000Z","author":"74.93.34.241","type":"comment","level":1,"id":"c-74.93.34.241-2010-04-19T13:38:00.000Z-Non-mathematical_description_needed","replies":[]},{"timestamp":"2012-01-07T06:58:00.000Z","author":"72.177.115.161","type":"comment","level":1,"id":"c-72.177.115.161-2012-01-07T06:58:00.000Z-Non-mathematical_description_needed","replies":[]}]},{"headingLevel":2,"name":"h-Augustojd-2006-04-02T14:25:00.000Z","type":"heading","level":0,"id":"h-Elliptic_curves_over_ternary_fields-2006-04-02T14:25:00.000Z","replies":[{"timestamp":"2006-04-02T14:25:00.000Z","author":"Augustojd","type":"comment","level":1,"id":"c-Augustojd-2006-04-02T14:25:00.000Z-Elliptic_curves_over_ternary_fields","replies":[]}]},{"headingLevel":2,"name":"h-GBL-2006-04-18T08:29:00.000Z","type":"heading","level":0,"id":"h-Pictures_and_intros-2006-04-18T08:29:00.000Z","replies":[{"timestamp":"2006-04-18T08:29:00.000Z","author":"GBL","type":"comment","level":1,"id":"c-GBL-2006-04-18T08:29:00.000Z-Pictures_and_intros","replies":[{"timestamp":"2006-04-18T08:45:00.000Z","author":"Matt Crypto","type":"comment","level":2,"id":"c-Matt_Crypto-2006-04-18T08:45:00.000Z-GBL-2006-04-18T08:29:00.000Z","replies":[{"timestamp":"2006-04-18T09:18:00.000Z","author":"ArnoldReinhold","type":"comment","level":3,"id":"c-ArnoldReinhold-2006-04-18T09:18:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z","replies":[{"timestamp":"2006-04-20T16:48:00.000Z","author":"GBL","type":"comment","level":4,"id":"c-GBL-2006-04-20T16:48:00.000Z-ArnoldReinhold-2006-04-18T09:18:00.000Z","replies":[]}],"displayName":"agr"},{"timestamp":"2006-04-21T12:26:00.000Z","author":"ArnoldReinhold","type":"comment","level":3,"id":"c-ArnoldReinhold-2006-04-21T12:26:00.000Z-Matt_Crypto-2006-04-18T08:45:00.000Z","replies":[],"displayName":"agr"}],"displayName":"— Matt Crypto"}]}]},{"headingLevel":2,"name":"h-","type":"heading","level":0,"id":"h-Resolved_issues","replies":[]},{"headingLevel":2,"name":"h-Lordspaz-2006-08-10T16:21:00.000Z","type":"heading","level":0,"id":"h-Factoring_link-2006-08-10T16:21:00.000Z","replies":[{"timestamp":"2006-08-10T16:21:00.000Z","author":"Lordspaz","type":"comment","level":1,"id":"c-Lordspaz-2006-08-10T16:21:00.000Z-Factoring_link","replies":[]}]},{"headingLevel":2,"name":"h-83.64.176.129-2006-08-27T11:13:00.000Z","type":"heading","level":0,"id":"h-Cryptographic_schemes-2006-08-27T11:13:00.000Z","replies":[{"timestamp":"2006-08-27T11:13:00.000Z","author":"83.64.176.129","type":"comment","level":1,"id":"c-83.64.176.129-2006-08-27T11:13:00.000Z-Cryptographic_schemes","replies":[]},{"timestamp":"2006-11-29T16:24:00.000Z","author":"BrunoX","type":"comment","level":1,"id":"c-BrunoX-2006-11-29T16:24:00.000Z-Cryptographic_schemes","replies":[]}]},{"headingLevel":2,"name":"h-Grendelkhan-2008-02-27T21:09:00.000Z","type":"heading","level":0,"id":"h-The_section_referencing_RSA_is_wrong.-2008-02-27T21:09:00.000Z","replies":[{"timestamp":"2008-02-27T21:09:00.000Z","author":"Grendelkhan","type":"comment","level":1,"id":"c-Grendelkhan-2008-02-27T21:09:00.000Z-The_section_referencing_RSA_is_wrong.","replies":[],"displayName":"grendel"},{"timestamp":"2008-02-27T21:34:00.000Z","author":"DRLB","type":"comment","level":1,"id":"c-DRLB-2008-02-27T21:34:00.000Z-The_section_referencing_RSA_is_wrong.","replies":[{"timestamp":"2008-02-28T21:30:00.000Z","author":"Grendelkhan","type":"comment","level":2,"id":"c-Grendelkhan-2008-02-28T21:30:00.000Z-DRLB-2008-02-27T21:34:00.000Z","replies":[{"timestamp":"2008-02-28T22:47:00.000Z","author":"DRLB","type":"comment","level":3,"id":"c-DRLB-2008-02-28T22:47:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z","replies":[]}],"displayName":"grendel"},{"timestamp":"2008-02-28T05:07:00.000Z","author":"Brusegadi","type":"comment","level":2,"id":"c-Brusegadi-2008-02-28T05:07:00.000Z-DRLB-2008-02-27T21:34:00.000Z","replies":[{"timestamp":"2008-02-28T21:30:00.000Z","author":"Grendelkhan","type":"comment","level":3,"id":"c-Grendelkhan-2008-02-28T21:30:00.000Z-Brusegadi-2008-02-28T05:07:00.000Z","replies":[{"timestamp":"2008-02-28T22:54:00.000Z","author":"ArnoldReinhold","type":"comment","level":4,"id":"c-ArnoldReinhold-2008-02-28T22:54:00.000Z-Grendelkhan-2008-02-28T21:30:00.000Z","replies":[{"timestamp":"2008-02-29T03:02:00.000Z","author":"Brusegadi","type":"comment","level":5,"id":"c-Brusegadi-2008-02-29T03:02:00.000Z-ArnoldReinhold-2008-02-28T22:54:00.000Z","replies":[{"timestamp":"2008-02-29T04:19:00.000Z","author":"ArnoldReinhold","type":"comment","level":6,"id":"c-ArnoldReinhold-2008-02-29T04:19:00.000Z-Brusegadi-2008-02-29T03:02:00.000Z","replies":[{"timestamp":"2008-02-29T06:35:00.000Z","author":"85.2.102.219","type":"comment","level":7,"id":"c-85.2.102.219-2008-02-29T06:35:00.000Z-ArnoldReinhold-2008-02-29T04:19:00.000Z","replies":[{"timestamp":"2008-02-29T06:44:00.000Z","author":"Brusegadi","type":"comment","level":8,"id":"c-Brusegadi-2008-02-29T06:44:00.000Z-85.2.102.219-2008-02-29T06:35:00.000Z","replies":[{"timestamp":"2008-03-01T19:12:00.000Z","author":"85.2.99.242","type":"comment","level":9,"id":"c-85.2.99.242-2008-03-01T19:12:00.000Z-Brusegadi-2008-02-29T06:44:00.000Z","replies":[{"timestamp":"2008-03-02T02:21:00.000Z","author":"ArnoldReinhold","type":"comment","level":10,"id":"c-ArnoldReinhold-2008-03-02T02:21:00.000Z-85.2.99.242-2008-03-01T19:12:00.000Z","replies":[{"timestamp":"2008-03-02T07:58:00.000Z","author":"85.2.53.248","type":"comment","level":11,"id":"c-85.2.53.248-2008-03-02T07:58:00.000Z-ArnoldReinhold-2008-03-02T02:21:00.000Z","replies":[{"timestamp":"2008-03-02T08:24:00.000Z","author":"Brusegadi","type":"comment","level":12,"id":"c-Brusegadi-2008-03-02T08:24:00.000Z-85.2.53.248-2008-03-02T07:58:00.000Z","replies":[{"timestamp":"2008-03-02T12:41:00.000Z","author":"ArnoldReinhold","type":"comment","level":13,"id":"c-ArnoldReinhold-2008-03-02T12:41:00.000Z-Brusegadi-2008-03-02T08:24:00.000Z","replies":[],"displayName":"agr"}]}]}],"displayName":"agr"}]}]}]}],"displayName":"agr"}]}],"displayName":"agr"}],"displayName":"grendel"}]}]}]},{"headingLevel":2,"name":"h-NoDepositNoReturn-2008-06-14T06:51:00.000Z","type":"heading","level":0,"id":"h-Curve25519-2008-06-14T06:51:00.000Z","replies":[{"timestamp":"2008-06-14T06:51:00.000Z","author":"NoDepositNoReturn","type":"comment","level":1,"id":"c-NoDepositNoReturn-2008-06-14T06:51:00.000Z-Curve25519","replies":[{"timestamp":"2013-10-12T15:40:00.000Z","author":"CesarB","type":"comment","level":2,"id":"c-CesarB-2013-10-12T15:40:00.000Z-NoDepositNoReturn-2008-06-14T06:51:00.000Z","replies":[]}]}]},{"headingLevel":2,"name":"h-Skippydo-2009-10-04T19:12:00.000Z","type":"heading","level":0,"id":"h-A_Set_forms_a_Group?-2009-10-04T19:12:00.000Z","replies":[{"timestamp":"2009-10-04T19:12:00.000Z","author":"Skippydo","type":"comment","level":1,"id":"c-Skippydo-2009-10-04T19:12:00.000Z-A_Set_forms_a_Group?","replies":[{"timestamp":"2010-02-03T20:15:00.000Z","author":"212.159.69.4","type":"comment","level":3,"id":"c-212.159.69.4-2010-02-03T20:15:00.000Z-Skippydo-2009-10-04T19:12:00.000Z","replies":[{"timestamp":"2010-02-03T23:06:00.000Z","author":"Dimawik","type":"comment","level":4,"id":"c-Dimawik-2010-02-03T23:06:00.000Z-212.159.69.4-2010-02-03T20:15:00.000Z","replies":[]}]}]}]},{"headingLevel":2,"name":"h-192.118.32.80-2009-12-13T08:46:00.000Z","type":"heading","level":0,"id":"h-Design_choices_and_ECC-2009-12-13T08:46:00.000Z","replies":[{"timestamp":"2009-12-13T08:46:00.000Z","author":"192.118.32.80","type":"comment","level":1,"id":"c-192.118.32.80-2009-12-13T08:46:00.000Z-Design_choices_and_ECC","replies":[]}]},{"headingLevel":2,"name":"h-84.157.71.42-2010-06-17T19:32:00.000Z","type":"heading","level":0,"id":"h-Broken_link_in_reference-2010-06-17T19:32:00.000Z","replies":[{"timestamp":"2010-06-17T19:32:00.000Z","author":"84.157.71.42","type":"comment","level":1,"id":"c-84.157.71.42-2010-06-17T19:32:00.000Z-Broken_link_in_reference","replies":[]}]},{"headingLevel":2,"name":"h-Doctorhook-2010-12-22T20:24:00.000Z","type":"heading","level":0,"id":"h-Generator-2010-12-22T20:24:00.000Z","replies":[{"timestamp":"2010-12-22T20:24:00.000Z","author":"Doctorhook","type":"comment","level":1,"id":"c-Doctorhook-2010-12-22T20:24:00.000Z-Generator","replies":[{"timestamp":"2010-12-22T22:48:00.000Z","author":"Schlafly","type":"comment","level":2,"id":"c-Schlafly-2010-12-22T22:48:00.000Z-Doctorhook-2010-12-22T20:24:00.000Z","replies":[],"displayName":"Roger"}]}]},{"headingLevel":2,"name":"h-Gryllida-2011-11-21T03:07:00.000Z","type":"heading","level":0,"id":"h-External_link_one-2011-11-21T03:07:00.000Z","replies":[{"timestamp":"2011-11-21T03:07:00.000Z","author":"Gryllida","type":"comment","level":1,"id":"c-Gryllida-2011-11-21T03:07:00.000Z-External_link_one","replies":[]},{"timestamp":"2011-12-01T11:08:00.000Z","author":"BeEs1","type":"comment","level":1,"id":"c-BeEs1-2011-12-01T11:08:00.000Z-External_link_one","replies":[]}]},{"headingLevel":2,"name":"h-GromXXVII-2012-06-25T22:20:00.000Z","type":"heading","level":0,"id":"h-Quantum_Computing_Attack_Citations-2012-06-25T22:20:00.000Z","replies":[{"timestamp":"2012-06-25T22:20:00.000Z","author":"GromXXVII","type":"comment","level":1,"id":"c-GromXXVII-2012-06-25T22:20:00.000Z-Quantum_Computing_Attack_Citations","replies":[{"timestamp":"2012-06-26T01:58:00.000Z","author":"Skippydo","type":"comment","level":2,"id":"c-Skippydo-2012-06-26T01:58:00.000Z-GromXXVII-2012-06-25T22:20:00.000Z","replies":[{"timestamp":"2016-09-12T04:18:00.000Z","author":"Jimw338","type":"comment","level":3,"id":"c-Jimw338-2016-09-12T04:18:00.000Z-Skippydo-2012-06-26T01:58:00.000Z","replies":[]}]}]},{"timestamp":"2017-11-03T18:40:00.000Z","author":"Tarcieri","type":"comment","level":1,"id":"c-Tarcieri-2017-11-03T18:40:00.000Z-Quantum_Computing_Attack_Citations","replies":[]}]},{"headingLevel":2,"name":"h-24.126.40.36-2013-09-06T17:29:00.000Z","type":"heading","level":0,"id":"h-Possible_NSA_backdoor-2013-09-06T17:29:00.000Z","replies":[{"timestamp":"2013-09-06T17:29:00.000Z","author":"24.126.40.36","type":"comment","level":1,"id":"c-24.126.40.36-2013-09-06T17:29:00.000Z-Possible_NSA_backdoor","replies":[{"timestamp":"2013-09-06T20:39:00.000Z","author":"Mightyname","type":"comment","level":2,"id":"c-Mightyname-2013-09-06T20:39:00.000Z-24.126.40.36-2013-09-06T17:29:00.000Z","replies":[{"timestamp":"2013-09-11T15:35:00.000Z","author":"Yakatz","type":"comment","level":3,"id":"c-Yakatz-2013-09-11T15:35:00.000Z-Mightyname-2013-09-06T20:39:00.000Z","replies":[{"timestamp":"2013-09-21T10:10:00.000Z","author":"Dbachmann","type":"comment","level":4,"id":"c-Dbachmann-2013-09-21T10:10:00.000Z-Yakatz-2013-09-11T15:35:00.000Z","replies":[{"timestamp":"2014-01-03T12:46:00.000Z","author":"DokReggar","type":"comment","level":5,"id":"c-DokReggar-2014-01-03T12:46:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z","replies":[]},{"timestamp":"2014-03-17T15:22:00.000Z","author":"130.89.106.70","type":"comment","level":5,"id":"c-130.89.106.70-2014-03-17T15:22:00.000Z-Dbachmann-2013-09-21T10:10:00.000Z","replies":[{"timestamp":"2014-03-17T18:09:00.000Z","author":"Quondum","type":"comment","level":6,"id":"c-Quondum-2014-03-17T18:09:00.000Z-130.89.106.70-2014-03-17T15:22:00.000Z","replies":[]}]}],"displayName":"dab"}]}]}]},{"timestamp":"2015-01-22T15:42:00.000Z","author":"68.45.155.10","type":"comment","level":1,"id":"c-68.45.155.10-2015-01-22T15:42:00.000Z-Possible_NSA_backdoor","replies":[]}]},{"headingLevel":2,"name":"h-John_Palkovic-2014-11-03T15:37:00.000Z","type":"heading","level":0,"id":"h-Group_Order-2014-11-03T15:37:00.000Z","replies":[{"timestamp":"2014-11-03T15:37:00.000Z","author":"John Palkovic","type":"comment","level":1,"id":"c-John_Palkovic-2014-11-03T15:37:00.000Z-Group_Order","replies":[{"timestamp":"2015-01-15T21:33:00.000Z","author":"Gurnec","type":"comment","level":3,"id":"c-Gurnec-2015-01-15T21:33:00.000Z-John_Palkovic-2014-11-03T15:37:00.000Z","replies":[]}],"displayName":"John"}]},{"headingLevel":2,"name":"h-InternetArchiveBot-2016-09-11T20:15:00.000Z","type":"heading","level":0,"id":"h-External_links_modified-2016-09-11T20:15:00.000Z","replies":[{"timestamp":"2016-09-11T20:15:00.000Z","author":"InternetArchiveBot","type":"comment","level":1,"id":"c-InternetArchiveBot-2016-09-11T20:15:00.000Z-External_links_modified","replies":[]}]},{"headingLevel":2,"name":"h-InternetArchiveBot-2016-12-23T02:32:00.000Z","type":"heading","level":0,"id":"h-External_links_modified_2-2016-12-23T02:32:00.000Z","replies":[{"timestamp":"2016-12-23T02:32:00.000Z","author":"InternetArchiveBot","type":"comment","level":1,"id":"c-InternetArchiveBot-2016-12-23T02:32:00.000Z-External_links_modified_2","replies":[]}]},{"headingLevel":2,"name":"h-InternetArchiveBot-2017-09-19T21:14:00.000Z","type":"heading","level":0,"id":"h-External_links_modified_3-2017-09-19T21:14:00.000Z","replies":[{"timestamp":"2017-09-19T21:14:00.000Z","author":"InternetArchiveBot","type":"comment","level":1,"id":"c-InternetArchiveBot-2017-09-19T21:14:00.000Z-External_links_modified_3","replies":[]}]},{"headingLevel":2,"name":"h-198.52.160.180-2019-12-06T20:30:00.000Z","type":"heading","level":0,"id":"h-Algorithm_needed-2019-12-06T20:30:00.000Z","replies":[{"timestamp":"2019-12-06T20:30:00.000Z","author":"198.52.160.180","type":"comment","level":1,"id":"c-198.52.160.180-2019-12-06T20:30:00.000Z-Algorithm_needed","replies":[]}]},{"headingLevel":2,"name":"h-VecLuci-2018-10-10T04:13:00.000Z","type":"heading","level":0,"id":"h-The_first_paragraph_seems_self-contradictory-2018-10-10T04:13:00.000Z","replies":[{"timestamp":"2018-10-10T04:13:00.000Z","author":"VecLuci","type":"comment","level":1,"id":"c-VecLuci-2018-10-10T04:13:00.000Z-The_first_paragraph_seems_self-contradictory","replies":[]}]},{"headingLevel":2,"name":"h-76.216.220.191-2021-12-28T04:00:00.000Z","type":"heading","level":0,"id":"h-Not_a_typo._521,_not_512.-2021-12-28T04:00:00.000Z","replies":[{"timestamp":"2021-12-28T04:00:00.000Z","author":"76.216.220.191","type":"comment","level":1,"id":"c-76.216.220.191-2021-12-28T04:00:00.000Z-Not_a_typo._521,_not_512.","replies":[]}]}],"wgPageParseReport":{"discussiontools":{"limitreport-timeusage":"0.049"},"limitreport":{"cputime":"0.464","walltime":"0.686","ppvisitednodes":{"value":1136,"limit":1000000},"postexpandincludesize":{"value":48135,"limit":2097152},"templateargumentsize":{"value":58,"limit":2097152},"expansiondepth":{"value":10,"limit":100},"expensivefunctioncount":{"value":14,"limit":500},"unstrip-depth":{"value":1,"limit":20},"unstrip-size":{"value":39548,"limit":5000000},"entityaccesscount":{"value":0,"limit":400},"timingprofile":["100.00% 408.080 1 -total"," 55.48% 226.391 1 Template:WikiProject_banner_shell"," 32.16% 131.235 3 Template:Cite_journal"," 18.30% 74.666 1 Template:WikiProject_Cryptography"," 7.99% 32.596 1 Template:Reflist-talk"," 7.70% 31.436 1 Template:WikiProject_Numismatics"," 6.72% 27.428 1 Template:Reflist"," 5.68% 23.161 1 Template:WikiProject_Mathematics"," 4.48% 18.286 3 Template:Sourcecheck"," 4.29% 17.516 1 Template:WikiProject_Cryptocurrency"]},"scribunto":{"limitreport-timeusage":{"value":"0.241","limit":"10.000"},"limitreport-memusage":{"value":4534466,"limit":52428800}},"cachereport":{"origin":"mw-web.eqiad.main-6f657cdd5b-b7l6r","timestamp":"20250304094336","ttl":864000,"transientcontent":true}}});});</script> </body> </html>