素因子分解算法python语言_[原创]magma,/PARI/GP中文文档ECC初步:

最新推荐文章于 2023-01-17 23:37:55 发布
最新推荐文章于 2023-01-17 23:37:55 发布
阅读量466 收藏
点赞数
文章标签: 素因子分解算法python语言

1

2011-2-10 16:13

Example: Diffie-Hellman key exchange

q := RandomPrime (160: Proof := false);

q;

Ilog2 (q);             2进制位数

repeat

got_it, p := RandomPrime (1024, 1, q, 1000 : Proof := false);

until got_it;

> p;

Ilog2 (p);          2进制位数

tmp := Random(p);

exp := (p - 1) div q;

> g := Modexp (tmp, exp, p);

> g;

Modexp (g, q, p);

A_priv := Random (p-1);

> A_pub := Modexp (g, A_priv, p);

> B_priv := Random (p-1);

> B_pub := Modexp (g, B_priv, p);

> A_sec := Modexp (B_pub, A_priv, p);

> B_sec := Modexp (A_pub, B_priv, p);

A_sec eq B_sec;

A_sec;

1442887065756557081811008885496150418808858816401

159

1651626359469589873102835252970210623774108012103316760123483790491795927792372\

0911163345405386569084216526903485568850519787298376968456439442825925293266689\

5321313697674085713119066460654757154900942213051543220536646001952121896818924\

040862028079007349903890347825426890204440412990981184175301600052642601

1023

8396531707945536590388438602520909841199441225289405372543328552794730731140493\

2359964273401131497951715591859147928675735938983332715282809702511549282280553\

7257551736967439068907583093988590627324758408980681857356806656895703862655226\

21592741188383919546746662841766547810852182714292042706175121823048920

1

true

5144176322605153756984581571117138785000992400326941258925591946874878623433746\

0604279696565409179426210808910383200849384907133032735704943374046999690951643\

2436947000024050385014162242822642019010522453269701147220601715739683999992133\

82708798156652799536437768737718826497886878455615884529095508002441544

Hastad’s broadcast attack on RSA

一种广播攻击RSA,原理是孙子定理,M是明文

1024位的3个不同素因子密匙加密,密文只要三次出现在广播中,就能被还原为明文

函数都有,方便啊

孙子谁知道叫啥名?

N1 := RSAModulus (1024, 3);

N1;

N2 := RSAModulus (1024, 3);

> N2;

N3 := RSAModulus (1024, 3);

> N3;

N1 lt N2;

N2 lt N3;

M := Random (N3);

M;

C1 := Modexp (M, 3, N1);

C2 := Modexp (M, 3, N2);

> C3 := Modexp (M, 3, N3);

> C1;

C2;

C3;

ciphertexts := [C1, C2, C3];

moduli := [N1, N2, N3];

> Cprime := CRT (ciphertexts, moduli);

> Cprime;

Iroot (Cprime, 3);

1191394973498639734758356886734022915243239449328167951285523220116137226774353\

9176019504000834314079698783061932470536725623631410436123478027064344268960243\

7364284793780727456801948423015783019014512753812345243506372098537224435020854\

359848856524899561390988681729562607944000515285564642890387968646827499

1284091640527210186131874393840544095987650982828046236855841544838591571499173\

1866298541100429948705032672190648692663519160856065108275130184865262172800857\

3386565091923148415442237752544661929267855180513383588291450048199800697918748\

507167493425580851595456232294309693917376008568189561641242801970999677

1079659736287944257378805435089043111076737452648956984975669952706815978980298\

6622188200179949052343959127642578022293418583950295309545564738766859693242769\

4693380883751647379784344459796750774988626755269852596427483690743738731140884\

348140421109007063610908180910131454760258796787470341628217212597348237

true

false

1065483725312210764607948804191105051984095256035964212419006647799252157478385\

6334603416677964537633362076010548745454399657943033796697306916247944219685014\

0939319424884142058105500815238082740397639628813948210482176247050158934106124\

746653542454869790679475333470275013517239162467216886783299705473412909

1924084294474065804173347971493633606471329611790262546576596759680624764052803\

5603855496570716546643207106535414986292485635347396779535480273771479179167217\

3693328315426059122287765033711613884956437027782317188733396126117328636526178\

56045629675048923525525556790596952847575213284810439009623226349241181

2376889508979652383834732793528970881037787915415560763427681345964168211539753\

9459811216757749141242641330948276279731548487493134449049621818003288666629642\

7107106879554253057484348013589960001869058474748052966098867953029654679461620\

23532932526818702053588818851843636547054094394130454387535970722272602

9829945919241924969246733746114350726954659414719450874216585166522394276356794\

2155581726235090790726244419011366315696252177358211842671261671704146797693032\

4127009226220296583554431629646178702563947023823646933477546640724280367260704\

60397221620150214727998193463203577893197619215531865820102008407048363

1209596332738531401730087906166277185149003439550896493434779023414176254956043\

2315223272998309692796071291550238017300406144851952116784618699424318350163383\

0623537152218766553695974915925794283159542108168794504904334776472147979805682\

6758534588794554448343265778153818561455153300516738560092882314196842832629908\

0893739204365221773895249374020378141139662196321124225421875676893136477652571\

3686545436735346949304011400137889800182213384268514452639716065687280905474249\

3802438205591679005814273361702058789755016475321682260206347613282853189661176\

9660825254532364209370935104037356711766047967220791151295375750619273595873632\

4374572156522931220632061230921514554158001662097184542577633122532256834871889\

8076147371585186855569055341508199943243209040147941375606027322104397902862026\

8383567305221626770449237160147609033402505962655670767253025758997906062878114\

56219237300141333155757438706370370416335624953661405429

1065483725312210764607948804191105051984095256035964212419006647799252157478385\

6334603416677964537633362076010548745454399657943033796697306916247944219685014\

0939319424884142058105500815238082740397639628813948210482176247050158934106124\

746653542454869790679475333470275013517239162467216886783299705473412909

-----------------------------

http://magma.maths.usyd.edu.au/magma/pdf/examples.pdf

Chapter 28

Elliptic Curve Cryptography

28.5. EXAMPLE: ECDSA------------例子很易懂,但选安全曲线就难了

随机选一次系数a,常数b,X96-2荐a=-3,因为在常规表示和雅可比式变换中,有个表达式a=-3最方便,硬件计算快

p := RandomPrime (100);

> K := GF(p);

E := EllipticCurve ([Random(K), Random(K)]);

E;

p := RandomPrime (100);

> K := GF(p);

E := EllipticCurve ([-3, Random(K)]);

E;

为了选安全曲线, repeat重复选:

p := RandomPrime (100);

> K := GF(p);

> repeat

repeat> E := EllipticCurve ([-3, Random(K)]);

repeat> fo := FactoredOrder (E);---------------要大素数阶

repeat> n := fo[#fo][1];

repeat> until Ilog2 (n) ge 88; ------------------2进制位比域小

> Ilog2 (n);

IsSupersingular(E);-------------------------------要非超奇异,

P=100位,a随机选签名过程

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

69611886555621063506166355926 over GF(157135449112378660707313000637)

[ <2, 2>, <3, 1>, <7, 2>, <17, 1>, <181, 1>, <2099, 1>, <596447989, 1>,

<69372018557, 1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

65388471706181964183230162768 over GF(157135449112378660707313000637)

[ <73, 1>, <55079, 1>, <8304629, 1>, <4705925295986567, 1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

126592445929249859850032581477 over GF(157135449112378660707313000637)

[ <5431, 1>, <7687, 1>, <3763894893517636036879, 1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

111827571730976256692740142243 over GF(157135449112378660707313000637)

[ <2, 3>, <3, 1>, <17, 1>, <36583, 1>, <10527728854582845299309, 1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

147021577696058357454344453248 over GF(157135449112378660707313000637)

[ <2, 1>, <3, 3>, <406169, 1>, <3777283, 1>, <1896680213262977, 1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

59756192161956097905575248378 over GF(157135449112378660707313000637)

[ <2, 1>, <3, 1>, <151, 1>, <263, 1>, <617, 1>, <9941, 1>, <107516467533934661,

1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

55629840512052832330840836298 over GF(157135449112378660707313000637)

[ <2, 2>, <7, 1>, <151, 1>, <37165432618821789909906481, 1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

151057113700827850188583571502 over GF(157135449112378660707313000637)

[ <2, 2>, <11, 1>, <17, 1>, <29, 1>, <640740839, 1>, <11305562359133503, 1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

76416094973710013389958980325 over GF(157135449112378660707313000637)

[ <2, 1>, <3, 2>, <7, 1>, <11093, 1>, <112422855763737340508257, 1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

139000244472820858413576632031 over GF(157135449112378660707313000637)

[ <2, 2>, <3, 1>, <5, 1>, <37, 1>, <607, 1>, <12746273, 1>, <9148487302593389,

1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

66914405844156577851178843582 over GF(157135449112378660707313000637)

[ <3, 1>, <7, 1>, <23, 1>, <8423, 1>, <38624266031016342385927, 1> ]

Elliptic Curve defined by y^2 = x^3 + 157135449112378660707313000634*x +

143325094039473088283650924294 over GF(157135449112378660707313000637)

[ <2, 1>, <3, 1>, <5, 2>, <1047569660749190309106427747, 1> ]

89

false

安全曲线重多,100位下就有上面这些,选好了安全曲线,下面就找了个基点,并求基点的阶,基点更多,安全曲线数*基点数*离散指数------大O,小O,ECC的安全指数可能真是指数级。。。

用的是下面曲线:

y^2 = x^3 + 157135449112378660707313000634*x +

143325094039473088283650924294 over GF(157135449112378660707313000637)

[ <2, 1>, <3, 1>, <5, 2>, <1047569660749190309106427747, 1> ]

n;----------------------------------------------------E中n阶子循环群这

P := Random(E) * (Order(E) div n);        -----找了个基点

P;

Order(P) eq n; -------------------------------------基点的阶

d := Random(n);

Q := d*P;                                        随机选的d

Q;

M := Random(n);                                甲方 要发的明文

> M;

k := Random(n);                                   甲方随机选k

kp_seq := ElementToSequence (k*P);          计算点乘k*P,表示成点

kp_seq;

r := (IntegerRing()!kp_seq[1]) mod n;   不管k*P多大 都要mod n

s := (Modinv (k, n) * (M + d*r)) mod n;   经过求模逆,模乘,模加,签好了

> s;

r in [1..n-1];

s in [1..n-1];

w := Modinv (s, n);                         下面是乙方验证,也要经过求点乘,模逆,模乘,模加

u1 := M*w mod n;

u2 := r*w mod n;

temp := u1*P + u2*Q;

temp;

temp_seq := ElementToSequence (temp);

> v := (IntegerRing()!temp_seq[1]) mod n;

> v;

v eq r;                                                        验证EQUAL,OK

Elliptic Curve defined by y^2 = x^3 + 546406580005247203836151279129*x +

230151935666323598335959051729 over GF(966371258750148727567627105897)

[ <3, 2>, <149, 1>, <720634793997127170564126541, 1> ]三个循环子群,,经过上面REPEAT选,已知攻击都被棑除,阶720634793997127170564126541的中的点安全,循环子群点阶如过恰=曲线阶,会被多项式级的同构攻击。不过恰=可能性太小了

89

false

720634793997127170564126541

(156817043070046010480672869099 : 138406249392994102180675488148 : 1)基点座标

true

(823452749814859867769709264217 : 409839153103190558971036321686 : 1)

314368839904612579301554984    计算点乘d*P;

[ 750750203409670127154353456215, 274010688382591384982046792082, 1 ]

337341060791448293483425930          明文,已被表示成曲线的点,明文,域元素,曲线点可互相转化。X9-62里有,有三种形式,不太难懂,这ElementToSequence函数一定包括了这功能

true

true

(750750203409670127154353456215 : 274010688382591384982046792082 : 1)

569382858660742597097727034       计算点乘  k*P

true

下面P=100位,a=-3签名过程:

Elliptic Curve defined by y^2 = x^3 + 344566048772404937900222995696*x +

122613265914087061833345770776 over GF(344566048772404937900222995699)

[ <2, 4>, <173, 1>, <70009, 1>, <1778085018158714891237, 1> ]

Elliptic Curve defined by y^2 = x^3 + 344566048772404937900222995696*x +

44333872090216421338353867400 over GF(344566048772404937900222995699)

[ <108421, 1>, <189401, 1>, <16779414654143966807, 1> ]

Elliptic Curve defined by y^2 = x^3 + 344566048772404937900222995696*x +

168372939479581669368060393010 over GF(344566048772404937900222995699)

[ <2, 2>, <5, 1>, <41, 1>, <420202498502932494553451531, 1> ]

88

false

420202498502932494553451531

(19629684444028095682059018614 : 313332333218081159316329285802 : 1)

true

(185904318135579502698063049655 : 337526345404850851784130027470 : 1)

210595421815090177972701173

[ 71071577049370184377915299896, 30419639182367625537958244039, 1 ]

178411782669416518303895082

true

true

(71071577049370184377915299896 : 30419639182367625537958244039 : 1)

57354802374592798381991157

true

估记最少得把序,扩域多项式环搞透才能下面

http://magma.maths.usyd.edu.au/magma/pdf/examples.pdf

格攻击

Chapter 29

LLL and Lattice Based Ciphers

格密码

Chapter 33

Miscellaneous

NTRU

weixin_39910481
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
PyPari:PariGp 计算机代数系统的 Python 接口
06-21
派瑞 Pari/Gp 计算机代数系统的 Python 接口 目前有效使用该工具需要对 Ctypes 和 PariLib 在库模式下的使用有一定的了解。 我正在通过将 GP 表达式与其适当的 pari-library 函数调用联系起来来实现 gp 功能。 现在,假设您已经安装了 pari 并且在 /usr/lib 中有 libpari.so,只需在 python shell 中导入 PyPari.py。 数字类型、字符串和列表都应该自然地转换为它们的类似物 cia Ctypes。 字符串参数将由 Pari 语法分析器评估,这样我们就可以自然地将多项式和矩阵之类的东西传递给 parilib 函数。 创建 Pari Gen 对象是通过调用 PyPari.Gen 类构造函数来处理的,将字符串参数传递给这个构造函数是直接创建列表、矩阵、多项式等的首选方法。
python 因子分解
weixin_30498921的博客
06-26 1205
在使用python解决问题之前,我们先说一下,什么是因子分解 所谓因子分解就是,先找这个数的所有约数(约数即:a%b == 0,也就是a可以被b整除) 例如:20的约数集合为 [1, 2, 5, 10, 20] 那么因子分解呢? 就是从最小的数约数开始除,也就是这个除数要满足两个条件,一是约数,二是数 那么这里20的最小的约数是2,所以我们从2开始除,并且一直除到不能被整出为...
因子分解
Snakeflute的博客
08-02 2021
将一个正整数分解成多个数因子(可重复)的乘积。 解题思路: 从小到大,利用埃氏筛的思想,变遍历,边记录,复杂度O(1)。代码#include<stdio.h> int main() { int n; //输入一个数,将其分解因子 scanf("%d",&n); while(n) { static int flag = 1;
python解超越方程_初试在Python中使用PARI/GP
weixin_32531655的博客
02-11 930
BoJone很喜欢Python,也很喜欢数论,所以就喜欢利用Python玩数论了。平时也喜欢自己动手写一些数论函数,毕竟Python支持大整数高精度运算,这点是非常好的;但是,在很多实际应用中,还是希望能有一个现成的数论函数库来调用。之前尝试过数学研发网的HugeCalc库,但是由于各种不熟悉不了了之。后来论坛上的无心老兄推荐了PARI/GP,小试一下,居然在Python上成功调用了。以后再也不用...
求解因子
一条菜狗的博客
01-14 8490
因子的定义:对于一个数n来说,将它的因子拆到若干个数相乘,这些数被称为n的因子。 比如 12可以被拆为2 6 6不是质数,可以继续拆为2*3 所以最后12的因子就是 2, 3(不计重复元) -------------------------------------------------分割线--------------------------------------- 前言...
Python库 | magma_suite-0.2.7-py3.7.egg
04-19
资源分类:Python库 所属语言Python 资源全名:magma_suite-0.2.7-py3.7.egg 资源来源:官方 安装方法:https://lanzao.blog.csdn.net/article/details/101784059
Python库 | magma_suite-1.0.0b1-py3-none-any.whl
05-07
资源分类:Python库 所属语言Python 资源全名:magma_suite-1.0.0b1-py3-none-any.whl 资源来源:官方 安装方法:https://lanzao.blog.csdn.net/article/details/101784059
EDA/PLD中的中芯与Magma合作ASIC设计项目
12-09
在电子设计自动化(EDA)和可编程逻辑器件(PLD)领域,中芯国际与Magma的合作对于ASIC(Application-Specific Integrated Circuit)设计项目具有重大意义。这次合作旨在提升芯片设计效率和质量,以满足日益增长的...
EDA/PLD中的EDA工具介绍之Magma工具简介
11-11
在电子设计自动化(EDA)领域,Magma是一个关键的工具集,主要用于复杂集成电路(IC)和可编程逻辑器件(PLD)的设计与实现。Magma的工具系列包括Blast Create、Blast RTL、Blast Fusion以及Blast Noise和Blast Plan...
计算机代数系统对比:Computer Algebra Software: Mathematica, Maxima, Pari/GP
weixin_33941350的博客
03-31 354
Computer Algebra Software: Mathematica, Maxima, Pari/GP from Hyperpolyglot a side-by-side reference sheetmathematicama...
PARI/GP的Core i版本的手工编译版
05-01
自己用mingw gcc 4.6.2编译的PARI/GP数学软件,使用gmp 5.0.4包,不带readline,需Core i处理器。 详细编译过程参见: http://bbs.emath.ac.cn/thread-4274-1-1.html
python3分解质因数_Python 质因数分解的研究
weixin_39927158的博客
12-04 396
用人止太太的Griffindor镇贴!今天刚收到的,什么神仙画画[cry][cry]分解质因数的方法1:Drifter_y 提供的方法如下:def fun():num=int(input("please input a number:"))if not isinstance(num,int) or num <0:print("it is not a correct number")elif ...
python:实现RSA因子算法(附完整源码)
希望我的博客,能帮上你解决学习中工作中所遇到的问题
07-19 277
python:实现RSA因子算法
算法训练 因子去重
yanzi_ing的博客
07-31 128
试题 算法训练 因子去重 资源限制 时间限制:1.0s 内存限制:256.0MB 问题描述   给定一个正整数n,求一个正整数p,满足p仅包含n的所有因子,且每个因子的次数不大于1 输入格式   一个整数,表示n 输出格式   输出一行,包含一个整数p。 样例输入 1000 样例输出 10 数据规模和约定   n<=10^12   样例解释:n=1000=2^353,p=2*5=10 import java.util.Scanner; public class Main { public
PARI/GP 语言:从入门到实现大数判定与大数分解
weixin_43817941的博客
01-17 1727
本文详细介绍了 PARI/GP 软件的下载安装和编程入门,并进一步通过该语言实现了大数判定和大数分解。在大数证明方面明显优于NZMATH中的ECPP,在大数分解方面,也优于之前提供的在线大整数分解"Integer factorization calculator"。并在文章的最后介绍了 Wagstaff 数这一与本文相关的内容。
在C++中调用PARI/GP库的方法
zorchp
09-29 883
-
PTA 因子分解
TOBEALISTENNER的博客
04-11 2150
7-11 因子分解(20 分)给定某个正整数 N,求其因子分解结果,即给出其因式分解表达式 N=p​1​​​k​1​​​​⋅p​2​​​k​2​​​​⋯p​m​​​k​m​​​​。输入格式:输入long int范围内的正整数 N。输出格式:按给定格式输出N的因式分解表达式,即 N=p1^k1*p2^k2*…*pm^km,其中pi为因子并要求由小到大输出,指数ki为pi的个数;当ki为1即因...
判断数(Miller-Rabin、筛选)与 求数因子(Pollard rho、试除)
中转站
03-17 434
Miller-Rabin算法: 用来确定一个指定的数N是否是数。 费马小定理: 如果p是数,那么p满足:(对任意a&gt;=1) 如果我们指定一个a,如果n不满足费马定理,那么n不是数(即合数)。(逆否) 但,在基数a下,如果n满足费马定理,n有可能是数。 用一个样本a判断,过程会出错,但机会非常少:(不证明) 在基数2下,10000内的n值,有22个值判断错误。...
Python分解质因数
dingyiwen_2012的博客
12-31 3088
Python分解质因数
Download magma from http://icl.utk.edu/projectsfiles/magma/downloads/magma-2.5.4.tar.gz then build and install to /usr/local/magma
最新发布
03-29
However, I can provide you with the general steps to build and install Magma on Linux: 1. Download the Magma source code from http://icl.utk.edu/projectsfiles/magma/downloads/magma-2.5.4.tar.gz 2. ...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值