Ashwin Deopurkar

2023-10-13

Abstract:We define and study the Weil pairing on the moduli of twisted curves. If $X$ is a twisted curve, then we can combinatorially describe a certain subgroup and a quotient group of $\text{Pic}(X)[2]$ that are Weil dual. Moreover, the pairing between them can be realized as combinatorial integration-homology pairing on the dual graph of $X$. We also prove that the kernel of the tropicalization is isotropic for the Weil pairing.

Algebraic Geometry

Katherine E. Stange

2024-06-24

Abstract:Let $E$ be an elliptic curve with complex multiplication by a ring $R$, where $R$ is an order in an imaginary quadratic field or quaternion algebra. We define sesquilinear pairings ($R$-linear in one variable and $R$-conjugate linear in the other), taking values in an $R$-module, generalizing the Weil and Tate-Lichtenbaum pairings.

Number Theory,Algebraic Geometry

Eleni Agathocleous,Antoine Joux,Daniele Taufer

2024-06-05

Abstract:We call a pair of distinct prime powers $(q_1,q_2) = (p_1^{a_1},p_2^{a_2})$ a Hasse pair if $|\sqrt{q_1}-\sqrt{q_2}| \leq 1$. For such pairs, we study the relation between the set $\mathcal{E}_1$ of isomorphism classes of elliptic curves defined over $\mathbb{F}_{q_1}$ with $q_2$ points, and the set $\mathcal{E}_2$ of isomorphism classes of elliptic curves over $\mathbb{F}_{q_2}$ with $q_1$ points. When both families $\mathcal{E}_i$ contain only ordinary elliptic curves, we prove that their isogeny graphs are isomorphic. When supersingular curves are involved, we describe which curves might belong to these sets. We also show that if both the $q_i$'s are odd and $\mathcal{E}_1 \cup \mathcal{E}_2 \neq \emptyset$, then $\mathcal{E}_1 \cup \mathcal{E}_2$ always contains an ordinary elliptic curve. Conversely, if $q_1$ is even, then $\mathcal{E}_1 \cup \mathcal{E}_2$ may contain only supersingular curves precisely when $q_2$ is a given power of a Fermat or a Mersenne prime. In the case of odd Hasse pairs, we could not rule out the possibility of an empty union $\mathcal{E}_1 \cup \mathcal{E}_2$, but we give necessary conditions for such a case to exist. In an appendix, Moree and Sofos consider how frequently Hasse pairs occur using analytic number theory, making a connection with Andrica's conjecture on the difference between consecutive primes.

Number Theory,Cryptography and Security

Xusheng Zhang,Dongdai Lin

DOI: https://doi.org/10.1007/978-3-642-25516-8_19

2011-01-01

Abstract:In pairing-based cryptography, most researches are focused on elliptic curves of embedding degrees greater than six, but less on curves of small embedding degrees, although they are important for pairing-based cryptography over composite-order groups. This paper analyzes efficient pairings on ordinary elliptic curves of embedding degree 1 and 2 from the point of shortening Miller's loop. We first show that pairing lattices presented by Hess can be redefined on composite-order groups. Then we give a simpler variant of the Weil pairing lattice which can also be regarded as an Omega pairing lattice, and extend it to ordinary curves of embedding degree 1. In our analysis, the optimal Omega pairing, as the super-optimal pairing on elliptic curves of embedding degree 1 and 2, could be more efficient than Weil and Tate pairings. On the other hand, elliptic curves of embedding degree 2 are also very useful for pairings on elliptic curves over RSA rings proposed by Galbraith and McKee. So we analyze the construction of such curves over RSA rings, and redefine pairing lattices over RSA rings. Specially, modified Omega pairing lattices over RSA rings can be computed without knowing the RSA trapdoor. Furthermore, for keeping the trapdoor secret, we develop an original idea of evaluating pairings without leaking the group order.

Sam Frengley

2023-09-14

Abstract:We construct infinite families of pairs of (geometrically non-isogenous) elliptic curves defined over $\mathbb{Q}$ with $12$-torsion subgroups that are isomorphic as Galois modules. This extends previous work of Chen and Fisher where it is assumed that the underlying isomorphism of $12$-torsion subgroups respects the Weil pairing. Our approach is to compute explicit birational models for the modular diagonal quotient surfaces which parametrise such pairs of elliptic curves. A key ingredient in the proof is to construct simple (algebraic) conditions for the $2$, $3$, or $4$-torsion subgroups of a pair of elliptic curves to be isomorphic as Galois modules. These conditions are given in terms of the $j$-invariants of the pair of elliptic curves.

Number Theory

Katharina Müller,Anwesh Ray

2024-09-23

Abstract:Let $E_{/\mathbb{Q}}$ be an elliptic curve and $p$ an odd prime such that $E$ has good ordinary reduction at $p$ and the Galois representation on $E[p]$ is irreducible. Then Greenberg's $\mu=0$ conjecture predicts that the Selmer group of $E$ over the cyclotomic $\mathbb{Z}_p$-extension of $\mathbb{Q}$ is cofinitely generated as a $\mathbb{Z}_p$-module. In this article we study this conjecture from a statistical perspective. We extend the heuristics of Poonen and Rains to obtain further evidence for Greenberg's conjecture. The key idea is that the vanishing of the $\mu$-invariant can be detected by the intersection $M_1\cap M_2$ of two Iwasawa modules $M_1, M_2$ with additional properties in a given inner product space. The heuristic is based on showing that there is a probability measure on the space of pairs $(M_1, M_2)$ respect to which the event that $M_1\cap M_2$ is finite happens with probability $1$.

Number Theory,Probability

Abbey Bourdon,Holly Paige Chaos

DOI: https://doi.org/10.48550/arXiv.2110.07819

2022-06-08

Abstract:For a prime number p, we characterize the groups that may arise as torsion subgroups of an elliptic curve with complex multiplication defined over a number field of degree 2p. In particular, our work shows that a classification in the strongest sense is tied to determining whether there exist infinitely many Sophie Germain primes.

Number Theory,Algebraic Geometry

Chuangqiang Hu,Xiao-Min Huang

2024-10-10

Abstract:The primary objective of this paper is to derive explicit formulas for rank one and rank two Drinfeld modules over a specific domain denoted by A. This domain corresponds to the projective line associated with an infinite place of degree two. To achieve the goals, we construct a pair of standard Drinfeld modules whose coefficients are in the Hilbert class field of A. We demonstrate that the period lattice of the exponential functions corresponding to both modules behaves similarly to the period lattice of the Carlitz module, the standard rank one Drinfeld module defined over rational function field. Moreover, we employ Andersons t-motive to obtain the complete family of rank two Drinfeld modules. This family is parameterized by the invariant J = \lambda^{q^2+1} which effectively serves as the counterpart of the j-invariant for elliptic curves. Building upon the concepts introduced by van~der~Heiden, particularly with regard to rank two Drinfeld modules, we are able to reformulate the Weil pairing of Drinfeld modules of any rank using a specialized polynomial in multiple variables known as the Weil operator. As an illustrative example, we provide a detailed examination of a more explicit formula for the Weil pairing and the Weil operator of rank two Drinfeld modules over the domain A.

Number Theory

Meng Fai Lim

2024-09-21

Abstract:Let $E$ be an elliptic curve over $\mathbb{Q}$. Greenberg has posed a question whether the structure of the fine Selmer group over the cyclotomic $\mathbb{Z}_p$-extension of $\mathbb{Q}$ can be described by cyclotomic polynomials in a certain precise manner. A recent work of Lei has made progress on this problem by proving that the fine Mordell-Weil group (in the sense of Wuthrich) does have this required property. The goal of this paper is study the analogous question of Greenberg over various $\mathbb{Z}_p$-extensions of an imaginary quadratic field $F$. In particular, when the elliptic curve has complex multiplication by the ring of integers of the imaginary quadratic field, we obtain analogous results of Lei over the cyclotomic $\mathbb{Z}_p$-extension and anti-cyclotomic $\mathbb{Z}_p$-extension of $F$. In the event that the elliptic curve has good ordinary reduction at the prime $p$, we further obtain a result over the $\mathbb{Z}_p$-extension of $F$ unramified outside precisely one of the prime of $F$ above $p$. Finally, we study the situation of an elliptic curve over the anticyclotomic $\mathbb{Z}_p$-extension under the generalized Heegner hypothesis. Along the way, we establish an analogous result for the BDP-Selmer group. This latter result is then applied to obtain a relation between the BDP $p$-adic $L$-function and the Mordell-Weil rank growth in the anticyclotomic $\mathbb{Z}_p$-extension which may be of independent interest.

Number Theory

Timo Keller,Mulun Yin

2024-10-31

Abstract:Let $E/\mathbf{Q}$ be an elliptic curve and $p\geq 3$ be a prime. We prove the $p$-converse theorems for elliptic curves of potentially good ordinary reduction at Eisenstein primes (i.e., such that the residual representation $E[p]$ is reducible) when the $p$-Selmer rank is $0$ or $1$. The key step is to obtain the anticyclotomic Iwasawa Main Conjectures for an auxiliary imaginary quadratic field $K$ where $E$ does not have CM similar to those in [CGLS22] and descent to $\mathbf{Q}$. As an application we get improved proportions for the number of elliptic curves in quadratic twist families having rank $0$ or $1$.

Number Theory

Michele Fornea,Lennart Gehrmann

2023-11-06

Abstract:We use Iwasawa theory, at a prime $p$ inert in a quadratic imaginary field $K$, to study the arithmetic properties of mock plectic invariants for elliptic curves of rank two. More precisely, under some minor technical assumptions, we prove that the non-vanishing of the mock plectic invariant $\mathcal{Q}_K$ attached to an elliptic curve $E_{/\mathbb{Q}}$ of even analytic rank $r_\mathrm{an}(E/K)\ge2$, and with multiplicative reduction at $p$, implies that the $p$-Selmer rank $r_p(E/K)$ equals $2$. The proof rests on one inclusion of Perrin-Riou's Heegner point main conjecture for elliptic curves with multiplicative reduction at $p$ which we obtain using bipartite Euler systems.

Number Theory

Maarten Derickx,Anastassia Etropolski,Mark van Hoeij,Jackson S. Morrow,David Zureick-Brown

DOI: https://doi.org/10.2140/ant.2021.15.1837

2024-06-04

Abstract:Let $K$ be a number field, and let $E/K$ be an elliptic curve over $K$. The Mordell--Weil theorem asserts that the $K$-rational points $E(K)$ of $E$ form a finitely generated abelian group. In this work, we complete the classification of the finite groups which appear as the torsion subgroup of $E(K)$ for $K$ a cubic number field. To do so, we determine the cubic points on the modular curves $X_1(N)$ for \[N = 21, 22, 24, 25, 26, 28, 30, 32, 33, 35, 36, 39, 45, 65, 121.\] As part of our analysis, we determine the complete list of $N$ for which $J_0(N)$ (resp., $J_1(N)$, resp., $J_1(2,2N)$) has rank 0. We also provide evidence to a generalized version of a conjecture of Conrad, Edixhoven, and Stein by proving that the torsion on $J_1(N)(\mathbb{Q})$ is generated by $\text{Gal}(\bar{\mathbb{Q}}/\mathbb{Q})$-orbits of cusps of $X_1(N)_{\bar{\mathbb{Q}}}$ for $N\leq 55$, $N \neq 54$.

Number Theory,Algebraic Geometry

Meng Fai Lim,Chao Qin,Jun Wang

2024-09-05

Abstract:Let $E$ be an elliptic curve defined over $\mathbb{Q}$ with good ordinary reduction at a prime $p\geq 5$, and let $F$ be an imaginary quadratic field. Under appropriate assumptions, we show that the Pontryagin dual of the fine Mordell-Weil group of $E$ over the $\mathbb{Z}_p^2$-extension of $F$ is pseudo-null as a module over the Iwasawa algebra of the group $\mathbb{Z}_p^2$.

Number Theory

Michael Scott,Naomi Benger,Manuel Charlemagne,Luis J. Dominguez Perez,Ezekiel J. Kachisa

DOI: https://doi.org/10.1007/978-3-642-03298-1_6

2009-01-01

Abstract:When performing a Tate pairing (or a derivative thereof) on an ordinary pairing-friendly elliptic curve, the computation can be looked at as having two stages, the Miller loop and the so-called final exponentiation. As a result of good progress being made to reduce the Miller loop component of the algorithm (particularly with the discovery of "truncated loop" pairings like the R-ate pairing [18]), the final exponentiation has become a more significant component of the overall calculation. Here we exploit the structure of pairing-friendly elliptic curves to reduce to a minimum the computation required for the final exponentiation.

Cécile Armana

2024-08-21

Abstract:We study two analogs, for modular forms over $\mathbb{F}_{q}(T)$, of the pairing between Hecke algebra and cusp forms given by the first coefficient in the expansion. For Drinfeld modular forms, the $\mathbb{C}_{\infty}$-pairing is provided by the first coefficient of their $t$-expansion at infinity. For $\mathbb{Z}$-valued harmonic cochains, the $\mathbb{Z}$-pairing is given by their Fourier coefficient with respect to the trivial ideal. We prove that, contrarily to classical cusp forms, both pairings in weight $2$ are not perfect in a quite general setting, namely for the congruence subgroup $\Gamma_0(\mathfrak{n})$ with any prime ideal $\mathfrak{n}$ in $\mathbb{F}_{q}[T]$ of degree $\geq 5$. We show it by exhibiting a common element of the Hecke algebra in the kernels of both pairings and proving that it is non-zero using computations with modular symbols over $\mathbb{F}_{q}(T)$. Finally we present computational data on other kernel elements of these pairings.

Number Theory

Haihua Gu,Dawu Gu,WenLu Xie

DOI: https://doi.org/10.1080/01611194.2014.915259

2015-01-01

Cryptologia

Abstract:Pairings in elliptic curve cryptography are functions which map a pair of elliptic curve points to a non-zero element of a finite field. In recent years, many useful cryptographic protocols based on pairings have been proposed. The fast implementations of pairings have become a subject of active research areas in cryptology.In this paper, we give the geometric interpretation of the group law on Hessian curves. Furthermore, we propose the first algorithm for computing the Tate pairing on elliptic curves in Hessian form. Analysis indicates that it is faster than all algorithms of Tate pairing computation known so far for Weierstrass and Edwards curves excepted for the very special elliptic curves with a(4) = 0, a(6) = b(2).

Bryden Cais,Douglas Ulmer

2024-08-15

Abstract:Let $Y\to X$ be an unramified Galois cover of curves over a perfect field $k$ of characteristic $p>0$ with $\mathrm{Gal}(Y/X)\cong\mathbb{Z}/p\mathbb{Z}$, and let $J_X$ and $J_Y$ be the Jacobians of $X$ and $Y$ respectively. We consider the $p$-torsion subgroup schemes $J_X[p]$ and $J_Y[p]$, analyze the Galois-module structure of $J_Y[p]$, and find restrictions this structure imposes on $J_Y[p]$ (for example, as manifested in its Ekedahl--Oort type) taking $J_X[p]$ as given.

Number Theory,Algebraic Geometry

Jeff Katen

DOI: https://doi.org/10.48550/arXiv.2010.05283

2020-10-12

Abstract:The goal of this article is to define an analogue of the Weil-pairing for Drinfeld modules using explicit formulas and to deduce its main properties from these formulas. Our result generalizes the formula currently known for rank 2 Drinfeld modules and works as a more explicit, elementary proof of the Weil-pairing's existence than the one appearing in the current literature.

Number Theory

Richard Griffon,Douglas Ulmer

DOI: https://doi.org/10.2140/pjm.2020.305.597

2019-11-12

Abstract:Let $\mathbb{F}_r$ be a finite field of characteristic $p>3$. For any power $q$ of $p$, consider the elliptic curve $E=E_{q,r}$ defined by $y^2=x^3 + t^q -t$ over $K=\mathbb{F}_r(t)$. We describe several arithmetic invariants of $E$ such as the rank of its Mordell--Weil group $E(K)$, the size of its Néron--Tate regulator $\text{Reg}(E)$, and the order of its Tate--Shafarevich group $III(E)$ (which we prove is finite). These invariants have radically different behaviors depending on the congruence class of $p$ modulo 6. For instance $III(E)$ either has trivial $p$-part or is a $p$-group. On the other hand, we show that the product $|III(E)|\text{Reg}(E)$ has size comparable to $r^{q/6}$ as $q\to\infty$, regardless of $p\pmod{6}$. Our approach relies on the BSD conjecture, an explicit expression for the $L$-function of $E$, and a geometric analysis of the Néron model of $E$.

Number Theory

Irene I. Bouw,Duc Khoi Do,Stefan Wewers

DOI: https://doi.org/10.1016/j.indag.2024.01.002

IF: 0.827

2024-01-19

Indagationes Mathematicae

Abstract:We study the Weil representation ρ of a curve over a p -adic field with potential reduction of compact type. We show that ρ can be reconstructed from its stable reduction. For superelliptic curves of the form yn=f(x) at primes p whose residue characteristic is prime to the exponent n we make this explicit.

mathematics