Igusa Class Polynomials

Similar documents
Igusa Class Polynomials

Class invariants for quartic CM-fields

Constructing genus 2 curves over finite fields

Igusa class polynomials

Genus 2 Curves of p-rank 1 via CM method

Counting points on genus 2 curves over finite

Class polynomials for abelian surfaces

Complex multiplication and canonical lifts

Isogeny graphs, modular polynomials, and point counting for higher genus curves

CONSTRUCTING SUPERSINGULAR ELLIPTIC CURVES. Reinier Bröker

Bad reduction of genus 3 curves with Complex Multiplication

Isogeny graphs of abelian varieties and applications to the Discrete Logarithm Problem

Hyperelliptic curves

Mappings of elliptic curves

Explicit Complex Multiplication

COMPUTING ENDOMORPHISM RINGS OF JACOBIANS OF GENUS 2 CURVES OVER FINITE FIELDS

Curves, Cryptography, and Primes of the Form x 2 + y 2 D

arxiv: v2 [math.nt] 17 Jul 2018

Abstracts of papers. Amod Agashe

Even sharper upper bounds on the number of points on curves

A p-adic ALGORITHM TO COMPUTE THE HILBERT CLASS POLYNOMIAL. Reinier Bröker

Identifying supersingular elliptic curves

Computing isogeny graphs using CM lattices

Constructing Abelian Varieties for Pairing-Based Cryptography. David Stephen Freeman. A.B. (Harvard University) 2002

COMPUTING ENDOMORPHISM RINGS OF JACOBIANS OF GENUS 2 CURVES OVER FINITE FIELDS

HONDA-TATE THEOREM FOR ELLIPTIC CURVES

Constructing Abelian Varieties for Pairing-Based Cryptography

ISOGENY GRAPHS OF ORDINARY ABELIAN VARIETIES

Computing modular polynomials in dimension 2 ECC 2015, Bordeaux

The 2-adic CM method for genus 2 curves with application to cryptography

Some. Manin-Mumford. Problems

Equations for Hilbert modular surfaces

Introduction to Elliptic Curves

Lecture 2: Elliptic curves

Computing the endomorphism ring of an ordinary elliptic curve

RAMIFIED PRIMES IN THE FIELD OF DEFINITION FOR THE MORDELL-WEIL GROUP OF AN ELLIPTIC SURFACE

Computing the modular equation

A Generalized Brezing-Weng Algorithm for Constructing Pairing-Friendly Ordinary Abelian Varieties

Isogeny invariance of the BSD conjecture

Modular polynomials and isogeny volcanoes

Isogenies in a quantum world

COMPUTING MODULAR POLYNOMIALS

Point counting and real multiplication on K3 surfaces

Counting Points on Curves using Monsky-Washnitzer Cohomology

15 Elliptic curves and Fermat s last theorem

Counting points on elliptic curves over F q

Computations with Coleman integrals

Modular forms and the Hilbert class field

COMPUTING MODULAR POLYNOMIALS

Tables of elliptic curves over number fields

14 Ordinary and supersingular elliptic curves

Infinite rank of elliptic curves over Q ab and quadratic twists with positive rank

Elliptic Curves Spring 2015 Lecture #23 05/05/2015

Heuristics. pairing-friendly abelian varieties

Independence of Heegner Points Joseph H. Silverman (Joint work with Michael Rosen)

VARIETIES WITHOUT EXTRA AUTOMORPHISMS II: HYPERELLIPTIC CURVES

The Sato-Tate conjecture for abelian varieties

Imaginary Quadratic Fields With Isomorphic Abelian Galois Groups

Outline of the Seminar Topics on elliptic curves Saarbrücken,

Computing modular polynomials with the Chinese Remainder Theorem

Optimal curves of genus 1, 2 and 3

3.4. ZEROS OF POLYNOMIAL FUNCTIONS

Introduction to Shimura Curves

Kneser s p-neighbours and algebraic modular forms

Page Points Possible Points. Total 200

A survey of p-adic approaches to zeta functions (plus a new approach)

Some algebraic number theory and the reciprocity map

Elliptic Curves and the abc Conjecture

Class Field Theory. Steven Charlton. 29th February 2012

Metacommutation of Hurwitz primes

Divisibility Sequences for Elliptic Curves with Complex Multiplication

this to include the explicit maps, please do so!

Applications of Complex Multiplication of Elliptic Curves

Public-key Cryptography: Theory and Practice

FORMAL GROUPS OF CERTAIN Q-CURVES OVER QUADRATIC FIELDS

Non-generic attacks on elliptic curve DLPs

Towards a precise Sato-Tate conjecture in genus 2

ABSTRACT. Professor Lawrence Washington Department of Mathematics

What is the Langlands program all about?

TORSION AND TAMAGAWA NUMBERS

From the curve to its Jacobian and back

Computing Hilbert Class Polynomials

Constructing Permutation Rational Functions From Isogenies

The Néron Ogg Shafarevich criterion Erik Visse

Algorithmic Number Theory in Function Fields

L-Polynomials of Curves over Finite Fields

Number Theory/Representation Theory Notes Robbie Snellman ERD Spring 2011

Sato-Tate groups of abelian surfaces

A p-adic Birch and Swinnerton-Dyer conjecture for modular abelian varieties

Class invariants by the CRT method

WEIL DESCENT ATTACKS

GENERATORS OF JACOBIANS OF GENUS TWO CURVES

Transcendence in Positive Characteristic

2-ADIC ARITHMETIC-GEOMETRIC MEAN AND ELLIPTIC CURVES

Computing endomorphism rings of abelian varieties of dimension two

Overview. exp(2πiq(x)z) x Z m

Elliptic curves over function fields 1

Introduction to Arithmetic Geometry

The Local Langlands Conjectures for n = 1, 2

LECTURE 2 FRANZ LEMMERMEYER

Transcription:

, supported by the Leiden University Fund (LUF) Joint Mathematics Meetings, San Diego, January 2008

Overview Igusa class polynomials are the genus 2 analogue of the classical Hilbert class polynomials. This talk: explain what they are. Talks by Freeman and Lauter following this talk: bounding the running time of algorithms that compute them.

Complex Multiplication Let E be an elliptic curve over a field of characteristic 0. Its endomorphism ring is either Z or an order O in an imaginary quadratic number field. In the second case, we say that E has complex multiplication (CM) by O. Every elliptic curve over C is complex analytically isomorphic to C/Λ for some lattice Λ C. Let K be an imaginary quadratic number field. Every elliptic curve over C with CM by O K is isomorphic to C/a for an ideal a of O K. This gives a bijection between the set of isomorphism classes of elliptic curves over C with CM by O K and the ideal class group C K of K.

The Hilbert Class Polynomial The j-invariant is a rational function in the coefficients of the (Weierstrass) equation of an elliptic curve. For any field L, there is a bijection { elliptic curves over L }/(L-isom.) L, given by the j-invariant. Up to L-isomorphism, computing E and computing j(e) is the same thing. The Hilbert Class Polynomial of an imaginary quadratic number field K is defined by ( ) H K (X) = X j(e). Q[X]. {E/C : End(E) =O K }/ =

Application: constructing class fields Definition: the Hilbert class field of a field K is the maximal unramified abelian extension of K. Its Galois group over K is naturally isomorphic to the class group of K (Artin isomorphism). If K is imaginary quadratic, then the Hilbert class field of K is generated over K by the roots of H K (X). The Artin isomorphism corresponds to the action a j(c/b) = j(c/a 1 b). By computing the CM curves and their torsion points, we can also compute ray class fields of K.

Application: curves with prescribed number of points Let π be an imaginary quadratic integer of prime power norm q (a quadratic Weil q-number) and suppose that the trace t of π is coprime to q. The polynomial H Q(π) (X) splits into linear factors over F q ; let j 0 F q be any root. There exists an ordinary elliptic curve E/F q with j(e) = j 0 and #E(F q ) = q + 1 t. Over F q, all curves with j-invariant j 0 are isomorphic; over F q, there are at most 6 and it is easy to select the right one. Conclusion: (q-number of trace t) + (class polynomial) (elliptic curve with q + 1 t points). See talk 4 (Stevenhagen) for more detail and for genus two.

Computing Hilbert class polynomials The coefficients are integers (because CM curves have potential good reduction). There are methods to compute the polynomial: analytic, p-adic, [Couveignes-Henocq, Bröker] Chinese remainder theorem. [Chao-Nakamura-Sobataka-Tsujii, Agashe-Lauter-Venkatesan] The Hilbert class polynomial is huge: the logarithms of the coefficients are of size, just like the degree of H K (X) (which is the class number of K ). The complexity of all these methods is Õ( ), essentially linear in the output.

Part 2: Genus 2 An abelian variety (AV) is a smooth projective group variety. An elliptic curve (dim. 1 AV) has CM if its endomorphism ring is an order in an imaginary quadratic number field. An abelian surface (dim. 2 AV) has CM if its endomorphism ring is an order in a CM field of degree 4. A CM field of degree 4 is a totally imaginary quadratic extension of a real quadratic field.

Jacobians We consider abelian varieties together with a principal polarization. Every elliptic curve has a unique principal polarization. The Jacobian J(C) of a curve C of genus g is a principally polarized abelian variety of dimension g. Weil: a principally polarized abelian surface over an algebraically closed field is one of the following: 1. a product of two elliptic curves, or 2. the Jacobian of a smooth irreducible curve of genus two, which (by Torelli s theorem) is unique up to isomorphism. Products of elliptic curves do not have CM. So instead of CM abelian surfaces, we study curves C of genus two such that J(C) has CM.

Curves of genus 2 Every curve of genus 2 is hyperelliptic, i.e. (in characteristic 2) C : y 2 = f (x), deg(f ) = 6. Over algebraically closed fields, we can write it in Rosenhain form C : y 2 = x(x 1)(x λ 1 )(x λ 2 )(x λ 3 ). Compare this to Legendre form for elliptic curves E : y 2 = x(x 1)(x λ). The family of elliptic curves is one-dimensional, that of curves of genus 2 is three-dimensional.

Igusa invariants Igusa gave a genus 2 analogue of the j-invariant. Let L be an algebraically closed field of characteristic different from 2. (Actually, Igusa s invariants work for any characteristic.) Igusa gives polynomials I2, I 4, I 6, I 10 in the coefficients of f. These give a bijection between the set of isomorphism classes of genus two curves over L and points (I 2 : I 4 : I 6 : I 10 ) in weighted projective space satisfying I 10 0. Mestre s algorithm (also implemented in Magma) computes an equation for the curve from the invariants. The curve can be defined over a field of degree at most 2 over any field containing the invariants.

Absolute invariants One simplifies by looking at the so-called absolute Igusa invariants i 1 = I5 2 I 10, i 2 = I3 2 I 4 I 10 and i 3 = I2 2 I 6 I 10. If I 2 is non-zero, then these completely determine the L-isomorphism class of the curve. Otherwise, build in a case distinction (as in [Cardona-Quer]). Do there exist CM curves C with I 2 (C) = 0?

Igusa class polynomials The Igusa class polynomials are the polynomials H K,n (X) = {C/C : End(J(C)) =O K }/ = ( X in (C) ) Q[X], n {1, 2, 3} of degree d 2h. By taking one zero i 0 n of each polynomial H K,n, one finds the point (i1 0, i0 2, i0 3 ) and hence an isomorphism class of curve. The polynomials thus specify d 3 isomorphism classes and the d classes with CM by O K are among them. Interpolation formulae can be used to specify which. [Gaudry-Houtmann-Kohel-Ritzenthaler-Weng 2006] Can consider the same applications as in the elliptic case.

Computing Igusa class polynomials Coefficients usually do not lie in Z, but denominators have recently been bounded by Goren-Lauter and Goren, see talk 3. Analogues of the three algorithms have been developed, but there is no complexity bound yet. We study the complex analytic method and will give the first proven asymptotic bounds on the size of the output and the complexity of the three algorithms, such as:

Computing Igusa class polynomials We (Freeman-Lauter-S) will prove: Theorem The complex analytic method takes time at most Õ(h 3 2 ) Õ( 7/2 ) and the size of the output is at most Õ(h 2 ) Õ( 2 ). See next talk!

2024 © sciencedocbox.com Privacy Policy | Terms of Service | Feedback