How do I use this site?

Use your left and right arrows to nagivate!

Press the ? key to see the shortcuts.

Use the <esc> key to Zoom out and see all the slides.

Let’s dive in

We'll start with some background

Modular Arithmetic

Group Theory

Abelian Groups

An abelian group is defined by a set $E$ together with a an operation $∙$ . This operation combines two elements $a, b \in E$ . Abelian groups follow five other axioms…

Axioms

Closure: If $a, b \in E$ then $a ∙ b \in E$ .

Commutativity: For all $a, b \in E$ , $a ∙ b = b ∙ a$ .

Associativity: For all $a, b, c \in E$ , $(a ∙ b) ∙ c = a ∙ (b ∙ c)$ .

Identity Element: There exists an element $I$ in $E$ such that $a \in E$ , $a ∙ I = a$ . This is called the identity or nautral element.

Inverse Element: For every $a \in E$ there exists an element $b$ such that $a ∙ b = I$ , where $I$ is the identity element. This also means that we call $b$ the inverse of $a$ , also written $b = a^{- 1}$ .

Other Characteristics of Abelian Groups

The number of elements in E is called the order of the group.
If two groups have the same order, and that order is a prime number (called prime order groups), the groups are isomorphic to one another.
- This means one group can be “transformed” into another group by renaming or reordering the elements

Uses

One of the major uses of Elliptic Curves is Cryptography. In the next slides you will see why its used in cryptography and some examples of real world curves and their specific uses.

Examples

Bitcoin uses a curve called secp256k1. The equation looks like

$y^{2} = x^{3} + 7$

so $A = 0$ and $B = 7$ .

Many major messaging services including Whatsapp and Signal use a curve called X25519. The equation of the curve is too big to show here.

Point Groups

An Elliptic Curve creates a group of points, and as explained in Abelian Groups, this means that there is an operation using points P and Q to get point R. Since this other point is still on the curve, the process can be repeated multiple times. The way this is done in an Elliptic Curve is the following:

Point Addition

When adding two points together, we draw a straight line between the two points, find the third point at which they intersect, and then reflect that across the horizontal axis…

Other Operations

Now that we’ve seen addition, the next step is multiplication.

This doesn’t mean multiplying two points together—rather, we mean scalar multiplication, meaning adding a point to itself multiple times.

Simplifying Multiplication

If we wanted to continue do a big point multiplication, like $48798273 P$ , the method of adding P to itself over and over can get very slow.

Instead, we use a method called Double and Add to quickly calculate the value.

Discrete Logarithm Problem

Bringing it back to cryptography.

Discrete Logarithm Problem

If I gave you some point $X$ , which I computed secretly by doing $d P$ , and $P$ , could you tell me what $d$ is?

This problem is known as the discrete logarithm problem, and it is the crux of the secureness of elliptic curve cryptography.

Think back to the graph when we explained Point Multiplication. If I gave you 3P, and called the point X. Would you be able to tell me that d = 3?

Discrete Logarithm Problem

The reason ECC is secure is that there are no known methods for efficiently solving $X = d P$ for $d$ .

Just because there are no known methods doesn't mean that one will eventually be discovered. That would be bad news.

Galois Fields

The curves you’ve seen so are are defined over the plane of real numbers. So there are an infinite number of points that lie on the curve.

In ECC, we define curves over a finite field, or Galois field. The field is most commonly defined over the integers $\mod p$ , where $p$ is a prime number. We generally write it as $(Z_{P}, + \cdot)$ .

Security

Diffie-Hellman Key Exchange

Relies on a couple of steps with secret and public values:

2 public values (base and mod)
2 private personal keys
2 public keys
1 private shared key

How does it work?

Lets say Alice and Bob want to exchange information by encrypting it using the D-H key exchange method:

We are going visualize these as colors in a paint can to see how they each use they keys, but take into account these are integers in real life, and they are normally extremely big.

Breaking the Key

Lets say we have a third person Carlos, that doesn’t know any private keys, only the public ones. This means they know the base and mod g & p, and both public keys A & B. This means that Carlos doesnt know any of a, b or K. If Carlos were able to get any of these 3 secret keys, then they would be able to calculate K the shared private key with which the message are encrypted.

Real-life Restrictions

These private keys can technically be calculated if g & p are not chosen properly. Normally, p is a prime number of a large magnitude with g being a coprime to p-1. The final key is also normally 256 bits long.

These characteristics make it practically impossible for a third person to calculate K after its been established, making it extremely safe.

Tying it together

You may be asking now that we have gone through all of this, how exactly do all these components relate and work together?

ECC & D-H Key Exchange

We know that from D-H Key Exchange both parties can get a private key, known only to the people communicating. We call this key “K”.
We also saw how, if we have a starting point P in a curve, we can, through point operation, to another point in the same curve.
“K” is actually the parameter that tells us how many times to do the defined dot operation on the elliptic curve. Since we get a new point, and getting “K” is close to impossible, being able to obtain the final key of the ECC with D-H Key Exchange is also practically impossible.

a

The End

Thank you so much for taking a look through this site, we hope you learned a lot.

We had a great time learning about this topic, and we’re excited to share our learning with the rest of the world.

Credits

This site was created by Jack Greenberg, Oscar De La Garza, and Nabih Estefan.

The project was a final for MTH3110 (Discrete Math) taught by Dr. Sarah Spence Adams.

The site is built using Hugo, and specifically the reveal-hugo theme that uses Reveal.js.
The site is hosted using Github Pages . The repository can be found here.
The animations were created using Manim, the mathematics animation library by 3Blue1Brown.
Other animations were created using Keynote with the Magic Move transition

This site is released under the GNU GPLv3 license.

Sources

These are some sources we found helpful along the way. Credit where credit is due.

Elliptic Curve Cryptography