A provably quasi-polynomial algorithm for the discrete logarithm problem in finite fields of small characteristic
Guido Lido
TL;DR
This paper establishes a probabilistic quasi-polynomial-time algorithm for the discrete logarithm problem in finite fields of small characteristic by leveraging elliptic presentations of the field. The approach embeds the target field into a slightly larger field with a presentation based on an elliptic curve, and then performs a carefully controlled descent to relate logs of arbitrary elements to a small factor base of divisors on the curve. A two-stage descent combined with Galois-theoretic lemmas controls irreducibility and traps, enabling an index-calculus with a factor base of essential degrees up to $2^8$ and a zig-zag descent that yields the needed relations in time $q^{O(\,\log [K:\mathbb{F}_q] \,)}$. Consequently, for all finite fields of small characteristic, the discrete logarithm problem can be solved in quasi-polynomial time by embedding into an elliptic-presentation field and executing the descent algorithm. The results bridge prior heuristic progress with a rigorous complexity analysis and provide a blueprint for practical, albeit not optimized, implementations using elliptic presentations.
Abstract
We describe a provably quasi-polynomial algorithm to compute discrete logarithms in the multiplicative groups of finite fields of small characteristic, that is finite fields whose characteristic is logarithmic in the order. We partially follow the heuristically quasi-polynomial algorithm presented by Barbulescu, Gaudry, Joux and Thome'. The main difference is to use a presentation of the finite field based on elliptic curves: the abundance of elliptic curves ensures the existence of such a presentation.