Uri Blumenthal wrote: [snip]
Probably so. So please do join the analysis, will you? After all, it is for the benefit of everybody involved to get it right. BTW, what assumptions can be made of g^xy, in your opinion?
There are quite a few things known about the "absolute" distribution of this (and other properties). Igor Shparlinski's new book provides a nice compilation of such results. /Mats _______________________________________________ Cfrg mailing list Cfrg@ietf.org https://www1.ietf.org/mailman/listinfo/cfrg