A short-list of pairing-friendly curves resistant to Special TNFS at the 128-bit security level

https://www.iacr.org/docs/pub_2013-16.htmlThis paper is the IACR version. It can be made freely available on the homepages of authors, on their employer's institutional page, and in non-commercial archival repositories such as the Cryptology ePrint Archive, ArXiv/CoRR, HAL, etc.International audienceThere have been notable improvements in discrete logarithm computations in finite fields since 2015 and the introduction of the Tower Number Field Sieve algorithm (TNFS) for extension fields. The Special TNFS is very efficient in finite fields that are target groups of pairings on elliptic curves, where the characteristic is special (e.g.~sparse). The key sizes for pairings should be increased, and alternative pairing-friendly curves can be considered.We revisit the Special variant of TNFS for pairing-friendly curves. In this case the characteristic is given by a polynomial of moderate degree (between 4 and 38) and tiny coefficients, evaluated at an integer (a seed). We present a polynomial selection with a new practical trade-off between degree and coefficient size. As a consequence, the security of curves computed by Barbulescu, El~Mrabet and Ghammam in 2019 should be revised: we obtain a smaller estimated cost of STNFS for all curves except BLS12 and BN.To obtain TNFS-secure curves, we reconsider the Brezing--Weng generic construction of families of pairing-friendly curves and estimate the cost of our new Special TNFS algorithm for these curves. This improves on the work of Fotiadis and Konstantinou, Fotiadis and Martindale, and Barbulescu, El~Mrabet and Ghammam. We obtain a short-list of interesting families of curves that are resistant to the Special TNFS algorithm, of embedding degrees 10 to 16 for the 128-bit security level. We conclude that at the 128-bit security level, BLS-12 and Fotiadis--Konstantinou--Martindale curves with $k=12$ over a 440 to 448-bit prime field seem to be the best choice for pairing efficiency. We also give hints at the 192-bit security level

Drive-by Key-Extraction Cache Attacks from Portable Code

We show how malicious web content can extract cryptographic secret keys from the user\u27s computer. The attack uses portable scripting languages supported by modern browsers to induce contention for CPU cache resources, and thereby gleans information about the memory accesses of other programs running on the user\u27s computer. We show how this side-channel attack can be realized in both WebAssembly and PNaCl; how to attain very fine-grained measurements; and how to use these to extract ElGamal, ECDH and RSA decryption keys from various cryptographic libraries. The attack does not rely on bugs in the browser\u27s nominal sandboxing mechanisms, or on fooling users. It applies even to locked-down platforms with strong confinement mechanisms and browser-only functionality, such as Chromebook devices. Moreover, on browser-based platforms the attacked software too may be written in portable JavaScript; and we show that in this case even implementations of supposedly-secure constant-time algorithms, such as Curve25519\u27s, are vulnerable to our attack

Asthma App Use and Interest Among Patients With Asthma: A Multicenter Study

info:eu-repo/semantics/publishedVersio

Protic Ionic Liquids Used as Metal-Forming Green Lubricants for Aluminum: Effect of Anion Chain Length

Among the applications for protic ionic liquids (PILs), lubrication is one of the newest and the most promising. In this work, ammonium-based protic ionic liquids were tested as lubricant fluids for aluminum-steel contacts. PILs were synthesized with 2-hydroxyethylamine (2HEA) and a carboxylic acid (formic and pentanoic), aiming to understand the effect of two different anion chain lengths on the lubricant behavior. The synthesized PILs were characterized by RMN, FTIR and TGA. Wear tests, conducted using a ball-on-plate configuration, showed that the increase of the anion carbon chain length in the PIL structure reduced significantly the coefficient of friction value. Besides, after the wear tests, the PILs structural integrity was not affected. In the same way, bending under tension (BUT) tests evidenced that the performance for stamping conditions of the PIL with the longest anion carbon chain was similar to that of the commercial lubricant. Since, both formed a uniform tribofilm, developed the same lubrication regime and the drawing forces values were close and constant. Hence, the ionic liquid obtained with 2HEA and pentanoic acid (2HEAPe) is as suitable as the commercial lubricant for metal forming processes

Déficit estatural e fatores associados em crianças de 6 a 24 meses atendidas em unidades de saúde do sudoeste da Bahia

Resumo Objetivo Avaliar a prevalência e os fatores associados ao déficit estatural em crianças de 6 a 24 meses. Metodologia Trata-se de um estudo transversal realizado com 360 crianças atendidas em todas as unidades de saúde da zona urbana do município de Vitória da Conquista, BA. Foi aplicado um questionário para coleta de informações e foram aferidas medidas antropométricas de peso e estatura. O estado nutricional foi avaliado de acordo com os pontos de corte para os índices antropométricos preconizados pela Organização Mundial de Saúde. A associação entre os fatores em estudo e o déficit estatural foi verificada através da análise de regressão de Poisson, com variâncias robustas. Resultados A prevalência de déficit estatural nas crianças avaliadas foi de 13,6%. Os fatores que se associaram ao desfecho foram: ausência de trabalho paterno (RP: 2,46; IC 95%: 1,34-4,49) e baixo peso ao nascer (RP: 2,29; IC 95%: 1,27-4,13). Conclusão Os resultados mostram uma prevalência considerável do déficit de estatura entre as crianças menores de 2 anos, destacando a importância do monitoramento nutricional e a influência de fatores obstétricos e socioeconômicos

Systematic review with meta-analysis of the epidemiological evidence relating smoking to COPD, chronic bronchitis and emphysema

<p>Abstract</p> <p>Background</p> <p>Smoking is a known cause of the outcomes COPD, chronic bronchitis (CB) and emphysema, but no previous systematic review exists. We summarize evidence for various smoking indices.</p> <p>Methods</p> <p>Based on MEDLINE searches and other sources we obtained papers published to 2006 describing epidemiological studies relating incidence or prevalence of these outcomes to smoking. Studies in children or adolescents, or in populations at high respiratory disease risk or with co-existing diseases were excluded. Study-specific data were extracted on design, exposures and outcomes considered, and confounder adjustment. For each outcome RRs/ORs and 95% CIs were extracted for ever, current and ex smoking and various dose response indices, and meta-analyses and meta-regressions conducted to determine how relationships were modified by various study and RR characteristics.</p> <p>Results</p> <p>Of 218 studies identified, 133 provide data for COPD, 101 for CB and 28 for emphysema. RR estimates are markedly heterogeneous. Based on random-effects meta-analyses of most-adjusted RR/ORs, estimates are elevated for ever smoking (COPD 2.89, CI 2.63-3.17, n = 129 RRs; CB 2.69, 2.50-2.90, n = 114; emphysema 4.51, 3.38-6.02, n = 28), current smoking (COPD 3.51, 3.08-3.99; CB 3.41, 3.13-3.72; emphysema 4.87, 2.83-8.41) and ex smoking (COPD 2.35, 2.11-2.63; CB 1.63, 1.50-1.78; emphysema 3.52, 2.51-4.94). For COPD, RRs are higher for males, for studies conducted in North America, for cigarette smoking rather than any product smoking, and where the unexposed base is never smoking any product, and are markedly lower when asthma is included in the COPD definition. Variations by sex, continent, smoking product and unexposed group are in the same direction for CB, but less clearly demonstrated. For all outcomes RRs are higher when based on mortality, and for COPD are markedly lower when based on lung function. For all outcomes, risk increases with amount smoked and pack-years. Limited data show risk decreases with increasing starting age for COPD and CB and with increasing quitting duration for COPD. No clear relationship is seen with duration of smoking.</p> <p>Conclusions</p> <p>The results confirm and quantify the causal relationships with smoking.</p