Showing 1–50 of 54 results for author: Sutherland, A V

Doubly isogenous curves of genus two with a rational action of $D_6$

Authors: Jeremy Booher, Everett W. Howe, Andrew V. Sutherland, José Felipe Voloch

Abstract: Let $C$ and $C'$ be curves over a finite field $K$, provided with embeddings $ι$ and $ι'$ into their Jacobian varieties. Let $D\to C$ and $D'\to C'$ be the pullbacks (via these embeddings) of the multiplication-by-$2$ maps on the Jacobians. We say that $(C,ι)$ and $(C',ι')$ are \emph{doubly isogenous} if $\mathrm{Jac}(C)$ and $\mathrm{Jac}(C')$ are isogenous over $K$ and $\mathrm{Jac}(D)$ and… ▽ More Let $C$ and $C'$ be curves over a finite field $K$, provided with embeddings $ι$ and $ι'$ into their Jacobian varieties. Let $D\to C$ and $D'\to C'$ be the pullbacks (via these embeddings) of the multiplication-by-$2$ maps on the Jacobians. We say that $(C,ι)$ and $(C',ι')$ are \emph{doubly isogenous} if $\mathrm{Jac}(C)$ and $\mathrm{Jac}(C')$ are isogenous over $K$ and $\mathrm{Jac}(D)$ and $\mathrm{Jac}(D')$ are isogenous over~$K$. When we restrict attention to the case where $C$ and $C'$ are curves of genus $2$ whose groups of $K$-rational automorphisms are isomorphic to the dihedral group $D_6$ of order $12$, we find many more doubly isogenous pairs than one would expect from reasonable heuristics. Our analysis of this overabundance of doubly isogenous curves over finite fields leads to the construction of a pair of doubly isogenous curves over a number field. That such a global example exists seems extremely surprising. We show that the Zilber--Pink conjecture implies that there can only be finitely many such examples. When we exclude reductions of this pair of global curves in our counts, we find that the data for the remaining curves is consistent with our original heuristic. Computationally, we find that doubly isogenous curves in our family of $D_6$ curves can be distinguished from one another by considering the isogeny classes of the Prym varieties of certain unramified covers of exponent $3$ and $4$. We discuss how our family of curves can be potentially be used to obtain a deterministic polynomial-time algorithm to factor univariate polynomials over finite fields via an argument of Kayal and Poonen. △ Less

Submitted 13 February, 2024; originally announced February 2024.

Comments: 40 pages

MSC Class: 11G20; 11M38; 14H40; 14K02; 14Q05 (Primary); 11G10; 11Y40; 14H25; 14H30; 14Q25 (Secondary)

Computing the endomorphism ring of an elliptic curve over a number field

Authors: John E. Cremona, Andrew V. Sutherland

Abstract: We describe deterministic and probabilistic algorithms to determine whether or not a given monic irreducible polynomial H in Z[X] is a Hilbert class polynomial, and if so, which one. These algorithms can be used to determine whether a given algebraic integer is the j-invariant of an elliptic curve with complex multiplication (CM), and if so, the associated CM discriminant. More generally, given an… ▽ More We describe deterministic and probabilistic algorithms to determine whether or not a given monic irreducible polynomial H in Z[X] is a Hilbert class polynomial, and if so, which one. These algorithms can be used to determine whether a given algebraic integer is the j-invariant of an elliptic curve with complex multiplication (CM), and if so, the associated CM discriminant. More generally, given an elliptic curve E over a number field, one can use them to compute the endomorphism ring of E. Our algorithms admit simple implementations that are asymptotically and practically faster than existing approaches. △ Less

Submitted 15 December, 2023; v1 submitted 26 January, 2023; originally announced January 2023.

Comments: minor corrections; 21 pages

MSC Class: 11G05 (Primary) 11G15; 11Y16; 11Y40 (Secondary)

Counting points on smooth plane quartics

Authors: Edgar Costa, David Harvey, Andrew V. Sutherland

Abstract: We present efficient algorithms for counting points on a smooth plane quartic curve $X$ modulo a prime $p$. We address both the case where $X$ is defined over $\mathbb F_p$ and the case where $X$ is defined over $\mathbb Q$ and $p$ is a prime of good reduction. We consider two approaches for computing $\#X(\mathbb F_p)$, one which runs in $O(p\log p\log\log p)$ time using $O(\log p)$ space and one… ▽ More We present efficient algorithms for counting points on a smooth plane quartic curve $X$ modulo a prime $p$. We address both the case where $X$ is defined over $\mathbb F_p$ and the case where $X$ is defined over $\mathbb Q$ and $p$ is a prime of good reduction. We consider two approaches for computing $\#X(\mathbb F_p)$, one which runs in $O(p\log p\log\log p)$ time using $O(\log p)$ space and one which runs in $O(p^{1/2}\log^2\!p)$ time using $O(p^{1/2}\log p)$ space. Both approaches yield algorithms that are faster in practice than existing methods. We also present average polynomial-time algorithms for $X/\mathbb Q$ that compute $\#X(\mathbb F_p)$ for good primes $p\le N$ in $O(N\log^3\! N)$ time using $O(N)$ space. These are the first practical implementations of average polynomial-time algorithms for curves that are not cyclic covers of $\mathbb P^1$, which in combination with previous results addresses all curves of genus $g\le 3$. Our algorithms also compute Cartier-Manin/Hasse-Witt matrices that may be of independent interest. △ Less

Submitted 21 August, 2022; originally announced August 2022.

Comments: 32 pages

MSC Class: 11G40 (Primary); 14G10; 14H25 11Y16 (Secondary)

Sato-Tate groups of abelian threefolds

Authors: Francesc Fité, Kiran S. Kedlaya, Andrew V. Sutherland

Abstract: Given an abelian variety over a number field, its Sato-Tate group is a compact Lie group which conjecturally controls the distribution of Euler factors of the L-function of the abelian variety. It was previously shown by Fité, Kedlaya, Rotger, and Sutherland that there are 52 groups (up to conjugation) that occur as Sato-Tate groups of abelian surfaces over number fields; we show here that for abe… ▽ More Given an abelian variety over a number field, its Sato-Tate group is a compact Lie group which conjecturally controls the distribution of Euler factors of the L-function of the abelian variety. It was previously shown by Fité, Kedlaya, Rotger, and Sutherland that there are 52 groups (up to conjugation) that occur as Sato-Tate groups of abelian surfaces over number fields; we show here that for abelian threefolds, there are 410 possible Sato-Tate groups, of which 33 are maximal with respect to inclusions of finite index. We enumerate candidate groups using the Hodge-theoretic construction of Sato-Tate groups, the classification of degree-3 finite linear groups by Blichfeldt, Dickson, and Miller, and a careful analysis of Shimura's theory of CM types that rules out 23 candidate groups; we cross-check this using extensive computations in Gap, SageMath, and Magma. To show that these 410 groups all occur, we exhibit explicit examples of abelian threefolds realizing each of the 33 maximal groups; we also compute moments of the corresponding distributions and numerically confirm that they are consistent with the statistics of the associated L-functions. △ Less

Submitted 17 July, 2023; v1 submitted 25 June, 2021; originally announced June 2021.

Comments: Minor changes; 93 pages; 13 tables. To appear in Memoirs of the American Mathematical Society

MSC Class: 11M50 (Primary) 11G10; 11G40; 14H37; 14K22; 22E47 (Secondary)

$\ell$-adic images of Galois for elliptic curves over $\mathbb{Q}$

Authors: Jeremy Rouse, Andrew V. Sutherland, David Zureick-Brown

Abstract: We discuss the $\ell$-adic case of Mazur's "Program B" over $\mathbb{Q}$, the problem of classifying the possible images of $\ell$-adic Galois representations attached to elliptic curves $E$ over $\mathbb{Q}$, equivalently, classifying the rational points on the corresponding modular curves. The primes $\ell=2$ and $\ell\ge 13$ are addressed by prior work, so we focus on the remaining primes… ▽ More We discuss the $\ell$-adic case of Mazur's "Program B" over $\mathbb{Q}$, the problem of classifying the possible images of $\ell$-adic Galois representations attached to elliptic curves $E$ over $\mathbb{Q}$, equivalently, classifying the rational points on the corresponding modular curves. The primes $\ell=2$ and $\ell\ge 13$ are addressed by prior work, so we focus on the remaining primes $\ell = 3, 5, 7, 11$. For each of these $\ell$, we compute the directed graph of arithmetically maximal $\ell$-power level modular curves $X_H$, compute explicit equations for all but three of them, and classify the rational points on all of them except $X_{\rm ns}^{+}(N)$, for $N = 27, 25, 49, 121$, and two level $49$ curves of genus $9$ whose Jacobians have analytic rank $9$. Aside from the $\ell$-adic images that are known to arise for infinitely many $\bar{\mathbb{Q}}$-isomorphism classes of elliptic curves $E/\mathbb{Q}$, we find only 22 exceptional images that arise for any prime $\ell$ and any $E/\mathbb{Q}$ without complex multiplication; these exceptional images are realized by 20 non-CM rational $j$-invariants. We conjecture that this list of 22 exceptional images is complete and show that any counterexamples must arise from unexpected rational points on $X_{\rm ns}^+(\ell)$ with $\ell\ge 19$, or one of the six modular curves noted above. This yields a very efficient algorithm to compute the $\ell$-adic images of Galois for any elliptic curve over $\mathbb{Q}$. In an appendix with John Voight we generalize Ribet's observation that simple abelian varieties attached to newforms on $Γ_1(N)$ are of ${\rm GL}_2$-type; this extends Kolyvagin's theorem that analytic rank zero implies algebraic rank zero to isogeny factors of the Jacobian of $X_H$. △ Less

Submitted 14 May, 2024; v1 submitted 21 June, 2021; originally announced June 2021.

Comments: Minor corrections; 71 pages; 22 tables

MSC Class: Primary 11G05; Secondary 14G35; 11F80; 11G18; 14H52

Journal ref: Forum Math. Sigma 10 (2022), Paper No. e62, 63 pp

Stronger arithmetic equivalence

Authors: Andrew V. Sutherland

Abstract: Motivated by a recent result of Prasad, we consider three stronger notions of arithmetic equivalence: local integral equivalence, integral equivalence, and solvable equivalence. In addition to having the same Dedekind zeta function (the usual notion of arithmetic equivalence), number fields that are equivalent in any of these stronger senses must have the same class number, and solvable equivalenc… ▽ More Motivated by a recent result of Prasad, we consider three stronger notions of arithmetic equivalence: local integral equivalence, integral equivalence, and solvable equivalence. In addition to having the same Dedekind zeta function (the usual notion of arithmetic equivalence), number fields that are equivalent in any of these stronger senses must have the same class number, and solvable equivalence forces an isomorphism of adele rings. Until recently the only nontrivial example of integral and solvable equivalence arose from a group-theoretic construction of Scott that was exploited by Prasad. Here we provide infinitely many distinct examples of solvable equivalence, including a family that contains Scott's construction as well as an explicit example of degree 96. We also construct examples that address questions of Scott, and of Guralnick and Weiss, and shed some light on a question of Prasad. △ Less

Submitted 11 November, 2021; v1 submitted 5 April, 2021; originally announced April 2021.

Comments: Published version; 23 pages

MSC Class: 11R42 (Primary) 20C05; 20C20 (Secondary)

Journal ref: Discrete Anal. 2021, Paper No. 23, 23 pp

On a question of Mordell

Authors: Andrew R. Booker, Andrew V. Sutherland

Abstract: We make several improvements to methods for finding integer solutions to $x^3+y^3+z^3=k$ for small values of $k$. We implemented these improvements on Charity Engine's global compute grid of 500,000 volunteer PCs and found new representations for several values of $k$, including $k=3$ and $k=42$. This completes the search begun by Miller and Woollett in 1954 and resolves a challenge posed by Morde… ▽ More We make several improvements to methods for finding integer solutions to $x^3+y^3+z^3=k$ for small values of $k$. We implemented these improvements on Charity Engine's global compute grid of 500,000 volunteer PCs and found new representations for several values of $k$, including $k=3$ and $k=42$. This completes the search begun by Miller and Woollett in 1954 and resolves a challenge posed by Mordell in 1953. △ Less

Submitted 2 April, 2021; v1 submitted 2 July, 2020; originally announced July 2020.

Comments: updated to include solution for 579; 15 pages, 2 figures

MSC Class: 11Y50 (Primary) 11D25 (Secondary)

Journal ref: Proceedings of the National Academy of Sciences, 118 (2021), no. 11, e202222377118

Sorting and labelling integral ideals in a number field

Authors: John Cremona, Aurel Page, Andrew V. Sutherland

Abstract: We define a scheme for labelling and ordering integral ideals of number fields, including prime ideals as a special case. The order we define depends only on the choice of a monic irreducible integral defining polynomial for each field $K$, and we start by defining for each field its unique reduced defining polynomial, after Belabas. We define a total order on the set of prime ideals of $K$ and th… ▽ More We define a scheme for labelling and ordering integral ideals of number fields, including prime ideals as a special case. The order we define depends only on the choice of a monic irreducible integral defining polynomial for each field $K$, and we start by defining for each field its unique reduced defining polynomial, after Belabas. We define a total order on the set of prime ideals of $K$ and then extend this to a total order on the set of all nonzero integral ideals of $K$. This order allows us to give a unique label of the form $N.i$, where $N$ is its norm and $i$ is the index of the ideal in the ordered list of all ideals of norm $N$. Our ideal labelling scheme has several nice properties: for a given norm, prime ideals always appear first, and given the factorisation of the norm, the bijection between ideals of norm $N$ and labels is computable in polynomial time. Our motivation for this is to have a well-defined and concise way to sort and label ideals for use in databases such as the LMFDB. We have implemented algorithms which realise this scheme, in Sage, Magma and Pari. △ Less

Submitted 19 May, 2020; originally announced May 2020.

Counting points on superelliptic curves in average polynomial time

Authors: Andrew V. Sutherland

Abstract: We describe the practical implementation of an average polynomial-time algorithm for counting points on superelliptic curves defined over $\mathbb Q$ that is substantially faster than previous approaches. Our algorithm takes as input a superelliptic curves $y^m=f(x)$ with $m\ge 2$ and $f\in \mathbb Z[x]$ any squarefree polynomial of degree $d\ge 3$, along with a positive integer $N$. It can comput… ▽ More We describe the practical implementation of an average polynomial-time algorithm for counting points on superelliptic curves defined over $\mathbb Q$ that is substantially faster than previous approaches. Our algorithm takes as input a superelliptic curves $y^m=f(x)$ with $m\ge 2$ and $f\in \mathbb Z[x]$ any squarefree polynomial of degree $d\ge 3$, along with a positive integer $N$. It can compute $\#X(\mathbb F_p)$ for all $p\le N$ not dividing $m\mathrm{lc}(f)\mathrm{disc}(f)$ in time $O(md^3 N\log^3 N\log\log N)$. It achieves this by computing the trace of the Cartier--Manin matrix of reductions of $X$. We can also compute the Cartier--Manin matrix itself, which determines the $p$-rank of the Jacobian of $X$ and the numerator of its zeta function modulo~$p$. △ Less

Submitted 13 March, 2022; v1 submitted 21 April, 2020; originally announced April 2020.

Comments: minor corrections, 14 pages

MSC Class: 11G40 (Primary); 14G10; 14H25 11Y16 (Secondary)

Journal ref: Fourteenth Algorithmic Number Theory Symposium (ANTS XIV), The Open Book Series 4 (2020), 403-422

Computing classical modular forms

Authors: Alex J. Best, Jonathan Bober, Andrew R. Booker, Edgar Costa, John Cremona, Maarten Derickx, Min Lee, David Lowry-Duda, David Roe, Andrew V. Sutherland, John Voight

Abstract: We discuss practical and some theoretical aspects of computing a database of classical modular forms in the L-functions and Modular Forms Database (LMFDB). We discuss practical and some theoretical aspects of computing a database of classical modular forms in the L-functions and Modular Forms Database (LMFDB). △ Less

Submitted 28 May, 2022; v1 submitted 11 February, 2020; originally announced February 2020.

Comments: 63 pages; minor edits, including a correction to Conjecture 8.5.1

Journal ref: Arithmetic Geometry, Number Theory, and Computation, Simons Symp. (2021), 131-213

Sato-Tate groups of abelian threefolds: a preview of the classification

Authors: Francesc Fité, Kiran S. Kedlaya, Andrew V. Sutherland

Abstract: We announce the classification of Sato-Tate groups of abelian threefolds over number fields; there are 410 possible conjugacy classes of closed subgroups of USp(6) that occur. We summarize the key points of the "upper bound" aspect of the classification, and give a more rigorous treatment of the "lower bound" by realizing 33 groups that appear in the classification as maximal cases with respect to… ▽ More We announce the classification of Sato-Tate groups of abelian threefolds over number fields; there are 410 possible conjugacy classes of closed subgroups of USp(6) that occur. We summarize the key points of the "upper bound" aspect of the classification, and give a more rigorous treatment of the "lower bound" by realizing 33 groups that appear in the classification as maximal cases with respect to inclusions of finite index. Further details will be provided in a subsequent paper. △ Less

Submitted 28 May, 2021; v1 submitted 5 November, 2019; originally announced November 2019.

Comments: We withdrew the statement that all 33 maximal groups are realizable over Q. To appear in Contemp. Math

MSC Class: Primary 11M50; Secondary 11G10; 11G20; 14G10; 14K15

Journal ref: Contemp. Math. 770 (2021), 103-129

Arithmetic invariants from Sato--Tate moments

Authors: Edgar Costa, Francesc Fité, Andrew V. Sutherland

Abstract: We give some arithmetic-geometric interpretations of the moments M_2[a_1], M_1[a_2], and M_1[s_2] of the Sato-Tate group of an abelian variety A defined over a number field by relating them to the ranks of the endomorphism ring and Néron-Severi group of A. We give some arithmetic-geometric interpretations of the moments M_2[a_1], M_1[a_2], and M_1[s_2] of the Sato-Tate group of an abelian variety A defined over a number field by relating them to the ranks of the endomorphism ring and Néron-Severi group of A. △ Less

Submitted 8 October, 2019; v1 submitted 1 October, 2019; originally announced October 2019.

Comments: 4 pages

MSC Class: 11M50 (Primary) 11G10; 14K15 (Secondary)

Journal ref: Comptes Rendus Mathematique 357 (2019), 823-826

A database of nonhyperelliptic genus 3 curves over Q

Authors: Andrew V. Sutherland

Abstract: We report on the construction of a database of nonhyperelliptic genus 3 curves over Q of small discriminant. We report on the construction of a database of nonhyperelliptic genus 3 curves over Q of small discriminant. △ Less

Submitted 24 October, 2018; v1 submitted 16 June, 2018; originally announced June 2018.

Comments: Final version (fixes a few minor typos); 13 pages

MSC Class: 14Q05 (primary) 14H25; 14H45; 11G30; 11-04 (secondary)

Journal ref: Open Book Series 2 (2019) 443-459

Sato-Tate distributions of twists of the Fermat and the Klein quartics

Authors: Francesc Fité, Elisa Lorenzo García, Andrew V. Sutherland

Abstract: We determine the limiting distribution of the normalized Euler factors of an abelian threefold A defined over a number field k when A is geometrically isogenous to the cube of a CM elliptic curve defined over k. As an application, we classify the Sato-Tate distributions of the Jacobians of twists of the Fermat and Klein quartics, obtaining 54 and 23, respectively, and 60 in total. We encounter a n… ▽ More We determine the limiting distribution of the normalized Euler factors of an abelian threefold A defined over a number field k when A is geometrically isogenous to the cube of a CM elliptic curve defined over k. As an application, we classify the Sato-Tate distributions of the Jacobians of twists of the Fermat and Klein quartics, obtaining 54 and 23, respectively, and 60 in total. We encounter a new phenomenon not visible in dimensions 1 or 2: the limiting distribution of the normalized Euler factors is not determined by the limiting distributions of their coefficients. △ Less

Submitted 17 September, 2018; v1 submitted 19 December, 2017; originally announced December 2017.

Comments: Minor corrections, added Proposition 3.32; 35 pages

MSC Class: 14G10 (primary) 14H45; 14K15; 11G10; 11G40 (secondary)

Journal ref: Res Math Sci (2018) 5: 41

Maps between curves and arithmetic obstructions

Authors: Andrew V. Sutherland, Jose Felipe Voloch

Abstract: Let X and Y be curves over a finite field. In this article we explore methods to determine whether there is a rational map from Y to X by considering L-functions of certain covers of X and Y and propose a specific family of covers to address the special case of determining when X and Y are isomorphic. We also discuss an application to factoring polynomials over finite fields. Let X and Y be curves over a finite field. In this article we explore methods to determine whether there is a rational map from Y to X by considering L-functions of certain covers of X and Y and propose a specific family of covers to address the special case of determining when X and Y are isomorphic. We also discuss an application to factoring polynomials over finite fields. △ Less

Submitted 17 September, 2017; originally announced September 2017.

Comments: 8 pages

MSC Class: 14H25 (Primary) 14G30; 14G10; 11G20 (Secondary)

Journal ref: Contemp. Math. 722 (2019), 167-175

Torsion subgroups of elliptic curves over quintic and sextic number fields

Authors: Maarten Derickx, Andrew V. Sutherland

Abstract: Let $Φ^\infty(d)$ denote the set of finite abelian groups that occur infinitely often as the torsion subgroup of an elliptic curve over a number field of degree $d$. The sets $Φ^\infty(d)$ are known for $d\le 4$. In this article we determine $Φ^\infty(5)$ and $Φ^\infty(6)$. Let $Φ^\infty(d)$ denote the set of finite abelian groups that occur infinitely often as the torsion subgroup of an elliptic curve over a number field of degree $d$. The sets $Φ^\infty(d)$ are known for $d\le 4$. In this article we determine $Φ^\infty(5)$ and $Φ^\infty(6)$. △ Less

Submitted 21 November, 2016; v1 submitted 26 August, 2016; originally announced August 2016.

Comments: Minor edits. 10 pages

MSC Class: 11G05 (Primary); 11G18; 14G35; 14H51 (Secondary)

Journal ref: Proc. Amer. Math. Soc. 145 (2017), 4233-4245

Fast Jacobian arithmetic for hyperelliptic curves of genus 3

Authors: Andrew V. Sutherland

Abstract: We consider the problem of efficient computation in the Jacobian of a hyperelliptic curve of genus 3 defined over a field whose characteristic is not 2. For curves with a rational Weierstrass point, fast explicit formulas are well known and widely available. Here we address the general case, in which we do not assume the existence of a rational Weierstrass point, using a balanced divisor approach. We consider the problem of efficient computation in the Jacobian of a hyperelliptic curve of genus 3 defined over a field whose characteristic is not 2. For curves with a rational Weierstrass point, fast explicit formulas are well known and widely available. Here we address the general case, in which we do not assume the existence of a rational Weierstrass point, using a balanced divisor approach. △ Less

Submitted 4 June, 2018; v1 submitted 28 July, 2016; originally announced July 2016.

Comments: Minor corrections, updated references; 15 pages

MSC Class: 14H40; 14K15; 14H25; 11G10; 11G40

Journal ref: Open Book Series 2 (2019) 425-442

Computing L-series of geometrically hyperelliptic curves of genus three

Authors: David Harvey, Maike Massierer, Andrew V. Sutherland

Abstract: Let C/Q be a curve of genus three, given as a double cover of a plane conic. Such a curve is hyperelliptic over the algebraic closure of Q, but may not have a hyperelliptic model of the usual form over Q. We describe an algorithm that computes the local zeta functions of C at all odd primes of good reduction up to a prescribed bound N. The algorithm relies on an adaptation of the "accumulating rem… ▽ More Let C/Q be a curve of genus three, given as a double cover of a plane conic. Such a curve is hyperelliptic over the algebraic closure of Q, but may not have a hyperelliptic model of the usual form over Q. We describe an algorithm that computes the local zeta functions of C at all odd primes of good reduction up to a prescribed bound N. The algorithm relies on an adaptation of the "accumulating remainder tree" to matrices with entries in a quadratic field. We report on an implementation, and compare its performance to previous algorithms for the ordinary hyperelliptic case. △ Less

Submitted 16 May, 2016; originally announced May 2016.

Comments: 15 pages, to be presented at ANTS XII

MSC Class: 11G20 (Primary) 11Y16; 11M38; 14G10 (Secondary)

Journal ref: LMS J. Comput. Math. 19 (2016) 220-234

Modular curves of prime-power level with infinitely many rational points

Authors: Andrew V. Sutherland, David Zywina

Abstract: For each open subgroup $G$ of ${\rm GL}_2(\hat{\mathbb{Z}})$ containing $-I$ with full determinant, let $X_G/\mathbb{Q}$ denote the modular curve that loosely parametrizes elliptic curves whose Galois representation, which arises from the Galois action on its torsion points, has image contained in $G$. Up to conjugacy, we determine a complete list of the $248$ such groups $G$ of prime power level… ▽ More For each open subgroup $G$ of ${\rm GL}_2(\hat{\mathbb{Z}})$ containing $-I$ with full determinant, let $X_G/\mathbb{Q}$ denote the modular curve that loosely parametrizes elliptic curves whose Galois representation, which arises from the Galois action on its torsion points, has image contained in $G$. Up to conjugacy, we determine a complete list of the $248$ such groups $G$ of prime power level for which $X_G(\mathbb{Q})$ is infinite. For each $G$, we also construct explicit maps from each $X_G$ to the $j$-line. This list consists of $220$ modular curves of genus $0$ and $28$ modular curves of genus $1$. For each prime $\ell$, these results provide an explicit classification of the possible images of the $\ell$-adic Galois representations arising from elliptic curves over $\mathbb{Q}$ that is complete except for a finite set of exceptional $j$-invariants. △ Less

Submitted 2 April, 2021; v1 submitted 12 May, 2016; originally announced May 2016.

Comments: two typos in the sup column of Table 1 have been corrected

MSC Class: 14G35 (primary); 11G05; 11F80 (secondary)

Journal ref: Algebra Number Theory 11 (2017), 1199-1229

Sato-Tate Distributions

Authors: Andrew V. Sutherland

Abstract: In this expository article we explore the relationship between Galois representations, motivic L-functions, Mumford-Tate groups, and Sato-Tate groups, and we give an explicit formulation of the Sato-Tate conjecture for abelian varieties as an equidistribution statement relative to the Sato-Tate group. We then discuss the classification of Sato-Tate groups of abelian varieties of dimension g <= 3 a… ▽ More In this expository article we explore the relationship between Galois representations, motivic L-functions, Mumford-Tate groups, and Sato-Tate groups, and we give an explicit formulation of the Sato-Tate conjecture for abelian varieties as an equidistribution statement relative to the Sato-Tate group. We then discuss the classification of Sato-Tate groups of abelian varieties of dimension g <= 3 and compute some of the corresponding trace distributions. This article is based on a series of lectures presented at the 2016 Arizona Winter School held at the Southwest Center for Arithmetic Geometry. △ Less

Submitted 28 November, 2021; v1 submitted 5 April, 2016; originally announced April 2016.

Comments: Minor correction to Section 1.2; 45 pages

MSC Class: 11M50 (Primary); 11G10; 11G20; 14G10; 14K15 (Secondary)

Journal ref: Contemp. Math. 740 (2019), 197-248

A database of genus 2 curves over the rational numbers

Authors: Andrew R. Booker, Jeroen Sijsling, Andrew V. Sutherland, John Voight, Dan Yasaki

Abstract: We describe the construction of a database of genus 2 curves of small discriminant that includes geometric and arithmetic invariants of each curve, its Jacobian, and the associated L-function. This data has been incorporated into the L-Functions and Modular Forms Database (LMFDB). We describe the construction of a database of genus 2 curves of small discriminant that includes geometric and arithmetic invariants of each curve, its Jacobian, and the associated L-function. This data has been incorporated into the L-Functions and Modular Forms Database (LMFDB). △ Less

Submitted 4 December, 2017; v1 submitted 11 February, 2016; originally announced February 2016.

Comments: 15 pages, 7 tables; bibliography formatting and typos fixed

Journal ref: LMS J. Comput. Math. 19 (2016) 235-254

A census of zeta functions of quartic K3 surfaces over F_2

Authors: Kiran S. Kedlaya, Andrew V. Sutherland

Abstract: We compute the complete set of candidates for the zeta function of a K3 surface over F_2 consistent with the Weil conjectures, as well as the complete set of zeta functions of smooth quartic surfaces over F_2. These sets differ substantially, but we do identify natural subsets which coincide. This gives some numerical evidence towards a Honda-Tate theorem for transcendental zeta functions of K3 su… ▽ More We compute the complete set of candidates for the zeta function of a K3 surface over F_2 consistent with the Weil conjectures, as well as the complete set of zeta functions of smooth quartic surfaces over F_2. These sets differ substantially, but we do identify natural subsets which coincide. This gives some numerical evidence towards a Honda-Tate theorem for transcendental zeta functions of K3 surfaces; such a result would refine a recent theorem of Taelman, in which one must allow an uncontrolled base field extension. △ Less

Submitted 15 May, 2016; v1 submitted 21 November, 2015; originally announced November 2015.

Comments: 11 pages; final version, minor changes; to appear in ANTS XII

MSC Class: 11M38; 14J28

Journal ref: LMS J. Comput. Math. 19 (2016) 1-11

Torsion subgroups of rational elliptic curves over the compositum of all cubic fields

Authors: Harris B. Daniels, Alvaro Lozano-Robledo, Filip Najman, Andrew V. Sutherland

Abstract: Let $E/\mathbb{Q}$ be an elliptic curve and let $\mathbb{Q}(3^\infty)$ be the compositum of all cubic extensions of $\mathbb{Q}$. In this article we show that the torsion subgroup of $E(\mathbb{Q}(3^\infty))$ is finite and determine 20 possibilities for its structure, along with a complete description of the $\overline{\mathbb{Q}}$-isomorphism classes of elliptic curves that fall into each case. W… ▽ More Let $E/\mathbb{Q}$ be an elliptic curve and let $\mathbb{Q}(3^\infty)$ be the compositum of all cubic extensions of $\mathbb{Q}$. In this article we show that the torsion subgroup of $E(\mathbb{Q}(3^\infty))$ is finite and determine 20 possibilities for its structure, along with a complete description of the $\overline{\mathbb{Q}}$-isomorphism classes of elliptic curves that fall into each case. We provide rational parameterizations for each of the 16 torsion structures that occur for infinitely many $\overline{\mathbb{Q}}$-isomorphism classes of elliptic curves, and a complete list of $j$-invariants for each of the 4 that do not. △ Less

Submitted 26 January, 2018; v1 submitted 1 September, 2015; originally announced September 2015.

Comments: Corrects an error in the proofs of Lemma 3.2 and Theorem 3.6; 32 pages

MSC Class: 11G05 (Primary); 11R21; 12F10; 14H52 (Secondary)

Journal ref: Math. Comp. 87 (2018), 425-458

Computing images of Galois representations attached to elliptic curves

Authors: Andrew V. Sutherland

Abstract: Let E be an elliptic curve without complex multiplication (CM) over a number field K, and let G_E(ell) be the image of the Galois representation induced by the action of the absolute Galois group of K on the ell-torsion subgroup of E. We present two probabilistic algorithms to simultaneously determine G_E(ell) up to local conjugacy for all primes ell by sampling images of Frobenius elements; one i… ▽ More Let E be an elliptic curve without complex multiplication (CM) over a number field K, and let G_E(ell) be the image of the Galois representation induced by the action of the absolute Galois group of K on the ell-torsion subgroup of E. We present two probabilistic algorithms to simultaneously determine G_E(ell) up to local conjugacy for all primes ell by sampling images of Frobenius elements; one is of Las Vegas type and the other is a Monte Carlo algorithm. They determine G_E(ell) up to one of at most two isomorphic conjugacy classes of subgroups of GL_2(Z/ell Z) that have the same semisimplification, each of which occurs for an elliptic curve isogenous to E. Under the GRH, their running times are polynomial in the bit-size n of an integral Weierstrass equation for E, and for our Monte Carlo algorithm, quasi-linear in n. We have applied our algorithms to the non-CM elliptic curves in Cremona's tables and the Stein--Watkins database, some 140 million curves of conductor up to 10^10, thereby obtaining a conjecturally complete list of 63 exceptional Galois images G_E(ell) that arise for E/Q without CM. Under this conjecture we determine a complete list of 160 exceptional Galois images G_E(ell) the arise for non-CM elliptic curves over quadratic fields with rational j-invariants. We also give examples of exceptional Galois images that arise for non-CM elliptic curves over quadratic fields only when the j-invariant is irrational. △ Less

Submitted 20 May, 2022; v1 submitted 28 April, 2015; originally announced April 2015.

Comments: minor corrections, 47 pages

MSC Class: 11G05; 11Y16 (Primary); 11F80; 11G20; 14H52; 20G40 (Secondary)

Journal ref: Forum of Mathematics Sigma 4 (2016), 79 pages

Sato-Tate groups of y^2=x^8+c and y^2=x^7-cx

Authors: Francesc Fité, Andrew V. Sutherland

Abstract: We consider the distribution of normalized Frobenius traces for two families of genus 3 hyperelliptic curves over Q that have large automorphism groups: y^2=x^8+c and y^2=x^7-cx with c in Q*. We give efficient algorithms to compute the trace of Frobenius for curves in these families at primes of good reduction. Using data generated by these algorithms, we obtain a heuristic description of the Sato… ▽ More We consider the distribution of normalized Frobenius traces for two families of genus 3 hyperelliptic curves over Q that have large automorphism groups: y^2=x^8+c and y^2=x^7-cx with c in Q*. We give efficient algorithms to compute the trace of Frobenius for curves in these families at primes of good reduction. Using data generated by these algorithms, we obtain a heuristic description of the Sato-Tate groups that arise, both generically and for particular values of c. We then prove that these heuristic descriptions are correct by explicitly computing the Sato-Tate groups via the correspondence between Sato-Tate groups and Galois endomorphism types. △ Less

Submitted 12 February, 2016; v1 submitted 29 November, 2014; originally announced December 2014.

Comments: minor corrections, 24 pages

MSC Class: 11M50 (Primary) 11G10; 11G20; 14G10; 14K15 (Secondary)

Journal ref: Contemp. Math., 663 (2016), 103-126

Computing Hasse-Witt matrices of hyperelliptic curves in average polynomial time, II

Authors: David Harvey, Andrew V. Sutherland

Abstract: We present an algorithm that computes the Hasse-Witt matrix of given hyperelliptic curve over Q at all primes of good reduction up to a given bound N. It is simpler and faster than the previous algorithm developed by the authors. We present an algorithm that computes the Hasse-Witt matrix of given hyperelliptic curve over Q at all primes of good reduction up to a given bound N. It is simpler and faster than the previous algorithm developed by the authors. △ Less

Submitted 20 October, 2014; originally announced October 2014.

Comments: 19 pages

MSC Class: 11G20 (primary) 11Y16; 11M38; 14G10 (secondary)

Journal ref: Contemp. Math. 663 (2016), 127-147

On the distribution of Atkin and Elkies primes for reductions of elliptic curves on average

Authors: Igor E. Shparlinski, Andrew V. Sutherland

Abstract: For an elliptic curve E/Q without complex multiplication we study the distribution of Atkin and Elkies primes l, on average, over all good reductions of E modulo primes p. We show that, under the Generalised Riemann Hypothesis, for almost all primes p there are enough small Elkies primes l to ensure that the Schoof-Elkies-Atkin point-counting algorithm runs in (log p)^(4+o(1)) expected time. For an elliptic curve E/Q without complex multiplication we study the distribution of Atkin and Elkies primes l, on average, over all good reductions of E modulo primes p. We show that, under the Generalised Riemann Hypothesis, for almost all primes p there are enough small Elkies primes l to ensure that the Schoof-Elkies-Atkin point-counting algorithm runs in (log p)^(4+o(1)) expected time. △ Less

Submitted 8 April, 2015; v1 submitted 1 April, 2014; originally announced April 2014.

Comments: 20 pages, to appear in LMS J. Comput. Math

MSC Class: 11Y16 (Primary); 11G05; 11G07; 11L40; 11Y16 (Secondary)

Journal ref: LMS J. Comput. Math. 18 (2015) 308-322

A framework for deterministic primality proving using elliptic curves with complex multiplication

Authors: Alexander Abatzoglou, Alice Silverberg, Andrew V. Sutherland, Angela Wong

Abstract: We provide a framework for using elliptic curves with complex multiplication to determine the primality or compositeness of integers that lie in special sequences, in deterministic quasi-quadratic time. We use this to find large primes, including the largest prime currently known whose primality cannot feasibly be proved using classical methods. We provide a framework for using elliptic curves with complex multiplication to determine the primality or compositeness of integers that lie in special sequences, in deterministic quasi-quadratic time. We use this to find large primes, including the largest prime currently known whose primality cannot feasibly be proved using classical methods. △ Less

Submitted 11 October, 2014; v1 submitted 31 March, 2014; originally announced April 2014.

Comments: 22 pages

MSC Class: 11Y11 (primary); 11A51; 11G05 14K22 (secondary)

Journal ref: Mathematics of Computation 85 (2016), 1462-1483

Finding elliptic curves with a subgroup of prescribed size

Authors: Igor E. Shparlinski, Andrew V. Sutherland

Abstract: Assuming the Generalized Riemann Hypothesis, we design a deterministic algorithm that, given a prime p and positive integer m=o(sqrt(p)/(log p)^4), outputs an elliptic curve E over the finite field F_p for which the cardinality of E(F_p) is divisible by m. The running time of the algorithm is mp^(1/2+o(1)), and this leads to more efficient constructions of rational functions over F_p whose image i… ▽ More Assuming the Generalized Riemann Hypothesis, we design a deterministic algorithm that, given a prime p and positive integer m=o(sqrt(p)/(log p)^4), outputs an elliptic curve E over the finite field F_p for which the cardinality of E(F_p) is divisible by m. The running time of the algorithm is mp^(1/2+o(1)), and this leads to more efficient constructions of rational functions over F_p whose image is small relative to p. We also give an unconditional version of the algorithm that works for almost all primes p, and give a probabilistic algorithm with subexponential time complexity. △ Less

Submitted 28 November, 2014; v1 submitted 31 March, 2014; originally announced March 2014.

Comments: 21 pages, minor corrections, added a new section

MSC Class: 11G07 (Primary); 11T06; 11Y16 (Secondary)

Journal ref: Int. J. Number Theory 13 (2017), 133-152

Computing Hasse-Witt matrices of hyperelliptic curves in average polynomial time

Authors: David Harvey, Andrew V. Sutherland

Abstract: We present an efficient algorithm to compute the Hasse-Witt matrix of a hyperelliptic curve C/Q modulo all primes of good reduction up to a given bound N, based on the average polynomial-time algorithm recently introduced by Harvey. An implementation for hyperelliptic curves of genus 2 and 3 is more than an order of magnitude faster than alternative methods for N = 2^26. We present an efficient algorithm to compute the Hasse-Witt matrix of a hyperelliptic curve C/Q modulo all primes of good reduction up to a given bound N, based on the average polynomial-time algorithm recently introduced by Harvey. An implementation for hyperelliptic curves of genus 2 and 3 is more than an order of magnitude faster than alternative methods for N = 2^26. △ Less

Submitted 13 February, 2014; originally announced February 2014.

Comments: 17 pages

MSC Class: 11G20 (primary) 11Y16; 11M38; 14G10 (secondary)

Journal ref: LMS Journal of Computation and Mathematics 17 (2014), 257-273

Class polynomials for nonholomorphic modular functions

Authors: Jan Hendrik Bruinier, Ken Ono, Andrew V. Sutherland

Abstract: We give algorithms for computing the singular moduli of suitable nonholomorphic modular functions F(z). By combining the theory of isogeny volcanoes with a beautiful observation of Masser concerning the nonholomorphic Eisenstein series E_2*(z), we obtain CRT-based algorithms that compute the class polynomials H_D(F;x), whose roots are the discriminant D singular moduli for F(z). By applying these… ▽ More We give algorithms for computing the singular moduli of suitable nonholomorphic modular functions F(z). By combining the theory of isogeny volcanoes with a beautiful observation of Masser concerning the nonholomorphic Eisenstein series E_2*(z), we obtain CRT-based algorithms that compute the class polynomials H_D(F;x), whose roots are the discriminant D singular moduli for F(z). By applying these results to a specific weak Maass form F_p(z), we obtain a CRT-based algorithm for computing partition class polynomials, a sequence of polynomials whose traces give the partition numbers p(n). Under the GRH, the expected running time of this algorithm is O(n^{5/2+o(1)}). Key to these results is a fast CRT-based algorithm for computing the classical modular polynomial Phi_m(X,Y) that we obtain by extending the isogeny volcano approach previously developed for prime values of m. △ Less

Submitted 28 January, 2015; v1 submitted 23 January, 2013; originally announced January 2013.

Comments: Minor revision to reflect referee comments, 23 pages

MSC Class: 11F03 (Primary) 11P99; 11Y16 (Secondary)

Journal ref: Journal of Number Theory 161 (2016) 204-229

Sato-Tate groups of some weight 3 motives

Authors: Francesc Fité, Kiran S. Kedlaya, Andrew V. Sutherland

Abstract: We establish the group-theoretic classification of Sato-Tate groups of self-dual motives of weight 3 with rational coefficients and Hodge numbers h^{3,0} = h^{2,1} = h^{1,2} = h^{0,3} = 1. We then describe families of motives that realize some of these Sato-Tate groups, and provide numerical evidence supporting equidistribution. One of these families arises in the middle cohomology of certain Cala… ▽ More We establish the group-theoretic classification of Sato-Tate groups of self-dual motives of weight 3 with rational coefficients and Hodge numbers h^{3,0} = h^{2,1} = h^{1,2} = h^{0,3} = 1. We then describe families of motives that realize some of these Sato-Tate groups, and provide numerical evidence supporting equidistribution. One of these families arises in the middle cohomology of certain Calabi-Yau threefolds appearing in the Dwork quintic pencil; for motives in this family, our evidence suggests that the Sato-Tate group is always equal to the full unitary symplectic group USp(4). △ Less

Submitted 16 February, 2016; v1 submitted 2 December, 2012; originally announced December 2012.

Comments: Minor edits to correct typos and address LMFDB modular form label changes

MSC Class: 11M50 (Primary); 11G09; 14K15; 14J32 (Secondary)

Journal ref: Contemp Math. 663 (2016), 57-101

Isogeny volcanoes

Authors: Andrew V. Sutherland

Abstract: The remarkable structure and computationally explicit form of isogeny graphs of elliptic curves over a finite field has made them an important tool for computational number theorists and practitioners of elliptic curve cryptography. This expository paper recounts the theory behind these graphs and examines several recently developed algorithms that realize substantial (often dramatic) performance… ▽ More The remarkable structure and computationally explicit form of isogeny graphs of elliptic curves over a finite field has made them an important tool for computational number theorists and practitioners of elliptic curve cryptography. This expository paper recounts the theory behind these graphs and examines several recently developed algorithms that realize substantial (often dramatic) performance gains by exploiting this theory. △ Less

Submitted 7 May, 2013; v1 submitted 27 August, 2012; originally announced August 2012.

Comments: Invited ANTS X paper, minor edits, 18 pages

MSC Class: 11G07; 11Y16 (Primary) 11G15; 11G20 (Secondary)

Journal ref: ANTS X: Proceedings of the Tenth Algorithmic Number Theory Symposium, 2012, 507-530

Sato-Tate distributions of twists of y^2=x^5-x and y^2=x^6+1

Authors: Francesc Fité, Andrew V. Sutherland

Abstract: We determine the limiting distribution of the normalized Euler factors of an abelian surface A defined over a number field k when A is isogenous to the square of an elliptic curve defined over k with complex multiplication. As an application, we prove the Sato-Tate Conjecture for Jacobians of Q-twists of the curves y^2=x^5-x and y^2=x^6+1, which give rise to 18 of the 34 possibilities for the Sato… ▽ More We determine the limiting distribution of the normalized Euler factors of an abelian surface A defined over a number field k when A is isogenous to the square of an elliptic curve defined over k with complex multiplication. As an application, we prove the Sato-Tate Conjecture for Jacobians of Q-twists of the curves y^2=x^5-x and y^2=x^6+1, which give rise to 18 of the 34 possibilities for the Sato-Tate group of an abelian surface defined over Q. With twists of these two curves one encounters, in fact, all of the 18 possibilities for the Sato-Tate group of an abelian surface that is isogenous to the square of an elliptic curve with complex multiplication. Key to these results is the twisting Sato-Tate group of a curve, which we introduce in order to study the effect of twisting on the Sato-Tate group of its Jacobian. △ Less

Submitted 20 November, 2012; v1 submitted 7 March, 2012; originally announced March 2012.

Comments: minor edits, 42 pages

MSC Class: 11M50 (Primary) 11G10; 11G20; 14G10; 14K15 (Secondary)

Journal ref: Algebra and Number Theory 8 (2014), 543-585

On the evaluation of modular polynomials

Authors: Andrew V. Sutherland

Abstract: We present two algorithms that, given a prime ell and an elliptic curve E/Fq, directly compute the polynomial Phi_ell(j(E),Y) in Fq[Y] whose roots are the j-invariants of the elliptic curves that are ell-isogenous to E. We do not assume that the modular polynomial Phi_ell(X,Y) is given. The algorithms may be adapted to handle other types of modular polynomials, and we consider applications to poin… ▽ More We present two algorithms that, given a prime ell and an elliptic curve E/Fq, directly compute the polynomial Phi_ell(j(E),Y) in Fq[Y] whose roots are the j-invariants of the elliptic curves that are ell-isogenous to E. We do not assume that the modular polynomial Phi_ell(X,Y) is given. The algorithms may be adapted to handle other types of modular polynomials, and we consider applications to point counting and the computation of endomorphism rings. We demonstrate the practical efficiency of the algorithms by setting a new point-counting record, modulo a prime q with more than 5,000 decimal digits, and by evaluating a modular polynomial of level ell = 100,019. △ Less

Submitted 13 October, 2014; v1 submitted 17 February, 2012; originally announced February 2012.

Comments: 19 pages, corrected a typo in equation (8) and added equation (9)

MSC Class: 11G07 (Primary) 11Y16; 14H52; 11G15 (Secondary)

Journal ref: Proceedings of the Tenth Algorithmic Number Theory Symposium (ANTS X), Open Book Series 1, Mathematical Sciences Publishers, 2013, 531-555

Deterministic elliptic curve primality proving for a special sequence of numbers

Authors: Alexander Abatzoglou, Alice Silverberg, Andrew V. Sutherland, Angela Wong

Abstract: We give a deterministic algorithm that very quickly proves the primality or compositeness of the integers N in a certain sequence, using an elliptic curve E/Q with complex multiplication by the ring of integers of Q(sqrt(-7)). The algorithm uses O(log N) arithmetic operations in the ring Z/NZ, implying a bit complexity that is quasi-quadratic in log N. Notably, neither of the classical "N-1" or "N… ▽ More We give a deterministic algorithm that very quickly proves the primality or compositeness of the integers N in a certain sequence, using an elliptic curve E/Q with complex multiplication by the ring of integers of Q(sqrt(-7)). The algorithm uses O(log N) arithmetic operations in the ring Z/NZ, implying a bit complexity that is quasi-quadratic in log N. Notably, neither of the classical "N-1" or "N+1" primality tests apply to the integers in our sequence. We discuss how this algorithm may be applied, in combination with sieving techniques, to efficiently search for very large primes. This has allowed us to prove the primality of several integers with more than 100,000 decimal digits, the largest of which has more than a million bits in its binary representation. At the time it was found, it was the largest proven prime N for which no significant partial factorization of N-1 or N+1 is known. △ Less

Submitted 16 March, 2015; v1 submitted 16 February, 2012; originally announced February 2012.

Comments: 16 pages, corrected a minor sign error in 5.1

MSC Class: 11Y11 (Primary); 11A51; 11G05 (Secondary)

Journal ref: Proceedings of the Tenth Algorithmic Number Theory Symposium (ANTS X), Open Book Series Vol. 1, Mathematical Sciences Publishers, 2013, pp. 1-20

On the Distribution of Atkin and Elkies Primes

Authors: Igor E. Shparlinski, Andrew V. Sutherland

Abstract: Given an elliptic curve E over a finite field F_q of q elements, we say that an odd prime ell not dividing q is an Elkies prime for E if t_E^2 - 4q is a square modulo ell, where t_E = q+1 - #E(F_q) and #E(F_q) is the number of F_q-rational points on E; otherwise ell is called an Atkin prime. We show that there are asymptotically the same number of Atkin and Elkies primes ell < L on average over al… ▽ More Given an elliptic curve E over a finite field F_q of q elements, we say that an odd prime ell not dividing q is an Elkies prime for E if t_E^2 - 4q is a square modulo ell, where t_E = q+1 - #E(F_q) and #E(F_q) is the number of F_q-rational points on E; otherwise ell is called an Atkin prime. We show that there are asymptotically the same number of Atkin and Elkies primes ell < L on average over all curves E over F_q, provided that L >= (log q)^e for any fixed e > 0 and a sufficiently large q. We use this result to design and analyse a fast algorithm to generate random elliptic curves with #E(F_p) prime, where p varies uniformly over primes in a given interval [x,2x]. △ Less

Submitted 19 December, 2011; v1 submitted 14 December, 2011; originally announced December 2011.

Comments: 17 pages, minor edits

MSC Class: 11G07 (Primary) 11Y16; 14H52; 68Q25 (Secondary)

Journal ref: Foundations of Computational Mathematics 14 (2014), 285-297

Sato-Tate distributions and Galois endomorphism modules in genus 2

Authors: Francesc Fité, Kiran S. Kedlaya, Victor Rotger, Andrew V. Sutherland

Abstract: For an abelian surface A over a number field k, we study the limiting distribution of the normalized Euler factors of the L-function of A. This distribution is expected to correspond to taking characteristic polynomials of a uniform random matrix in some closed subgroup of USp(4); this Sato-Tate group may be obtained from the Galois action on any Tate module of A. We show that the Sato-Tate group… ▽ More For an abelian surface A over a number field k, we study the limiting distribution of the normalized Euler factors of the L-function of A. This distribution is expected to correspond to taking characteristic polynomials of a uniform random matrix in some closed subgroup of USp(4); this Sato-Tate group may be obtained from the Galois action on any Tate module of A. We show that the Sato-Tate group is limited to a particular list of 55 groups up to conjugacy. We then classify A according to the Galois module structure on the R-algebra generated by endomorphisms of A_Qbar (the Galois type), and establish a matching with the classification of Sato-Tate groups; this shows that there are at most 52 groups up to conjugacy which occur as Sato-Tate groups for suitable A and k, of which 34 can occur for k = Q. Finally, we exhibit examples of Jacobians of hyperelliptic curves exhibiting each Galois type (over Q whenever possible), and observe numerical agreement with the expected Sato-Tate distribution by comparing moment statistics. △ Less

Submitted 27 January, 2012; v1 submitted 30 October, 2011; originally announced October 2011.

Comments: 59 pages, 2 figures, minor edits, to appear in Compositio Mathematica

MSC Class: 11M50 (Primary) 11G10; 11G20; 14G10; 14K15 (Secondary)

Journal ref: Compositio Math. 148 (2012) 1390-1442

Identifying supersingular elliptic curves

Authors: Andrew V. Sutherland

Abstract: Given an elliptic curve E over a field of positive characteristic p, we consider how to efficiently determine whether E is ordinary or supersingular. We analyze the complexity of several existing algorithms and then present a new approach that exploits structural differences between ordinary and supersingular isogeny graphs. This yields a simple algorithm that, given E and a suitable non-residue i… ▽ More Given an elliptic curve E over a field of positive characteristic p, we consider how to efficiently determine whether E is ordinary or supersingular. We analyze the complexity of several existing algorithms and then present a new approach that exploits structural differences between ordinary and supersingular isogeny graphs. This yields a simple algorithm that, given E and a suitable non-residue in F_p^2, determines the supersingularity of E in O(n^3 log^2 n) time and O(n) space, where n=O(log p). Both these complexity bounds are significant improvements over existing methods, as we demonstrate with some practical computations. △ Less

Submitted 9 November, 2016; v1 submitted 6 July, 2011; originally announced July 2011.

Comments: corrected a typo, 10 pages

MSC Class: 11G07 (Primary) 11Y16; 11G20; 14H52 (Secondary)

Journal ref: LMS J. Comput. Math. 15 (2012) 317-325

The probability that the number of points on the Jacobian of a genus 2 curve is prime

Authors: Wouter Castryck, Amanda Folsom, Hendrik Hubrechts, Andrew V. Sutherland

Abstract: In 2000, Galbraith and McKee heuristically derived a formula that estimates the probability that a randomly chosen elliptic curve over a fixed finite prime field has a prime number of rational points. We show how their heuristics can be generalized to Jacobians of curves of higher genus. We then elaborate this in genus 2 and study various related issues, such as the probability of cyclicity and th… ▽ More In 2000, Galbraith and McKee heuristically derived a formula that estimates the probability that a randomly chosen elliptic curve over a fixed finite prime field has a prime number of rational points. We show how their heuristics can be generalized to Jacobians of curves of higher genus. We then elaborate this in genus 2 and study various related issues, such as the probability of cyclicity and the probability of primality of the number of points on the curve itself. Finally, we discuss the asymptotic behavior as the genus tends to infinity. △ Less

Submitted 30 September, 2011; v1 submitted 25 January, 2011; originally announced January 2011.

Comments: Minor edits, 37 pages. To appear in Proceedings of the London Mathematical Society

MSC Class: 11N05; 11G10; 11G20

Journal ref: Proceedings of the London Mathematical Society 104 (2012), 1235-1270

A low-memory algorithm for finding short product representations in finite groups

Authors: Gaetan Bisson, Andrew V. Sutherland

Abstract: We describe a space-efficient algorithm for solving a generalization of the subset sum problem in a finite group G, using a Pollard-rho approach. Given an element z and a sequence of elements S, our algorithm attempts to find a subsequence of S whose product in G is equal to z. For a random sequence S of length d log_2 n, where n=#G and d >= 2 is a constant, we find that its expected running time… ▽ More We describe a space-efficient algorithm for solving a generalization of the subset sum problem in a finite group G, using a Pollard-rho approach. Given an element z and a sequence of elements S, our algorithm attempts to find a subsequence of S whose product in G is equal to z. For a random sequence S of length d log_2 n, where n=#G and d >= 2 is a constant, we find that its expected running time is O(sqrt(n) log n) group operations (we give a rigorous proof for d > 4), and it only needs to store O(1) group elements. We consider applications to class groups of imaginary quadratic fields, and to finding isogenies between elliptic curves over a finite field. △ Less

Submitted 3 January, 2011; originally announced January 2011.

Comments: 12 pages

Journal ref: Designs Codes and Cryptography 63 (2012), 1-13

Accelerating the CM method

Authors: Andrew V. Sutherland

Abstract: Given a prime q and a negative discriminant D, the CM method constructs an elliptic curve E/\Fq by obtaining a root of the Hilbert class polynomial H_D(X) modulo q. We consider an approach based on a decomposition of the ring class field defined by H_D, which we adapt to a CRT setting. This yields two algorithms, each of which obtains a root of H_D mod q without necessarily computing any of its co… ▽ More Given a prime q and a negative discriminant D, the CM method constructs an elliptic curve E/\Fq by obtaining a root of the Hilbert class polynomial H_D(X) modulo q. We consider an approach based on a decomposition of the ring class field defined by H_D, which we adapt to a CRT setting. This yields two algorithms, each of which obtains a root of H_D mod q without necessarily computing any of its coefficients. Heuristically, our approach uses asymptotically less time and space than the standard CM method for almost all D. Under the GRH, and reasonable assumptions about the size of log q relative to |D|, we achieve a space complexity of O((m+n)log q) bits, where mn=h(D), which may be as small as O(|D|^(1/4)log q). The practical efficiency of the algorithms is demonstrated using |D| > 10^16 and q ~ 2^256, and also |D| > 10^15 and q ~ 2^33220. These examples are both an order of magnitude larger than the best previous results obtained with the CM method. △ Less

Submitted 3 September, 2012; v1 submitted 6 September, 2010; originally announced September 2010.

Comments: 36 pages, minor edits, to appear in the LMS Journal of Computation and Mathematics

MSC Class: 11Y16 (Primary) 11G15; 11G20; 14H52 (Secondary)

Journal ref: LMS J. Comput. Math. 15 (2012) 172-204

A local-global principle for rational isogenies of prime degree

Authors: Andrew V. Sutherland

Abstract: Let K be a number field. We consider a local-global principle for elliptic curves E/K that admit (or do not admit) a rational isogeny of prime degree n. For suitable K (including K=Q), we prove that this principle holds when n = 1 mod 4, and for n < 7, but find a counterexample when n = 7 for an elliptic curve with j-invariant 2268945/128. For K = Q we show that, up to isomorphism, this is the onl… ▽ More Let K be a number field. We consider a local-global principle for elliptic curves E/K that admit (or do not admit) a rational isogeny of prime degree n. For suitable K (including K=Q), we prove that this principle holds when n = 1 mod 4, and for n < 7, but find a counterexample when n = 7 for an elliptic curve with j-invariant 2268945/128. For K = Q we show that, up to isomorphism, this is the only counterexample. △ Less

Submitted 1 November, 2011; v1 submitted 9 June, 2010; originally announced June 2010.

Comments: 11 pages, minor edits, to appear in Journal de Théorie des Nombres de Bordeaux

MSC Class: 11G05

Journal ref: Journal de Theorie des Nombres de Bordeaux 24 (2012), 475-485

Class invariants by the CRT method

Authors: Andreas Enge, Andrew V. Sutherland

Abstract: We adapt the CRT approach for computing Hilbert class polynomials to handle a wide range of class invariants. For suitable discriminants D, this improves its performance by a large constant factor, more than 200 in the most favourable circumstances. This has enabled record-breaking constructions of elliptic curves via the CM method, including examples with |D|>10^15. We adapt the CRT approach for computing Hilbert class polynomials to handle a wide range of class invariants. For suitable discriminants D, this improves its performance by a large constant factor, more than 200 in the most favourable circumstances. This has enabled record-breaking constructions of elliptic curves via the CM method, including examples with |D|>10^15. △ Less

Submitted 30 June, 2010; v1 submitted 19 January, 2010; originally announced January 2010.

Comments: 15 pages, final version, to appear in ANTS IX (Algorithmic Number Theory Symposium, 2010)

MSC Class: 11Y16

Journal ref: Algorithmic Number Theory 9th International Symposium (ANTS IX), LNCS 6197, pp. 142-156, Springer, 2010

Modular polynomials via isogeny volcanoes

Authors: Reinier Broker, Kristin Lauter, Andrew V. Sutherland

Abstract: We present a new algorithm to compute the classical modular polynomial Phi_n in the rings Z[X,Y] and (Z/mZ)[X,Y], for a prime n and any positive integer m. Our approach uses the graph of n-isogenies to efficiently compute Phi_n mod p for many primes p of a suitable form, and then applies the Chinese Remainder Theorem (CRT). Under the Generalized Riemann Hypothesis (GRH), we achieve an expected run… ▽ More We present a new algorithm to compute the classical modular polynomial Phi_n in the rings Z[X,Y] and (Z/mZ)[X,Y], for a prime n and any positive integer m. Our approach uses the graph of n-isogenies to efficiently compute Phi_n mod p for many primes p of a suitable form, and then applies the Chinese Remainder Theorem (CRT). Under the Generalized Riemann Hypothesis (GRH), we achieve an expected running time of O(n^3 (log n)^3 log log n), and compute Phi_n mod m using O(n^2 (log n)^2 + n^2 log m) space. We have used the new algorithm to compute Phi_n with n over 5000, and Phi_n mod m with n over 20000. We also consider several modular functions g for which Phi_n^g is smaller than Phi_n, allowing us to handle n over 60000. △ Less

Submitted 27 March, 2012; v1 submitted 3 January, 2010; originally announced January 2010.

Comments: corrected a typo in equation (14), 31 pages

MSC Class: 11Y16

Journal ref: Mathematics of Computation 81 (2012), 1201-1231

An explicit height bound for the classical modular polynomial

Authors: Reinier Broker, Andrew V. Sutherland

Abstract: For a prime m, let Phi_m be the classical modular polynomial, and let h(Phi_m) denote its logarithmic height. By specializing a theorem of Cohen, we prove that h(Phi_m) <= 6 m log m + 16 m + 14 sqrt m log m. As a corollary, we find that h(Phi_m) <= 6 m log m + 18 m also holds. A table of h(Phi_m) values is provided for m <= 3607. For a prime m, let Phi_m be the classical modular polynomial, and let h(Phi_m) denote its logarithmic height. By specializing a theorem of Cohen, we prove that h(Phi_m) <= 6 m log m + 16 m + 14 sqrt m log m. As a corollary, we find that h(Phi_m) <= 6 m log m + 18 m also holds. A table of h(Phi_m) values is provided for m <= 3607. △ Less

Submitted 10 April, 2010; v1 submitted 18 September, 2009; originally announced September 2009.

Comments: Minor correction to the constants in Theorem 1 and Corollary 9. To appear in the Ramanujan Journal. 17 pages.

MSC Class: 11G05

Journal ref: Ramanujan Journal 22 (2010), 293-313

Computing Hilbert class polynomials with the Chinese Remainder Theorem

Authors: Andrew V. Sutherland

Abstract: We present a space-efficient algorithm to compute the Hilbert class polynomial H_D(X) modulo a positive integer P, based on an explicit form of the Chinese Remainder Theorem. Under the Generalized Riemann Hypothesis, the algorithm uses O(|D|^(1/2+o(1))log P) space and has an expected running time of O(|D|^(1+o(1)). We describe practical optimizations that allow us to handle larger discriminants th… ▽ More We present a space-efficient algorithm to compute the Hilbert class polynomial H_D(X) modulo a positive integer P, based on an explicit form of the Chinese Remainder Theorem. Under the Generalized Riemann Hypothesis, the algorithm uses O(|D|^(1/2+o(1))log P) space and has an expected running time of O(|D|^(1+o(1)). We describe practical optimizations that allow us to handle larger discriminants than other methods, with |D| as large as 10^13 and h(D) up to 10^6. We apply these results to construct pairing-friendly elliptic curves of prime order, using the CM method. △ Less

Submitted 22 November, 2013; v1 submitted 16 March, 2009; originally announced March 2009.

Comments: 37 pages, corrected a typo that misstated the heuristic complexity

MSC Class: 11Y16 (Primary); 11G15; 11G20; 14H52 (Secondary)

Journal ref: Mathematics of Computation 80 (2011), 501-538

Computing the endomorphism ring of an ordinary elliptic curve over a finite field

Authors: Gaetan Bisson, Andrew V. Sutherland

Abstract: We present two algorithms to compute the endomorphism ring of an ordinary elliptic curve E defined over a finite field F_q. Under suitable heuristic assumptions, both have subexponential complexity. We bound the complexity of the first algorithm in terms of log q, while our bound for the second algorithm depends primarily on log |D_E|, where D_E is the discriminant of the order isomorphic to End… ▽ More We present two algorithms to compute the endomorphism ring of an ordinary elliptic curve E defined over a finite field F_q. Under suitable heuristic assumptions, both have subexponential complexity. We bound the complexity of the first algorithm in terms of log q, while our bound for the second algorithm depends primarily on log |D_E|, where D_E is the discriminant of the order isomorphic to End(E). As a byproduct, our method yields a short certificate that may be used to verify that the endomorphism ring is as claimed. △ Less

Submitted 17 March, 2009; v1 submitted 26 February, 2009; originally announced February 2009.

Comments: 16 pages (minor edits)

MSC Class: 11G20; 11Y16

Journal ref: Journal of Number Theory 113 (2011), 815-831

On a theorem of Mestre and Schoof

Authors: John E. Cremona, Andrew V. Sutherland

Abstract: A well known theorem of Mestre and Schoof implies that the order of an elliptic curve E over a prime field F_q can be uniquely determined by computing the orders of a few points on E and its quadratic twist, provided that q > 229. We extend this result to all finite fields with q > 49, and all prime fields with q > 29. A well known theorem of Mestre and Schoof implies that the order of an elliptic curve E over a prime field F_q can be uniquely determined by computing the orders of a few points on E and its quadratic twist, provided that q > 229. We extend this result to all finite fields with q > 49, and all prime fields with q > 29. △ Less

Submitted 8 September, 2009; v1 submitted 31 December, 2008; originally announced January 2009.

Comments: 6 pages, to appear in Journal de Théorie des Nombres de Bordeaux

MSC Class: 11G20

Journal ref: Journal de Théorie des Nombres de Bordeaux 22 (2010), 353-358

Constructing elliptic curves over finite fields with prescribed torsion

Authors: Andrew V. Sutherland

Abstract: We present a method for constructing optimized equations for the modular curve X_1(N) using a local search algorithm on a suitably defined graph of birationally equivalent plane curves. We then apply these equations over a finite field F_q to efficiently generate elliptic curves with nontrivial N-torsion by searching for affine points on X_1(N)(F_q), and we give a fast method for generating curves… ▽ More We present a method for constructing optimized equations for the modular curve X_1(N) using a local search algorithm on a suitably defined graph of birationally equivalent plane curves. We then apply these equations over a finite field F_q to efficiently generate elliptic curves with nontrivial N-torsion by searching for affine points on X_1(N)(F_q), and we give a fast method for generating curves with (or without) a point of order 4N using X_1(2N). △ Less

Submitted 27 March, 2012; v1 submitted 3 November, 2008; originally announced November 2008.

Comments: Corrected typos in the statement of Lemma 2, 17 pages

MSC Class: 11G05; 11G07 (Primary) 11-04; 14H10 (Secondary)

Journal ref: Mathematics of Computation 81 (2012), 1131-1147