Coordinate Forms

Affine $(x,y)$

Affine form refers to the regular $(x,y)$ form of coordinates on an $xy$ -plane.

Problem

For elliptic curves, point addition is done very often as it is considered cheap. To calculate point addition in affine form, we must compute the slope $m = \frac{y_Q-y_P}{x_Q-x_P}$ . However, calculating field inverses or the $(x_Q-x_P)^{-1}$ in this case is expensive, so we want to prevent the calculation of inverses as much as possible.

Solution

When calculating a series of point operations, we convert points to a different intermediate form that does not require field inverses for point operations and for the final result, we revert back to affine. Calculating through these intermediate forms does not cost any inverse operations; however, converting the forms back to affine will cost one inverse operation.

The reasoning for why our intermediate forms do not calculate inverses is quite simple: when calculating an operation, the resulting formulas of the final $x$ and $y$ are manipulated to use the same denominator (projective) or related denominators (Jacobian & XYZZ). This denominator will then be calculated and stored as a continuous separate value $Z$ .

We will provide an explanation of projective coordinates to ease our way into understanding Jacobian coordinates, yet in reality for our elliptic curves, we use Jacobian coordinates as it yields much simpler results to work with.

Projective $(\frac{X}{Z}, \frac{Y}{Z}) : (X,Y,Z)$

In projective form, affine points of $(x,y)$ are redefined as $(\frac{X}{Z}, \frac{Y}{Z})$ . In practice, projective form is stored as $(X,Y,Z)$ . With this conversion, the elliptic curve equation is changed to:

Y^2Z =X^3 + aXZ^2 + bZ^3

Affine $\Longrightarrow$ Projective

(x,y) \Longrightarrow (\frac{x}{1},\frac{y}{1}) :(x, y, 1)

Projective $\Longrightarrow$ Affine

(X, Y,Z) \Longrightarrow (\frac{X}{Z},\frac{Y}{Z})

Calculating Operations

Refer to Hyperelliptic for Projective points on the best practices on how to calculate addition and double operations on projective coordinates.

Jacobian $(\frac{X}{Z^2},\frac{Y}{Z^3}) :(X, Y, Z)$

In Jacobian form, affine points of $(x,y)$ are redefined as $(\frac{X}{Z^2}, \frac{Y}{Z^3})$ . In practice, Jacobian form is stored as $(X,Y,Z)$ . With this conversion, the elliptic curve equation is changed to:

Y^2 =X^3 + aXZ^4 + bZ^6

Affine $\Longrightarrow$ Jacobian

(x,y) \Longrightarrow (\frac{x}{1^2},\frac{y}{1^3}) :(x, y, 1)

Jacobian $\Longrightarrow$ Affine

(X, Y,Z) \Longrightarrow (\frac{X}{Z^2},\frac{Y}{Z^3})

Calculating Operations

Refer to Hyperelliptic for Jacobian points on the best practices on how to calculate addition and double operations on Jacobian coordinates.

XYZZ - Extended Jacobian $(\frac{X}{Z^2},\frac{Y}{Z^3}) : (X,Y,Z^2,Z^3)$

XYZZ form also known as "Extended Jacobian form" follows the same calculation and reasoning as Jacobian, but with one minor difference: Extended Jacobian is instead stored as $(x, y, z^2, z^3)$ to provide better performance of computations with a slight tradeoff in memory.

Affine $\Longrightarrow$ XYZZ

(x,y) \Longrightarrow (\frac{x}{1^2},\frac{y}{1^3}) :(x, y, 1^2, 1^3)

Jacobian $\Longrightarrow$ XYZZ

(X, Y,Z^2, Z^3) \Longrightarrow (\frac{X}{Z^2},\frac{Y}{Z^3})

Calculating Operations

Refer to Hyperelliptic for XYZZ points on the best practices on how to calculate addition and double operations on XYZZ coordinates.

Summary of all forms:

Form

Point Form in Affine Form

Storage of values

Elliptic Curve Equation

Affine

$(x,y)$

$y^2 = x^3 + ax + b$

Projective

$(\frac{X}{Z}, \frac{Y}{Z})$

$(X,Y,Z)$

$Y^2Z = X^3 + aXZ^2 + Z^3$

Jacobian

$(\frac{X}{Z^2}, \frac{Y}{Z^3})$

$(X,Y,Z)$

$Y^2 =X^3+aXZ^4+bZ^6$

Extended Jacobian (XYZZ)

$(\frac{X}{Z^2}, \frac{Y}{Z^3})$

$(X,Y,Z^2, Z^3)$

$Y^2 =X^3+aXZ^4+bZ^6$

References

Written by Ashley Jeong of A41

PreviousWeierstrass Curve NextFast Elliptic Curve Arithmetic and Improved WEIL Pairing Evaluation

Last updated 2 months ago

Affine (x,y)(x,y)(x,y)

Problem

Solution

Projective (XZ,YZ):(X,Y,Z)(\frac{X}{Z}, \frac{Y}{Z}) : (X,Y,Z)(ZX​,ZY​):(X,Y,Z)

Affine ⟹\Longrightarrow⟹ Projective

Projective ⟹\Longrightarrow⟹ Affine

Calculating Operations

Jacobian (XZ2,YZ3):(X,Y,Z)(\frac{X}{Z^2},\frac{Y}{Z^3}) :(X, Y, Z)(Z2X​,Z3Y​):(X,Y,Z)

Affine ⟹\Longrightarrow⟹ Jacobian

Jacobian ⟹\Longrightarrow⟹ Affine

Calculating Operations

XYZZ - Extended Jacobian(XZ2,YZ3):(X,Y,Z2,Z3)(\frac{X}{Z^2},\frac{Y}{Z^3}) : (X,Y,Z^2,Z^3)(Z2X​,Z3Y​):(X,Y,Z2,Z3)

Affine ⟹\Longrightarrow⟹ XYZZ

Jacobian ⟹\Longrightarrow⟹ XYZZ

Calculating Operations

Summary of all forms:

References

Affine $(x,y)$

Projective $(\frac{X}{Z}, \frac{Y}{Z}) : (X,Y,Z)$

Affine $\Longrightarrow$ Projective

Projective $\Longrightarrow$ Affine

Jacobian $(\frac{X}{Z^2},\frac{Y}{Z^3}) :(X, Y, Z)$

Affine $\Longrightarrow$ Jacobian

Jacobian $\Longrightarrow$ Affine

XYZZ - Extended Jacobian $(\frac{X}{Z^2},\frac{Y}{Z^3}) : (X,Y,Z^2,Z^3)$

Affine $\Longrightarrow$ XYZZ

Jacobian $\Longrightarrow$ XYZZ