DOCSLIB.ORG

QUOTIENTS of ELLIPTIC CURVES OVER FINITE FIELDS 1. Introduction by Tate's Isogeny Theorem [14, P. 139], Two Elliptic Curves Ov

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
QUOTIENTS of ELLIPTIC CURVES OVER FINITE FIELDS 1. Introduction by Tate's Isogeny Theorem [14, P. 139], Two Elliptic Curves Ov QUOTIENTS OF ELLIPTIC CURVES OVER FINITE FIELDS JEFFREY D. ACHTER AND SIMAN WONG Abstract. Fix a prime `, and let Fq be a finite field with q ≡ 1 (mod `) elements. If 2 2 ` > 2 and q ` 1, we show that asymptotically (` − 1) =2` of the elliptic curves E=Fq with complete rational `-torsion are such that E=hP i does not have complete rational `-torsion for any point P 2 E(Fq) of order `. For ` = 2 the asymptotic density is 0 or 1=4, depending whether q ≡ 1 (mod 4) or 3 (mod 4). We also show that for any `, if E=Fq has an Fq-rational point R of order `2, then E=h`Ri always has complete rational `-torsion. 1. Introduction By Tate's isogeny theorem [14, p. 139], two elliptic curves over a finite field k are k- isogenous if and only if they have the same number of k-rational points. However, the isogeny need not preserve the group structure of the k-rational points of the respective 2 curves. For example, for E : y = x(x − 1)(x + 1) we have E(F5) ' Z=2 × Z=2. By explicit computations (cf. [15], [13, p. 70]), we find that E=h(0; 0)i is F5-isomorphic to E as elliptic curves (not via the quotient map, of course), but that the group of F5-rational points of both E=h(1; 0)i and E=h(−1; 0)i are cyclic. In this paper we investigate the problem of how often the quotient map by a k-rational torsion point preserves the group structure. Note that the group homomorphism induced by an isogeny φ is an isomorphism on the prime-to-deg(φ) part of the group of rational points, so it suffices to focus on the k-rational deg(φ)-torsion. Let ` be a prime, and let E=K be an elliptic curve over a field. Denote by [`]: E!E the multiplication-by-` isogeny on E, and denote by E[`](K) the K-rational points of the kernel of this isogeny. For the rest of this paper, we take K to be Fq, a finite field of size q with q ≡ 1 (mod `). This condition is necessary for the set S(Fq; `) := the set of Fq-isomorphism classes of elliptic curves E with E[`](Fq) = E[`](Fq) to be non-empty; this follows from properties of the Weil pairing ([13, p. 96]; see also 2 Thm 2.1(c)). If ` = 2 then q is odd, so y = x(x − 1)(x + 1) belongs to S(Fq; 2); in particular 4 S(Fq; 2) is not empty. In general, S(Fq; `) is not empty for q ≥ ` (see Lemma 2.2). We also define S0(Fq; `) = fE 2 S(Fq; `): E=hP i 62 S(Fq; `) for every non-zero point P 2 E[`] g; S∗(Fq; `) = fE 2 S(Fq; `): E=hP i 2 S(Fq; `) for every non-zero point P 2 E[`] g: and ratios #S0(Fq; `) #S∗(Fq; `) R0(Fq; `) = and R∗(Fq; `) = : #S(Fq; `) #S(Fq; `) 1991 Mathematics Subject Classification. Primary 11G20; Secondary 11G25, 14H10. Key words and phrases. Elliptic curves, finite fields, isogeny, moduli, monodromy, quotients. Jeffrey Achter's work is supported in part by a grant from the Simons foundation (204164). Siman Wong's work is supported in part by NSF grant DMS-0901506. 1 Theorem 1.1. (a) Let ` be an odd prime. For all q ≡ 1 (mod `), we have 2 7 7 (` − 1) ` 1 ` R0(Fq; `) − < ; R∗(Fq; `) − < : 2`2 q1=2 `3 q1=2 (b) Suppose ` = 2. For 1 ≤ j ≤ 3, define n E=hP i 2 S( ; 2) for at least j o S ( ; 2) = E 2 S( ; 2) : Fq : j Fq Fq distinct points P 2 E of order 2 Then the ratio Rj(Fq; 2) = #Sj(Fq; 2)=#S(Fq; 2) is given by q (mod 4) R0(Fq; 2) R1(Fq; 2) R2(Fq; 2) R3(Fq; 2) 1 (q) 1 (q) 1 0 1 + 1 + 1 4 q 4 q 1 (q) 3 (q) 3 (q) 3 − 2 + 2 + 2 0 4 q 4 q 4 q where each ji(q)j ≤ 23=12 and depends on q (mod 24) only. If a curve in S(Fq; `) belongs to S0(Fq; `), then some quotient of this curve by an `-torsion 2 point must have an Fq-rational point of order ` . Apply the dual isogeny and we are led to 2 ask how often an elliptic curve E=Fq with an Fq-rational point R of order ` is such that E=h[`]Ri is in S(Fq; `). The answer is surprisingly simple and uniform. Theorem 1.2. Let ` be a prime, and let Fq be a finite field of cardinality q ≡ 1 (mod `). Let 2 E be an elliptic curve over Fq with an Fq-rational point R of order ` . Then E=h[`]Ri has complete Fq-rational `-torsion. Theorem 1.2 implies that if S(Fq; `) is empty then no elliptic curve over Fq has an Fq-point of order `2. This already follows essentially from Deuring's work on complex multiplication [2]; see Theorem 2.1 below. In fact, from these classical works we can derive closed form expressions (Theorem 5.3) for S(Fq; `) and S∗(Fq; `). While it is not clear (to us) how to use these expressions to prove Theorem 1.1, we can use them to test how sharp the estimates are in the Theorem. See Section 5 for more details. In Section 2, we collect useful, classical facts about elliptic curves over finite fields. In Section 3, we prove Theorem 1.2; combined with an equidistribution argument, this allows us to prove the asymptotic result Theorem 1.1(a). Section 4 takes up the analysis of 2- torsion, and in particular proves Theorem 1.1(b). In Section 5, we follow the suggestion (indeed, detailed sketch) of the referee to derive and interpret formulae for S(Fq; `), S0(Fq; `) and S∗(Fq; `) in terms of class numbers. Finally, many of our results, especially those of Section 3, generalize readily to abelian varieties of arbitrary dimension. This is explained in greater detail in Section 6. 2. Existence of curves with split torsion In this section we prove Lemma 2.2 which is stated in the introduction. It is in fact an immediate consequence of the work of Schoof [9], which in turn is based on Deuring's work on complex multiplication [2]. We now summary the relevant parts of Schoof's work, concentrating on the case of ordinary curves in view of the discussion in Section 5. First, we introduce some notation. 2 Given a binary quadratic form ax2 + bxy + cy2, its discriminant is defined to be b2 − 4ac, and we say that it is primitive if gcd(a; b; c) = 1. Fix a negative integer ∆ ≡ 0 or 1 (mod 4). 1 Denote by H(∆) (resp. h(∆)) the number of SL2(Z)-equivalent classes of binary quadratic forms (resp. primitive binary quadratic forms) of discriminant ∆. We have the classical relation (cf. [9, Prop. 2.2]) X (2.1) H(∆) = h(∆=d2); d where d run through all positive integers such that d2j∆ and that ∆=d2 ≡ 0 or 1 (mod 4). In particular, h(∆) is the usual class number of O(∆), the unique complex quadratic order of discriminant ∆. 2 For any integer t ≤ 4q, denote by I(Fq; t) the set of Fq-isomorphism classes of elliptic curves with q +1−t Fq-rational points. Either each elliptic curve in the isogeny class I(Fq; t) is supersingular, or each is ordinary; the isogeny class is ordinary if and only if gcd(t; q) = 1. For a prime number `, let S(Fq; `; t) = S(Fq; `) \ I(Fq; t), and define S∗(Fq; `; t) and S0(Fq; `; t) analogously. The following results are taken verbatim from [9]. Theorem 2.1 (Schoof). Let q be a prime power and let t be an integer such that t2 ≤ 4q and gcd(t; q) = 1. 2 (a) [9, Thm. 4.3(i)] We have E 2 I(Fq; t) if and only if O(t − 4q) ⊂ EndFq (E). (b) [9, Thm. 4.3(i) and Thm. 4.5(i)] Let O be a complex quadratic order that contains 2 O(t − 4q). Then there are h(O) isomorphism classes of elliptic curves E 2 I(Fq; t) ∼ such that EndFq (E) = O. (c) [9, Prop. 3.7] Let ` be a prime number such that gcd(`; q) = 1. We have E 2 S(Fq; `; t) 2 t2−4q if and only if q + 1 − t ≡ 0 mod ` and O( `2 ) ⊂ EndFq (E). Lemma 2.2. Let n be an odd integer with q ≡ 1 (mod n). Then there exists an ordinary 4 elliptic curve E 2 S(Fq; n) if q ≥ n . Proof. We can find an integer t 2 [0; n2] such that t ≡ q + 1 (mod n2). Replace t by t + n2 if necessary, we can further require that gcd(t; q) = 1 and t2 ≤ (t + n2) ≤ 4n2 ≤ 4q. Apply Theorem 2.1 and we are done. Remark 2.3. For odd `, the curves in S(Fq; `) are parameterized by the Fq-points of the fine moduli Y (`). The modular curve X(`) has genus 1 + (`2 − 1)(` − 6)=24, so the Riemann 6 hypothesis implies that X(`)(Fq) is not empty for q ` , which is weaker than Lemma 2.2. 3. The case of ` odd 3.1. Pointwise results. Throughout this section we consider an elliptic curve E over a field K in which the odd, rational prime ` is invertible.
Load more

Recommended publications
  • Abelian Varieties
    Abelian Varieties J.S. Milne Version 2.0 March 16, 2008 These notes are an introduction to the theory of abelian varieties, including the arithmetic of abelian varieties and Faltings’s proof of certain finiteness theorems. The orginal version of the notes was distributed during the teaching of an advanced graduate course. Alas, the notes are still in very rough form. BibTeX information @misc{milneAV, author={Milne, James S.}, title={Abelian Varieties (v2.00)}, year={2008}, note={Available at www.jmilne.org/math/}, pages={166+vi} } v1.10 (July 27, 1998). First version on the web, 110 pages. v2.00 (March 17, 2008). Corrected, revised, and expanded; 172 pages. Available at www.jmilne.org/math/ Please send comments and corrections to me at the address on my web page. The photograph shows the Tasman Glacier, New Zealand. Copyright c 1998, 2008 J.S. Milne. Single paper copies for noncommercial personal use may be made without explicit permis- sion from the copyright holder. Contents Introduction 1 I Abelian Varieties: Geometry 7 1 Definitions; Basic Properties. 7 2 Abelian Varieties over the Complex Numbers. 10 3 Rational Maps Into Abelian Varieties . 15 4 Review of cohomology . 20 5 The Theorem of the Cube. 21 6 Abelian Varieties are Projective . 27 7 Isogenies . 32 8 The Dual Abelian Variety. 34 9 The Dual Exact Sequence. 41 10 Endomorphisms . 42 11 Polarizations and Invertible Sheaves . 53 12 The Etale Cohomology of an Abelian Variety . 54 13 Weil Pairings . 57 14 The Rosati Involution . 61 15 Geometric Finiteness Theorems . 63 16 Families of Abelian Varieties .
    [Show full text]
  • Elliptic Curves, Isogenies, and Endomorphism Rings
    Elliptic curves, isogenies, and endomorphism rings Jana Sot´akov´a QuSoft/University of Amsterdam July 23, 2020 Abstract Protocols based on isogenies of elliptic curves are one of the hot topic in post-quantum cryptography, unique in their computational assumptions. This note strives to explain the beauty of the isogeny landscape to students in number theory using three different isogeny graphs - nice cycles and the Schreier graphs of group actions in the commutative isogeny-based cryptography, the beautiful isogeny volcanoes that we can walk up and down, and the Ramanujan graphs of SIDH. This is a written exposition 1 of the talk I gave at the ANTS summer school 2020, available online at https://youtu.be/hHD1tqFqjEQ?t=4. Contents 1 Introduction 1 2 Background 2 2.1 Elliptic curves . .2 2.2 Isogenies . .3 2.3 Endomorphisms . .4 2.4 From ideals to isogenies . .6 3 CM and commutative isogeny-based protocols 7 3.1 The main theorem of complex multiplication . .7 3.2 Diffie-Hellman using groups . .7 3.3 Diffie-Hellman using group actions . .8 3.4 Commutative isogeny-based cryptography . .8 3.5 Isogeny graphs . .9 4 Other `-isogenies 10 5 Supersingular isogeny graphs 13 5.1 Supersingular curves and isogenies . 13 5.2 SIDH . 15 6 Conclusions 16 1Please contact me with any comments or remarks at [email protected]. 1 1 Introduction There are three different aspects of isogenies in cryptography, roughly corresponding to three different isogeny graphs: unions of cycles as used in CSIDH, isogeny volcanoes as first studied by Kohel, and Ramanujan graphs upon which SIDH and SIKE are built.
    [Show full text]
  • Commutative Algebraic Groups up to Isogeny, in Which the Problems Raised by Imperfect fields Become Tractable; This Yields Rather Simple and Uniform Structure Results
    Commutative algebraic groups up to isogeny Michel Brion Abstract Consider the abelian category Ck of commutative group schemes of finite type over a field k. By results of Serre and Oort, Ck has homological dimension 1 (resp. 2) if k is algebraically closed of characteristic 0 (resp. positive). In this article, we explore the abelian category of commutative algebraic groups up to isogeny, defined as the quotient of Ck by the full subcategory Fk of finite k-group schemes. We show that Ck/Fk has homological dimension 1, and we determine its projective or injective objects. We also obtain structure results for Ck/Fk, which take a simpler form in positive characteristics. Contents 1 Introduction 2 2 Structure of algebraic groups 5 2.1 Preliminaryresults ............................... 5 2.2 Characteristiczero ............................... 8 2.3 Positive characteristics . 10 3 The isogeny category of algebraic groups 12 3.1 Definitionandfirstproperties . .. .. 12 3.2 Divisiblegroups................................. 17 3.3 Fieldextensions................................. 20 4 Tori, abelian varieties, and homological dimension 22 arXiv:1602.00222v2 [math.AG] 27 Sep 2016 4.1 Tori ....................................... 22 4.2 Abelianvarieties ................................ 24 4.3 Vanishingofextensiongroups . 28 5 Structure of isogeny categories 30 5.1 Vector extensions of abelian varieties . 30 5.2 Semi-abelian varieties . 35 5.3 Productdecompositions ............................ 36 1 1 Introduction There has been much recent progress on the structure of algebraic groups over an arbitrary field; in particular, on the classification of pseudo-reductive groups (see [CGP15, CP15]). Yet commutative algebraic groups over an imperfect field remain somewhat mysterious, e.g., extensions with unipotent quotients are largely unknown; see [To13] for interesting results, examples, and questions.
    [Show full text]
  • Lecture 2: Abelian Varieties the Subject of Abelian Varieties Is Vast
    Lecture 2: Abelian varieties The subject of abelian varieties is vast. In these notes we will hit some highlights of the theory, stressing examples and intuition rather than proofs (due to lack of time, among other reasons). We will note analogies with the more concrete case of elliptic curves (as in [Si]), as well as places where elliptic curves provide a poor guide for what to expect. In addition, we will use the complex-analytic theory and the example of Jacobians as sources of inspiration and examples to illustrate general results. For arithmetic purposes it is essential to allow the ground field to be of arbitrary characteristic (e.g., finite fields), and not algebraically closed. At the end, we explain Chabauty's clever argument that proves the Mordell conjecture for curves of genus g ≥ 2 whose Jacobian has Mordell{Weil rank less than g. In later lectures we will bootstrap from the case of individual abelian varieties to \families" of abelian varieties, or as we will call them, abelian schemes. This concept, along with related notions such as \good reduction" and \semistable reduction" will be an essential ingredient in Faltings' method. But for this lecture we restrict attention to the more concrete setting of a single fixed abelian variety over a field. Nonetheless, the later need for a mature theory of families over a parameter space of mixed-characteristic (even for the special case of modular curves over Z(p), required to make sense of \reduction mod p" for modular curves) forces us to allow arbitrary ground fields, including imperfect ones like Fp(t), as those always show up at generic points of special fibers when the parameter space has positive-dimensional fibers in each characteristic, as will happen in nearly all examples of moduli spaces that arise in Faltings' work and throughout arithmetic geometry.
    [Show full text]
  • Basic Theory of Abelian Varieties 1. Definitions
    ABELIAN VARIETIES J.S. MILNE Abstract. These are the notes for Math 731, taught at the University of Michigan in Fall 1991, somewhat revised from those handed out during the course. They are available at www.math.lsa.umich.edu/∼jmilne/. Please send comments and corrections to me at [email protected]. v1.1 (July 27, 1998). First version on the web. These notes are in more primitive form than my other notes — the reader should view them as an unfinished painting in which some areas are only sketched in. Contents Introduction 1 Part I: Basic Theory of Abelian Varieties 1. Definitions; Basic Properties. 7 2. Abelian Varieties over the Complex Numbers. 9 3. Rational Maps Into Abelian Varieties 15 4. The Theorem of the Cube. 19 5. Abelian Varieties are Projective 25 6. Isogenies 29 7. The Dual Abelian Variety. 32 8. The Dual Exact Sequence. 38 9. Endomorphisms 40 10. Polarizations and Invertible Sheaves 50 11. The Etale Cohomology of an Abelian Variety 51 12. Weil Pairings 52 13. The Rosati Involution 53 14. The Zeta Function of an Abelian Variety 54 15. Families of Abelian Varieties 57 16. Abelian Varieties over Finite Fields 60 17. Jacobian Varieties 64 18. Abel and Jacobi 67 Part II: Finiteness Theorems 19. Introduction 70 20. N´eron models; Semistable Reduction 76 21. The Tate Conjecture; Semisimplicity. 77 c 1998 J.S. Milne. You may make one copy of these notes for your own personal use. 1 0J.S.MILNE 22. Geometric Finiteness Theorems 82 23. Finiteness I implies Finiteness II. 87 24.
    [Show full text]
  • Duality of Abelian Varieties
    Duality of abelian varieties R. van Bommel Wednesday 16 November 2016 Abstract. In this talk the dual of an abelian variety will be defined. It will be shown that this dual is an abelian variety again. Using dual morphisms, we will finally show that the dual of the dual is canonically isomorphic to the orginal abelian variety. The author would like to thank Bas Edixhoven, Julian Lyczak and the other participants to the seminar for their valuable contributions. 0 Conventions and notation The letters A and B will be used to denote an abelian variety over a base scheme, S = Spec k, the spectrum of a field k. 1 Dual abelian variety Last week, Smit discussed the Picard functor. In our case he showed that PicA=S is a separated scheme, locally of finite type over S. It represents the relative Picard functor ∗ Sch=S ! Set : T 7! Pic(AT ) = prT Pic(T ): By construction it is a group scheme, whose identity point e 2 PicA=S(S) is given by the structure sheaf OA. Definition 1. The dual of A is _ 0 A := PicA=S; the connected component of PicA=S containing the identity e. Example 2. For an elliptic curve over S, i.e. an abelian variety of dimension 1, the dual is canonically isomorphic to itself, using for example Riemann-Roch. In the rest of this section, there will be an outline of a proof of the fact that A_ is again an abelian variety. 1 0 Lemma 3. Let X be a (proper) variety over S.
    [Show full text]
  • Abelian Varieties Over Finite Fields
    Abelian varieties over finite fields Frans Oort Mathematisch Instituut, P.O. Box. 80.010, NL - 3508 TA Utrecht The Netherlands e-mail: [email protected] Abstract. A. Weil proved that the geometric Frobenius π = F a of an abelian variety over a finite field with q = pa elements has absolute value √ q for every embedding. T. Honda and J. Tate showed that A 7→ πA gives a bijection between the set of isogeny classes of simple abelian varieties over Fq and the set of conjugacy classes of q-Weil numbers. Higher-dimensional varieties over finite fields, Summer school in G¨ottingen, June 2007 Introduction We could try to classify isomorphism classes of abelian varieties. The theory of moduli spaces of polarized abelian varieties answers this question completely. This is a geometric theory. However in this general, abstract theory it is often not easy to exhibit explicit examples, to construct abelian varieties with required properties. A coarser classification is that of studying isogeny classes of abelian varieties.A wonderful and powerful theorem, the Honda-Tate theory, gives a complete classification of isogeny classes of abelian varieties over a finite field, see Theorem 1.2. The basic idea starts with a theorem by A. Weil, a proof for the Weil conjec- ture for an abelian variety A over a finite field K = Fq, see 3.2: the geometric Frobenius π of A/K is an algebraic integer A √ which for every embedding ψ : Q(πA) → C has absolute value | ψ(πA) |= q. For an abelian variety A over K = Fq the assignment A 7→ πA associates to A its geometric Frobenius πA; the isogeny class of A gives the conjugacy class of the algebraic integer πA, and conversely an algebraic integer which is a Weil q-number determines an isogeny class, as T.
    [Show full text]
  • 6 Isogeny Kernels and Division Polynomials
    18.783 Elliptic Curves Spring 2017 Lecture #6 02/27/2017 6 Isogeny kernels and division polynomials In this lecture we continue our study of isogenies of elliptic curves. Recall that an isogeny is a surjective morphism that is also a group homomorphism, equivalently, a non-constant rational map that fixes the identity. In the previous lecture we showed that every nonzero 2 3 isogeny α: E1 ! E2 between elliptic curves in short Weierstrass form y = x + Ax + B can be written in the standard affine form u(x) s(x) α(x; y) = ; y ; v(x) t(x) where u ? v and s ? t are pairs of relatively prime polynomials in k[x].1 For any affine point (x0; y0) 2 E1(k¯), we have α(x0; y0) = 0 if and only if v(x0) = 0 (equivalently, if and only if t(x0) = 0; see Lemma 5.22 and Corollary 5.23). This follows from the fact that ker α is a subgroup, so if P = (x0; y0) 2 ker α then so is −P = (x0; −y0), and this accounts for every point in E(k¯) with x-coordinate x0. It follows that ker α = f(x0; y0) 2 E1(k¯): v(x0) = 0g [ f0g is determined by the polynomial v(x) (here 0 := (0 : 1 : 0) is the point at infinity). When α is the multiplication-by-n map P 7! nP = P + ··· + P (which is an isogeny because it is a group homomorphism defined by a non-constant rational map), the kernel of α is the n-torsion subgroup E[n] := fP 2 E(k¯): nP = 0g: Torsion subgroups play a key role in the theory of elliptic curves.
    [Show full text]
  • Abelian Varieties. Lecture 5
    Abelian Varieties. Lecture 5. Elisa Lorenzo Garc´ıa 29th February 2016 Contents 1 Basic definitions 1 1.1 Isogenies . .2 1.2 The Tate-module . .3 1.3 Tate-Honda Theorem . .3 1.4 Albert's classification . .4 1.5 The dual abelian variety . .4 2 Abelian Varieties over the complex numbers 4 3 Jacobians 5 4 Exercises 6 The main reference for today's lecture is paper [3]. 1 Basic definitions Let us fix k = Fq a finite field. An abelian variety over k is a subset of some projective n-space which 1. is defined by polynomials equations on the coordinates with coefficients in k. 2. is connected, and 3. has a group law which is algebraic (in the sense that the coordinates f the product of two points are rational functions of the coordinates of the factors). 1 In other words, an abelian variety A~k is an algebraic projective smooth and irreducible variety endow with a group law, that is, rational maps × ∶ A × A → A ∶ (P; Q) → P + Q and A → A ∶ P → −P . We usually denote the trivial element by O, that moreover, can be proved to be defined over the base field k. The first Theorem one proves is that abelian varieties are commutative, and this justifies why we denote the group law with the addition symbol. Example 1.1. Elliptic curves with the group law explained in last lectures, are abelian vari- eties of dimension 1. In particular, all dimension 1 abelian varieties are elliptic curves. The product of n elliptic curves E1 × ::: × En is an abelian variety of dimension n.
    [Show full text]
  • 18.783 S19 Elliptic Curves, Lecture 6: Isogeny Kernels and Division
    18.783 Elliptic Curves Spring 2019 Lecture #6 02/25/2019 6 Isogeny kernels and division polynomials In this lecture we continue our study of isogenies of elliptic curves. Recall that an isogeny is a surjective morphism that is also a group homomorphism, equivalently, a non-constant rational map that fixes the identity. In the previous lecture we showed that every nonzero 2 3 isogeny α: E1 ! E2 between elliptic curves in short Weierstrass form y = x + Ax + B can be written in the standard aÿne form u(x) s(x) α(x; y) = ; y ; v(x) t(x) 1 where u ? v and s ? t are pairs of relatively prime polynomials in k[x]. For any aÿne point (x0; y0) 2 E1(k¯), we have α(x0; y0) = 0 if and only if v(x0) = 0 (equivalently, if and only if t(x0) = 0; see Lemma 5.26 and Corollary 5.27). This follows from the fact that ker α is a subgroup, so if P = (x0; y0) 2 ker α then so is −P = (x0; −y0), and this accounts for every point in E(k¯) with x-coordinate x0. It follows that ker α = f(x0; y0) 2 E1(k¯): v(x0) = 0g [ f0g is determined by the polynomial v(x) (here 0 := (0 : 1 : 0) is the point at infinity). When α is the multiplication-by-n map P 7! nP = P + ··· + P (which is an isogeny because it is a group homomorphism defined by a non-constant rational map), the kernel of α is the n-torsion subgroup E[n] := fP 2 E(k¯) : nP = 0g: Torsion subgroups play a key role in the theory of elliptic curves.
    [Show full text]
  • Faltings's Proof of the Mordell Conjecture
    Faltings's Proof of the Mordell Conjecture Organized by Bhargav Bhatt and Andrew Snowden∗ Fall 2016 Abstract Our plan is to try to understand Faltings's proof of the Mordell conjecture. The focus will be on his first proof, which is more algebraic in nature, proves the Shafarevich and Tate conjectures, and also gives us a chance to learn about some nearby topics, such as the moduli space of abelian varieties or p-adic Hodge theory. The seminar will meet 4:10{5:30 every Thursday in 1360. Some relevant references are [CS86; Fal86; Tat66; Tat67], as well as notes from a seminar on this topic at Stanford recently: http://math.stanford.edu/~akshay/ntslearn.html Contents 1 September 15: Overview (Andrew Snowden) 3 1.1 Statements of Faltings's results . .3 1.2 Overview of the proof . .4 2 September 22: Endomorphisms of abelian varieties over finite fields (following Tate) (Emanuel Reinecke) 6 2.1 Motivation . .6 2.2 The isogeny category . .7 2.3 Initial reductions . .8 2.4 Proof of Tate's theorem . .9 2.5 Why does Hyp(k; A; `) hold if k = Fq?............................... 10 2.6 The weaker finiteness statement Hyp(k; A; d; `).......................... 11 3 September 29: Semiabelian varieties (Brandon Carter) 11 3.1 Motivation . 12 3.2 N´eronmodels . 12 3.3 Semiabelian varieties and semistable reduction . 13 3.4 The Hodge line bundle !A=S .................................... 14 3.5 A N´eronmapping property for semiabelian varieties . 14 3.6 Gabber's Lemma . 15 4 October 6: The Faltings height and basic finiteness theorems (Bhargav Bhatt) 17 4.1 Heights on Pn ...........................................
    [Show full text]
  • F. Pellarin the ISOGENY THEOREM and the IRREDUCIBILITY THEOREM for ELLIPTIC CURVES: a SURVEY
    Rend. Sem. Mat. Univ. Poi. Torino Voi. 53, 4 (1995) Number Theory F. Pellarin THE ISOGENY THEOREM AND THE IRREDUCIBILITY THEOREM FOR ELLIPTIC CURVES: A SURVEY Abstract.The purpose of the present paper is to give a survey on the isogeny theorem and the irreducibility theorem for elliptic curves with regard to effectiveness. After some preliminaries, we present in Section 2 the most important questions on this subject throughout the work of Serre, making use of ultrametric techniques. Transcendental techniques are introduced in Section 3: these are advantageously used by Choodnovsky to get effective versions of the isogeny theorem. In Section 4 we present the work of Masser and Wustholz on polynomial bounds and applications of the effective isogeny theorem. Finally we show recent improvements of the previous results and applications to the effective irreducibility theorem. 1. Background In the following text, k is a number fìeld such that [k : Q] = d, k an algebraic closure of k in C, and G the Galois group Gal(fc|fc). Let E\, E2 be two elliptic curves defined over k (with Weierstrass models defined over k). In this text we will only deal with elliptic curves defined over a number fìeld k. DEFINITION. We say that E\ and E2 are isogenous if there exists a surjective morphism E\ —• Ei. We say that E\ and E2 are fc-isogenous if there exists a surjective morphism E\ —» E2 commuting with G. An isogeny (resp. k-isogeny) E\ —> E2 is a surjective morphism (resp. surjective morphism defined over k) whose kernel is a subgroup ofEi.
    [Show full text]