Projective coordinates for Weierstrass curves #

This file defines the type of points on a Weierstrass curve as a tuple, consisting of an equivalence class of triples up to scaling by a unit, satisfying a Weierstrass equation with a nonsingular condition. This file also defines the negation and addition operations of the group law for this type, and proves that they respect the Weierstrass equation and the nonsingular condition.

Mathematical background #

Let W be a Weierstrass curve over a field F. A point on the projective plane is an equivalence class of triples $[x:y:z]$ with coordinates in F such that $(x, y, z) \sim (x', y', z')$ precisely if there is some unit u of F such that $(x, y, z) = (ux', uy', uz')$, with an extra condition that $(x, y, z) \ne (0, 0, 0)$. As described in Mathlib.AlgebraicGeometry.EllipticCurve.Affine, a rational point is a point on the projective plane satisfying a homogeneous Weierstrass equation, and being nonsingular means the partial derivatives $W_X(X, Y, Z)$, $W_Y(X, Y, Z)$, and $W_Z(X, Y, Z)$ do not vanish simultaneously. Note that the vanishing of the Weierstrass equation and its partial derivatives are independent of the representative for $[x:y:z]$, and the nonsingularity condition already implies that $(x, y, z) \ne (0, 0, 0)$, so a nonsingular rational point on W can simply be given by a tuple consisting of $[x:y:z]$ and the nonsingular condition on any representative.

As in Mathlib.AlgebraicGeometry.EllipticCurve.Affine, the set of nonsingular rational points forms an abelian group under the same secant-and-tangent process, but the polynomials involved are homogeneous, and any instances of division become multiplication in the $Z$-coordinate. Note that most computational proofs follow from their analogous proofs for affine coordinates.

Main definitions #

WeierstrassCurve.Projective.PointClass: the equivalence class of a point representative.
WeierstrassCurve.Projective.toAffine: the Weierstrass curve in affine coordinates.
WeierstrassCurve.Projective.Nonsingular: the nonsingular condition on a point representative.
WeierstrassCurve.Projective.NonsingularLift: the nonsingular condition on a point class.
WeierstrassCurve.Projective.neg: the negation operation on a point representative.
WeierstrassCurve.Projective.negMap: the negation operation on a point class.
WeierstrassCurve.Projective.add: the addition operation on a point representative.
WeierstrassCurve.Projective.addMap: the addition operation on a point class.

Main statements #

WeierstrassCurve.Projective.polynomial_relation: Euler's homogeneous function theorem.
WeierstrassCurve.Projective.nonsingular_neg: negation preserves the nonsingular condition.
WeierstrassCurve.Projective.nonsingular_add: addition preserves the nonsingular condition.

Implementation notes #

A point representative is implemented as a term P of type Fin 3 → R, which allows for the vector notation ![x, y, z]. However, P is not definitionally equivalent to the expanded vector ![P x, P y, P z], so the lemmas fin3_def and fin3_def_ext can be used to convert between the two forms. The equivalence of two point representatives P and Q is implemented as an equivalence of orbits of the action of Rˣ, or equivalently that there is some unit u of R such that P = u • Q. However, u • Q is not definitionally equal to ![u * Q x, u * Q y, u * Q z], so the lemmas smul_fin3 and smul_fin3_ext can be used to convert between the two forms.

References #

[J Silverman, The Arithmetic of Elliptic Curves][silverman2009]

Tags #

elliptic curve, rational point, projective coordinates

Projective coordinates for Weierstrass curves #

Mathematical background #

Main definitions #

Main statements #

Implementation notes #

References #

Tags #

Weierstrass curves #

Projective coordinates #

Weierstrass equations #

Nonsingular Weierstrass equations #

Negation formulae #

Doubling formulae #

Addition formulae #

Negation on point representatives #

Addition on point representatives #