04.04.03 · algebraic-geometry / curves

Elliptic curves

shipped3 tiersLean: none

Anchor (Master): Weierstrass *Vorlesungen über elliptische Funktionen* (1880s, originator); Poincaré 1901 *Sur les propriétés arithmétiques des courbes algébriques* (J. de Math. 7, originator of Mordell-Weil conjecture); Mordell 1922 *Proc. Camb. Phil. Soc.* 21 (proof for $\mathbb{Q}$); Weil 1929 *Acta Math.* 52 (number-field generalisation); Tate 1974 *Invent. Math.* 23 (modern survey); Hartshorne §IV.4; Silverman §III, §VIII

Intuition [Beginner]

An elliptic curve is a smooth curve of genus 1 with one marked point. Concretely, over the rationals or any field where $2$ and $3$ are invertible, the equation $y^{2} = x^{3} + a x + b$ defines such a curve in the plane, provided the cubic has no double root. Add the point at infinity and you have an elliptic curve; the marked point is that point at infinity.

What makes elliptic curves remarkable: the points form a group. Pick two points $P$ and $Q$ on the curve, draw the straight line through them, and that line crosses the curve at exactly one more point $R$ . Reflect $R$ across the $x$ -axis and call the result $P + Q$ . This recipe is symmetric, has the point at infinity as identity, and is associative. The group law is built from the geometry of the cubic — three points sum to zero exactly when they are collinear.

The point group $E (Q)$ of rational solutions sits inside the curve as a finitely generated abelian group: a finite torsion part plus a free $Z^{r}$ for some non-negative integer $r$ called the rank. Mordell proved this in 1922 — the deep arithmetic statement that there are only finitely many "essential" rational points from which every other rational point is built.

Visual [Beginner]

The cubic curve $y^{2} = x^{3} - x$ in the real plane: a connected oval on the right and a closed loop on the left, meeting the $x$ -axis at $- 1, 0, 1$ . Two marked points $P, Q$ on the curve, the line through them crossing the curve at a third point $R^{'}$ , and the reflection of $R^{'}$ across the $x$ -axis giving $P + Q$ .

The picture records the chord-and-tangent group law: three collinear points sum to zero, with the convention that the point at infinity plays the role of the identity element.

Worked example [Beginner]

Take $E : y^{2} = x^{3} - x$ over $Q$ . The cubic $x^{3} - x = x (x - 1) (x + 1)$ has three distinct roots, so the curve is smooth. The discriminant is $Δ = - 16 \cdot 4 \cdot (- 1)^{3} = 64 \neq = 0$ , confirming smoothness.

The three points where the curve meets the $x$ -axis are $P = (0, 0)$ , $Q = (1, 0)$ , $S = (- 1, 0)$ . The horizontal line $y = 0$ meets the curve at exactly these three points and no other. By the chord rule, $P + Q + S = O$ (the point at infinity), so $P + Q = - S$ . The negation rule on this curve sends $(x, y)$ to $(x, - y)$ , and since $S$ has $y = 0$ , $- S = S$ . Therefore $P + Q = S = (- 1, 0)$ .

Each of $P, Q, S$ has order 2, since adding any of them to itself uses the tangent line, which is vertical at a point with $y = 0$ , and the third intersection of a vertical line with the curve is the point at infinity, so $2 P = - O = O$ . Together with the point at infinity, the points ${O, P, Q, S}$ form a group of order 4 with every non-identity element of order 2, namely the Klein four-group $(Z /2)^{2}$ .

What this tells us: $E (Q)_{tors} \supseteq (Z /2)^{2}$ for this curve, and a closer analysis shows $E (Q)_{tors} = (Z /2)^{2}$ — the rational torsion is exactly these four points.

Check your understanding [Beginner]

Exercise (easy, multiple choice).

The chord-and-tangent group law on an elliptic curve $E$ takes which of the following as the identity element?

A. The origin $(0, 0)$ in the plane B. Any rational point of order 2 C. The marked point $O$ — the point at infinity in the Weierstrass model D. The point $(1, 0)$ if it lies on the curve

Hint

The marked point $O$ is part of the data of an elliptic curve and serves as the additive identity for the group law.

Answer

C. Feedback-correct: the marked point $O$ — for a Weierstrass model in the plane, the unique point at infinity — is the identity for the group law. Three collinear points sum to zero, and the line through $P$ and $- P$ is vertical, meeting the curve a third time at infinity. Feedback-wrong: the origin is generally not on the curve and even when it is, has no privileged role; rational points of order 2 are not the identity (they have order 2, not 1); $(1, 0)$ being on the curve does not make it the identity.

Formal definition [Intermediate+]

Let $k$ be a field. An elliptic curve over $k$ is a pair $(E, O)$ where $E$ is a smooth projective geometrically connected curve over $k$ of genus 1 and $O \in E (k)$ is a $k$ -rational point. Equivalently, $E$ is a 1-dimensional abelian variety over $k$ — a connected smooth projective group scheme over $k$ of dimension 1, with $O$ the identity element.

Weierstrass model. Assume $char k \neq = 2, 3$ for the simplest setup. Riemann-Roch on the genus-1 curve $E$ gives $dim H^{0} (E, O (n O)) = n$ for $n \geq 1$ 04.04.01. The basis ${1, x}$ of $H^{0} (E, O (2 O))$ together with $y \in H^{0} (E, O (3 O))$ chosen so that ${1, x, y}$ spans $H^{0} (E, O (3 O))$ embeds $E$ in $P^{2}$ as the projective closure of the affine cubic $$ y^2 = x^3 + a x + b, \qquad a, b \in k, $$ with $O$ identified as the unique point at infinity $[0 : 1 : 0]$ . The discriminant of the model is $Δ = - 16 (4 a^{3} + 27 b^{2})$ ; smoothness of $E$ is equivalent to $Δ \neq = 0$ , equivalently the cubic $x^{3} + a x + b$ has three distinct roots in $\overset{ˉ}{k}$ . The $j$ -invariant is $$ j(E) = -1728 \cdot \frac{(4a)^3}{\Delta} = 1728 \cdot \frac{4 a^3}{4 a^3 + 27 b^2}. $$ Two elliptic curves over an algebraically closed field $\overset{ˉ}{k}$ are isomorphic iff they have the same $j$ -invariant, and every $j_{0} \in \overset{ˉ}{k}$ occurs as $j (E)$ for some elliptic curve $E / \overset{ˉ}{k}$ . The $j$ -invariant therefore identifies the moduli space of elliptic curves over $\overset{ˉ}{k}$ with the affine line $A_{\overset{ˉ}{k}}^{1}$ .

Definition (group law). The group law on $E$ is the unique morphism $μ : E \times E \to E$ such that $μ (O, P) = P$ , the inverse $ι : E \to E$ the unique morphism such that $μ (P, ι (P)) = O$ , and three points $P, Q, R \in E$ with $P + Q + R = O$ iff they are collinear in the plane embedding (counted with multiplicity at points where the line is tangent to $E$ ). Equivalently, the map $E (k) \to Pic^{0} (E)$ , $P \mapsto [P - O]$ , is a group isomorphism — Riemann-Roch on the genus-1 curve $E$ gives $dim H^{0} (E, O (D)) = de g D$ for a divisor $D$ of degree $\geq 1$ , so every degree-zero divisor class on $E$ has a unique representative of the form $P - O$ with $P \in E$ .

Sign convention. The negation on the Weierstrass model sends $(x, y)$ to $(x, - y)$ ; the point at infinity is fixed. The group law is commutative, with identity $O$ . The Mordell-Weil rank of $E$ over a number field $K$ is $r = dim_{Q} E (K) \otimes_{Z} Q$ , the rank of the free part of the finitely generated abelian group $E (K)$ .

Counterexamples to common slips.

Genus-1 without rational point. A smooth projective curve of genus 1 over $k$ need not be an elliptic curve: it must come equipped with a $k$ -rational point. Over $Q$ , the curve $3 x^{3} + 4 y^{3} + 5 z^{3} = 0$ in $P^{2}$ (Selmer's curve) has genus 1 but no $Q$ -rational points; it is a principal homogeneous space for an elliptic curve, not itself an elliptic curve.
Singular Weierstrass cubics. The equation $y^{2} = x^{3}$ defines a curve with a cusp at the origin; the equation $y^{2} = x^{3} + x^{2}$ defines a curve with a node. Neither is an elliptic curve in the strict sense — both have $Δ = 0$ . Their smooth loci do carry group structures (the additive group $G_{a}$ and multiplicative group $G_{m}$ respectively), but these are generalised elliptic curves, not elliptic curves.
Characteristic 2 and 3. Outside the assumption $char k \neq = 2, 3$ , the short Weierstrass form is insufficient: one needs the long Weierstrass form $y^{2} + a_{1} x y + a_{3} y = x^{3} + a_{2} x^{2} + a_{4} x + a_{6}$ with five coefficients, and the discriminant formula is correspondingly more complicated.
Confusing $j$ -invariant with isomorphism over $k$ . Over a non-algebraically-closed field $k$ , two elliptic curves with the same $j$ -invariant are twists of each other but need not be isomorphic over $k$ . The set of $k$ -twists of $E$ is parametrised by $H^{1} (Gal (\overset{ˉ}{k} / k), Aut (E_{\overset{ˉ}{k}}))$ .

Key theorem with proof [Intermediate+]

Theorem (Mordell-Weil, 1922). Let $E$ be an elliptic curve over $Q$ . The group $E (Q)$ is finitely generated.

Proof. The argument has two ingredients: weak Mordell-Weil (the finite-quotient statement $E (Q) / n E (Q)$ is finite for some integer $n \geq 2$ ), and the theory of heights (a positive function $h : E (Q) \to R_{\geq 0}$ controlled by the group law).

Step 1 — Weak Mordell-Weil. Take $n = 2$ for concreteness; the proof for general $n \geq 2$ is parallel. The multiplication-by- $2$ map $[2] : E \to E$ is a finite étale cover of degree 4 over the open complement of $E [2]$ . The Kummer sequence $0 \to E [2] \to E [2] E \to 0$ of $Gal (\overline{Q} / Q)$ -modules gives a long exact cohomology sequence with connecting map $$ \delta : E(\mathbb{Q}) / 2 E(\mathbb{Q}) \hookrightarrow H^1(\mathrm{Gal}(\overline{\mathbb{Q}}/\mathbb{Q}), E[2]). $$ The image of $δ$ lies in the subgroup of cohomology classes unramified outside the finite set $S$ of primes of bad reduction together with ${2, \infty}$ . Hermite-Minkowski / class-number finiteness for $Q$ then forces this subgroup to be finite (it is $Sel_{2} (E / Q)$ , the 2-Selmer group, contained in a finite group of cohomology classes ramified only at $S$ ). Therefore $E (Q) /2 E (Q)$ is finite.

Step 2 — Heights. The naive height of a rational point $P = (x, y) \in E (Q)$ written in lowest terms with $x = a / b$ , $g cd (a, b) = 1$ , $b > 0$ , is $H (P) := max (∣ a ∣, ∣ b ∣)$ , and the logarithmic naive height is $h (P) := lo g H (P)$ (with $h (O) = 0$ ). The Néron-Tate canonical height is the limit $$ \hat h(P) := \lim_{n \to \infty} \frac{h(2^n P)}{4^n}, $$ which exists by a Cauchy-sequence argument and satisfies the parallelogram law $$ \hat h(P + Q) + \hat h(P - Q) = 2 \hat h(P) + 2 \hat h(Q). $$ The parallelogram law implies $\hat{h}$ is a quadratic form on $E (Q) \otimes ZR$ , and the associated bilinear pairing $⟨ P, Q ⟩ := \frac{1}{2} (\hat{h} (P + Q) - \hat{h} (P) - \hat{h} (Q))$ is positive-definite on $E (Q) \otimes Q$ modulo torsion. Two further properties hold:

(i) For every constant $C > 0$ , the set ${P \in E (Q) : \hat{h} (P) \leq C}$ is finite. This is because $\hat{h}$ differs from $h$ by an $O (1)$ term, and there are only finitely many rational points of bounded naive height.

(ii) $\hat{h} (n P) = n^{2} \hat{h} (P)$ for every $n \in Z$ .

Step 3 — Descent. Take a complete set of representatives $Q_{1}, \dots, Q_{m}$ for $E (Q) /2 E (Q)$ (finite by Step 1). Set $C := max_{i} \hat{h} (Q_{i})$ . Let $P \in E (Q)$ . Write $P = Q_{i_{0}} + 2 P_{1}$ for some $i_{0}$ and $P_{1} \in E (Q)$ , then $P_{1} = Q_{i_{1}} + 2 P_{2}$ , and so on. The parallelogram law gives $$ 4 \hat h(P_1) = \hat h(2 P_1) = \hat h(P - Q_{i_0}) \leq 2 \hat h(P) + 2 \hat h(Q_{i_0}) - \hat h(P + Q_{i_0}) \leq 2 \hat h(P) + 2 C, $$ hence $\hat{h} (P_{1}) \leq \frac{1}{2} \hat{h} (P) + \frac{1}{2} C$ . Iterating, $\hat{h} (P_{n}) \leq 2^{- n} \hat{h} (P) + C$ , so for some $N$ we have $\hat{h} (P_{N}) \leq 2 C$ . By (i) the set $S := {Q \in E (Q) : \hat{h} (Q) \leq 2 C}$ is finite. Backtracking, $P$ lies in the subgroup of $E (Q)$ generated by ${Q_{1}, \dots, Q_{m}} \cup S$ , a finite set. Therefore $E (Q)$ is finitely generated. $□$

The descent argument is Fermat's infinite descent in the form Mordell adapted: every rational point reduces, after finitely many halvings, to a point of bounded height, and bounded-height rational points are finite in number. Weil 1929 ^{[Weil 1929]} extended the proof to elliptic curves over arbitrary number fields by replacing $Q$ -class-number finiteness with $K$ -class-number finiteness and the Dirichlet unit theorem.

Bridge. The Mordell-Weil structure $E (Q) ≅ Z^{r} \oplus E (Q)_{tors}$ here builds toward Mazur's torsion theorem [pending] (Mazur 1977 ^{[Mazur 1977]}) which classifies the 15 possible isomorphism types of $E (Q)_{tors}$ , and toward the Birch and Swinnerton-Dyer conjecture which predicts the rank $r$ from the order of vanishing of the $L$ -function at $s = 1$ . The same descent template appears again in the proof of finite generation for the Mordell-Weil group of an abelian variety over a number field, and the Néron-Tate height extends to a positive-definite quadratic form on the Mordell-Weil group of every abelian variety. The 2-Selmer group $Sel_{2} (E / Q)$ that appears in Step 1 sits inside the Tate-Shafarevich group $\Sha (E / Q)$ , conjectured to be finite — a conjecture of Tate that connects to the BSD leading-term refinement and to the local-global principle for principal homogeneous spaces under $E$ . The chord-and-tangent geometry of the group law is exactly what makes this descent computable: the formulas for $P + Q$ are rational functions in the coordinates of $P$ and $Q$ , and the height behaviour under $[2]$ is the engine of the Step-3 argument. Putting these together, the theorem packages three apparently distinct ingredients — Galois cohomology (Selmer groups), Diophantine geometry (heights), and infinite descent — into a single finiteness statement, and its quantitative refinements form the modern arithmetic theory of elliptic curves.

Exercises [Intermediate+]

Exercise 3 (medium, numeric).

For the elliptic curve $E : y^{2} = x^{3} - x$ over $Q$ and the point $P = (0, 0)$ on $E$ , compute $2 P$ using the chord-and-tangent law.

Hint

The doubling formula uses the tangent line at $P$ . For a point $P = (x_{0}, y_{0})$ on $y^{2} = x^{3} + a x + b$ with $y_{0} \neq = 0$ , the tangent has slope $λ = (3 x_{0}^{2} + a) / (2 y_{0})$ , and $2 P = (λ^{2} - 2 x_{0}, λ (x_{0} - x_{2}) - y_{0})$ where $x_{2}$ is the new $x$ -coordinate.

Answer

At $P = (0, 0)$ , $y_{0} = 0$ , so the tangent line is vertical (the partial $\partial F / \partial y = 2 y$ vanishes there). The vertical line $x = 0$ meets the curve at $P$ with multiplicity 2 and at the point at infinity. Therefore $2 P = O$ , i.e. $P$ has order 2. Rubric: full credit for the order-2 conclusion with the vertical-tangent observation. The same calculation applied to $Q = (1, 0)$ and $S = (- 1, 0)$ shows each has order 2, so the 2-torsion subgroup is ${O, P, Q, S} ≅ (Z /2)^{2}$ .

Exercise 4 (medium, symbolic).

Show that for an elliptic curve $E : y^{2} = x^{3} + a x + b$ over a field $k$ with $char k \neq = 2$ , the 2-torsion subgroup $E [2] (\overset{ˉ}{k})$ is isomorphic to $(Z /2)^{2}$ , and determine when $E [2] (Q) ≅ (Z /2)^{2}$ versus $Z /2$ or ${O}$ for $k = Q$ .

Hint

A point has order 2 iff $y = 0$ . Count the roots of $x^{3} + a x + b$ in $\overset{ˉ}{k}$ versus in $Q$ .

Answer

A point $P = (x, y)$ has $- P = (x, - y) = P$ iff $y = 0$ , equivalently $x$ is a root of $x^{3} + a x + b$ . Since the discriminant of the cubic is non-zero (smoothness of $E$ ), the cubic has three distinct roots in $\overset{ˉ}{k}$ , giving three points of order 2 plus $O$ , hence $E [2] (\overset{ˉ}{k}) ≅ (Z /2)^{2}$ . Over $Q$ : $E [2] (Q) ≅ (Z /2)^{2}$ iff $x^{3} + a x + b$ splits completely over $Q$ ; $E [2] (Q) ≅ Z /2$ iff the cubic has exactly one rational root (the other two being a complex-conjugate pair); $E [2] (Q) = {O}$ iff the cubic is irreducible over $Q$ . Example: $y^{2} = x^{3} - x$ has $E [2] (Q) = (Z /2)^{2}$ (cubic splits as $x (x - 1) (x + 1)$ ); $y^{2} = x^{3} - 2$ has $E [2] (Q) = {O}$ (cubic $x^{3} - 2$ is irreducible over $Q$ ). Rubric: full credit for the discriminant-and-roots correspondence and the $Q$ case analysis.

Exercise 5 (medium, symbolic).

Use Riemann-Roch 04.04.01 to prove that on a smooth projective curve $E$ of genus 1 with marked point $O \in E (k)$ , the map $E (k) \to Pic^{0} (E)$ , $P \mapsto [P - O]$ , is a group isomorphism.

Hint

For a divisor $D$ of degree 1 on a genus-1 curve, $dim H^{0} (E, O (D)) = 1$ by Riemann-Roch (using $de g K_{E} = 0$ ). Identify each degree-zero divisor class with a unique point.

Answer

Riemann-Roch on a genus-1 curve reads $dim H^{0} (E, O (D)) - dim H^{0} (E, K_{E} - D) = de g D$ . For $D$ a divisor of degree 1: $de g (K_{E} - D) = - 1 < 0$ , so $H^{0} (E, K_{E} - D) = 0$ , hence $dim H^{0} (E, O (D)) = 1$ . The unique (up to scalar) global section has zero divisor of degree 1 on $E$ , so every divisor class of degree 1 has a unique effective representative — a single point of $E$ . Translating by $- O$ , every degree-zero divisor class has a unique representative of the form $P - O$ with $P \in E (k)$ . The bijection $E (k) \to Pic^{0} (E)$ , $P \mapsto [P - O]$ , is therefore well-defined and bijective.

For the group structure: the chord rule says $P + Q + R \sim_{lin} 3 O$ on a Weierstrass cubic when $P, Q, R$ are collinear — this is because the line $ℓ : a X + bY + c Z = 0$ in $P^{2}$ cuts $E$ in a divisor of degree 3, namely $P + Q + R$ , and the divisor of $ℓ$ on $E$ is linearly equivalent to the hyperplane class restricted to $E$ , which is $3 O$ (the divisor of any line through $O$ at infinity). Therefore $[P - O] + [Q - O] + [R - O] = [P + Q + R - 3 O] = 0$ in $Pic^{0} (E)$ , equivalently the chord-and-tangent law on $E (k)$ corresponds to addition in $Pic^{0} (E)$ . The bijection is therefore a group isomorphism. Rubric: full credit for the Riemann-Roch dimension count and the chord-rule-equals-linear-equivalence observation.

Exercise 6 (medium, symbolic).

Show that for the elliptic curve $E : y^{2} = x^{3} - x$ over $F_{5}$ , the number of points $# E (F_{5})$ satisfies the Hasse bound $∣# E (F_{5}) - 6∣ \leq 25$ , and compute $# E (F_{5})$ explicitly.

Hint

Enumerate $x \in F_{5}$ and check whether $x^{3} - x$ is a square modulo 5; each non-zero square gives 2 points, each non-zero non-square gives 0 points, and $x^{3} - x = 0$ gives 1 point. Add 1 for the point at infinity.

Answer

Quadratic residues modulo 5 are ${0, 1, 4}$ . Compute $x^{3} - x$ for $x = 0, 1, 2, 3, 4$ :

$x = 0$ : $0 - 0 = 0$ , square, gives 1 point $(0, 0)$ .
$x = 1$ : $1 - 1 = 0$ , square, gives 1 point $(1, 0)$ .
$x = 2$ : $8 - 2 = 6 \equiv 1 (mod 5)$ , square, gives 2 points $(2, \pm 1)$ .
$x = 3$ : $27 - 3 = 24 \equiv 4 (mod 5)$ , square, gives 2 points $(3, \pm 2)$ .
$x = 4$ : $64 - 4 = 60 \equiv 0 (mod 5)$ , square, gives 1 point $(4, 0)$ .

Affine count: $1 + 1 + 2 + 2 + 1 = 7$ . Including the point at infinity: $# E (F_{5}) = 8$ . Hasse bound: $∣8 - 6∣ = 2 \leq 25 \approx 4.47$ , satisfied. The trace of Frobenius is $a_{5} = 5 + 1 - 8 = - 2$ . Rubric: full credit for the enumeration giving $# E (F_{5}) = 8$ and the Hasse-bound check.

Exercise 7 (hard, symbolic).

Prove the parallelogram law for the Néron-Tate canonical height: for $P, Q \in E (Q)$ , $\hat{h} (P + Q) + \hat{h} (P - Q) = 2 \hat{h} (P) + 2 \hat{h} (Q)$ .

Hint

The naive height satisfies a quasi-parallelogram law $h (P + Q) + h (P - Q) = 2 h (P) + 2 h (Q) + O (1)$ , with the $O (1)$ controlled by the height of the divisor $[2 O] \cdot 2 = [4 O]$ on $E \times E$ . Take limits along $[2^{n}]$ .

Answer

Step 1: the naive height $h (P) = lo g H (P)$ on $E (Q)$ satisfies $h ([2] P) = 4 h (P) + O (1)$ — this comes from the duplication formula, which expresses the $x$ -coordinate of $[2] P$ as a rational function of $x (P)$ of degree 4 in numerator and denominator, with the leading coefficient comparison giving the factor $4$ .

Step 2: the Tate limit. Define $\hat{h} (P) := lim_{n \to \infty} 4^{- n} h ([2^{n}] P)$ . By Step 1, the sequence $a_{n} := 4^{- n} h ([2^{n}] P)$ satisfies $a_{n + 1} - a_{n} = 4^{- n - 1} (h ([2^{n + 1}] P) - 4 h ([2^{n}] P)) = O (4^{- n - 1})$ , hence is Cauchy and converges. The limit $\hat{h}$ satisfies $\hat{h} ([2] P) = 4 \hat{h} (P)$ exactly (no error term), and differs from $h$ by an $O (1)$ function.

Step 3: parallelogram law for the naive height. Let $f (P, Q) := h (P + Q) + h (P - Q) - 2 h (P) - 2 h (Q)$ on $E \times E$ . The morphism $E \times E \to E^{4}$ , $(P, Q) \mapsto (P + Q, P - Q, P, P)$ , has the property that the height of the image is bounded in terms of $h (P), h (Q)$ and the heights of the addition / subtraction morphisms, which are bounded as morphisms of projective varieties. So $f (P, Q) = O (1)$ for $(P, Q) \in E (Q) \times E (Q)$ .

Step 4: parallelogram law for the canonical height. Apply Step 3 with $P, Q$ replaced by $[2^{n}] P, [2^{n}] Q$ and divide by $4^{n}$ : $$ f([2^n] P, [2^n] Q) = h([2^n](P + Q)) + h([2^n](P - Q)) - 2 h([2^n] P) - 2 h([2^n] Q) = O(1). $$ Dividing by $4^{n}$ and taking $n \to \infty$ kills the $O (1)$ term and gives $$ \hat h(P + Q) + \hat h(P - Q) - 2 \hat h(P) - 2 \hat h(Q) = 0. $$ This is the parallelogram law. Rubric: full credit for the duplication-formula step, the Cauchy-sequence argument, the naive parallelogram law modulo $O (1)$ , and the $4^{- n}$ rescaling step.

Exercise 8 (hard, short-answer).

Verify the Mordell-Weil rank-1 example: for the curve $E : y^{2} = x^{3} - 2$ over $Q$ , the point $P = (3, 5)$ lies on $E$ , and the multiples $n P$ for $n = 1, 2, 3, \dots$ all have distinct $x$ -coordinates (so $P$ has infinite order). Compute $2 P$ and $3 P$ explicitly and verify $E (Q)_{tors} = {O}$ .

Hint

Use the doubling formula $λ = (3 x^{2} + a) / (2 y)$ with $a = 0$ to get $2 P$ , then the addition formula $λ = (y_{2} - y_{1}) / (x_{2} - x_{1})$ with the line through $P$ and $2 P$ to get $3 P = P + 2 P$ . For torsion: $E [2] (Q) = {O}$ since $x^{3} - 2$ is irreducible over $Q$ , and the Lutz-Nagell theorem rules out torsion of higher order.

Answer

Verify $P = (3, 5)$ : $3^{3} - 2 = 27 - 2 = 25 = 5^{2}$ . ✓

Compute $2 P$ . Slope at $P$ : $λ = (3 \cdot 9 + 0) / (2 \cdot 5) = 27/10$ . New $x$ : $x^{'} = λ^{2} - 2 \cdot 3 = 729/100 - 6 = 129/100$ . New $y$ : $y^{'} = λ (3 - 129/100) - 5 = (27/10) (171/100) - 5 = 4617/1000 - 5000/1000 = - 383/1000$ . So $2 P = (129/100, - 383/1000)$ .

Compute $3 P = P + 2 P$ . Slope: $λ = (- 383/1000 - 5) / (129/100 - 3) = (- 5383/1000) / (- 171/100) = 5383/ (10 \cdot 171) = 5383/1710$ . New $x$ : $x^{''} = λ^{2} - 3 - 129/100 = (5383)^{2} / (1710)^{2} - 3 - 129/100$ . Numerically $λ^{2} \approx 9.91$ , $x^{''} \approx 9.91 - 3 - 1.29 = 5.62$ . The coordinates blow up rapidly — this is the height growth $\hat{h} (n P) = n^{2} \hat{h} (P)$ .

Torsion. The cubic $x^{3} - 2$ is irreducible over $Q$ (its rational root would be a divisor of $2$ , but $1, - 1, 2, - 2$ all fail), so $E [2] (Q) = {O}$ . By the Lutz-Nagell theorem, any torsion point $Q = (x, y) \in E (Q)_{tors} ∖ {O}$ has $x, y \in Z$ with $y^{2} ∣ Δ = - 16 \cdot 27 \cdot 4 = - 1728$ . Checking the finitely many integer pairs $(x, y)$ with $y^{2} ∣1728$ and $y^{2} = x^{3} - 2$ yields no solutions. Hence $E (Q)_{tors} = {O}$ , and $E (Q) ≅ Z$ generated by $P$ (the rank is 1). Rubric: full credit for the explicit $2 P, 3 P$ computation and the Lutz-Nagell torsion-elimination argument.

Lean formalization [Intermediate+]

lean_status: none. Mathlib has the predicate EllipticCurve over a commutative ring with the discriminant non-zero condition (in Mathlib.AlgebraicGeometry.EllipticCurve.Weierstrass) and the chord-and-tangent group law on the affine model with point-at-infinity (in Mathlib.AlgebraicGeometry.EllipticCurve.Group). What is missing for the content of this unit is summarised in the lean_mathlib_gap field; the headline target — Mordell-Weil for $E (Q)$ — depends on Galois cohomology of $E [2]$ , the Néron-Tate height construction, and Hermite-Minkowski / class-number finiteness, none currently formalised in the elliptic-curve API.

[object Promise]

Advanced results [Master]

Mazur's torsion theorem (Mazur 1977). For every elliptic curve $E$ over $Q$ , the torsion subgroup $E (Q)_{tors}$ is isomorphic to one of fifteen explicit groups: $Z / n$ for $n \in {1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 12}$ , or $Z /2 \oplus Z /2 m$ for $m \in {1, 2, 3, 4}$ . All fifteen groups occur for some $E / Q$ . The proof goes via the moduli interpretation: a $Q$ -rational point on the modular curve $X_{1} (N)$ corresponds to an elliptic curve $E / Q$ together with a $Q$ -rational point of order $N$ . Mazur computed the rational points on $X_{1} (N)$ for the relevant range of $N$ , showing that for $N \in / {1, \dots, 10, 12}$ (with the natural extension to mixed torsion), $X_{1} (N) (Q)$ contains only cusps. The proof relies on Mazur's Eisenstein ideal analysis of the modular Jacobian $J_{1} (N)$ , the determination of its $Q$ -rational torsion and its Mordell-Weil rank in terms of the Eisenstein quotient, and the Eichler-Shimura congruence relating Hecke operators to Frobenius.

Modularity theorem (Wiles 1995, Taylor-Wiles 1995, Breuil-Conrad-Diamond-Taylor 2001). Every elliptic curve $E$ over $Q$ is modular: there exists a weight-2 cuspidal newform $f \in S_{2} (Γ_{0} (N))$ of level $N = N (E)$ (the conductor of $E$ ) such that the $L$ -function $L (E, s)$ equals the $L$ -function $L (f, s)$ of the newform. Equivalently, $E$ admits a non-constant morphism $ϕ : X_{0} (N) \to E$ over $Q$ for $N = N (E)$ . Wiles proved the semistable case in 1995 ^{[Wiles 1995]} (sufficient for Fermat's Last Theorem via the Frey curve and the level-lowering theorem of Ribet), and the full theorem was completed by Breuil-Conrad-Diamond-Taylor in 2001 ^{[Breuil-Conrad-Diamond-Taylor 2001]}. The proof method is the modularity lifting theorem, $R = T$ : identify a deformation ring $R$ parametrising suitable Galois representations with a Hecke algebra $T$ acting on modular forms.

BSD conjecture (Birch-Swinnerton-Dyer, 1965). The order of vanishing of $L (E, s)$ at $s = 1$ equals the Mordell-Weil rank: $ord_{s = 1} L (E, s) = rank E (Q)$ . The leading-term refinement asserts $$ \lim_{s \to 1} \frac{L(E, s)}{(s - 1)^r} = \frac{#\Sha(E/\mathbb{Q}) \cdot \Omega_E \cdot R_E \cdot \prod_p c_p}{(#E(\mathbb{Q})_{\mathrm{tors}})^2}, $$ where $r$ is the rank, $\Sha$ is the Tate-Shafarevich group, $Ω_{E}$ is the real period, $R_{E}$ is the regulator (the determinant of the Néron-Tate height pairing on a basis of $E (Q) / tors$ ), and $c_{p}$ are the local Tamagawa numbers. The conjecture is open in general; partial results include Coates-Wiles 1977 (rank 0 case for CM curves), Gross-Zagier 1986 / Kolyvagin 1989 (rank $\leq 1$ for elliptic curves admitting a Heegner-point construction), and Kim 2007+ (extension via $p$ -adic methods).

Hasse bound and Frobenius. Over a finite field $F_{q}$ with $q = p^{n}$ , the Frobenius endomorphism $ϕ_{q} : E \to E$ , $(x, y) \mapsto (x^{q}, y^{q})$ , satisfies a quadratic relation $ϕ_{q}^{2} - a_{q} ϕ_{q} + q = 0$ in the endomorphism ring $End (E_{\overline{F_{q}}})$ , where $a_{q} = q + 1 - # E (F_{q})$ is the trace of Frobenius. The eigenvalues $α, β$ of $ϕ_{q}$ acting on the Tate module $T_{ℓ} E$ for $ℓ \neq = p$ are complex conjugate algebraic integers with $∣ α ∣ = ∣ β ∣ = q$ , hence $∣ a_{q} ∣ = ∣ α + β ∣ \leq 2 q$ — the Hasse bound. An elliptic curve $E / \overline{F_{p}}$ is ordinary if $# E [p] (\overline{F_{p}}) = p$ , supersingular if $# E [p] (\overline{F_{p}}) = 1$ (equivalently, $a_{p} \equiv 0 (mod p)$ over $F_{p}$ ). The endomorphism ring of an ordinary elliptic curve is an order in an imaginary quadratic field; that of a supersingular elliptic curve is an order in a quaternion algebra ramified at $p$ and $\infty$ .

Tate's algorithm. For an elliptic curve $E$ over a complete discretely valued field $K$ (e.g. $Q_{p}$ ) with valuation ring $O_{K}$ and uniformiser $π$ , the minimal Weierstrass model over $O_{K}$ has reduction type at the residue field $k = O_{K} / π$ classified by Kodaira's symbols: $I_{n}$ (multiplicative, semistable, with $n$ -component special fibre), $I_{n}^{*}$ ( $n \geq 0$ , additive after a quadratic twist), and the exceptional types $I I, I I I, I V, I I^{*}, I I I^{*}, I V^{*}$ . Tate's algorithm 1975 Algorithm for determining the type of a singular fibre in an elliptic pencil computes the reduction type, the minimal model, and the local conductor exponent $f_{p}$ from the Weierstrass coefficients of any model.

CM theory. An elliptic curve $E$ over $C$ has complex multiplication if $End (E) \otimes Q$ is a 2-dimensional $Q$ -algebra — necessarily an imaginary quadratic field $K = Q (- d)$ . Equivalently, $E ≅ C / O$ for an order $O$ in $K$ . The main theorem of complex multiplication (Kronecker-Weber generalisation, Shimura-Taniyama 1961): the values of $j$ at CM points generate the Hilbert class field of $K$ , and the values of suitable elliptic / Weber modular functions generate the ring class fields. CM elliptic curves over $Q$ have $L$ -functions equal to Hecke $L$ -functions of associated $K$ -Grössencharakters (Deuring 1953), making the modularity-of-CM-curves a classical theorem long predating Wiles.

Heegner points. For an elliptic curve $E / Q$ of conductor $N$ and an imaginary quadratic field $K$ such that all primes dividing $N$ split in $K$ (the Heegner hypothesis), there is a systematic construction of $K$ -rational points on $E$ via the modular parametrisation $ϕ : X_{0} (N) \to E$ : take the image $ϕ (P_{K}) \in E (K)$ of a Heegner point $P_{K} \in X_{0} (N)$ , where $P_{K}$ corresponds to a pair $(C / O_{K}, C / n^{- 1})$ with $O_{K}$ the ring of integers and $n$ an ideal of norm $N$ . Gross-Zagier 1986 Heegner points and derivatives of $L$ -series showed that the trace down to $Q$ of such Heegner points has Néron-Tate height equal to a non-zero multiple of $L^{'} (E, 1)$ (the derivative at $s = 1$ ). Combined with Kolyvagin's Euler system method, this proves the rank- $\leq 1$ case of the BSD conjecture for elliptic curves of analytic rank $\leq 1$ .

Modular curves $X_{0} (N)$ , $X_{1} (N)$ as moduli. The modular curve $Y_{0} (N) = H / Γ_{0} (N)$ parametrises pairs $(E, C)$ of an elliptic curve $E$ together with a cyclic subgroup $C \subset E$ of order $N$ ; the curve $Y_{1} (N) = H / Γ_{1} (N)$ parametrises pairs $(E, P)$ with $P \in E$ a point of order $N$ . Their projective compactifications $X_{0} (N), X_{1} (N)$ add finitely many cusps, giving smooth projective curves over $Q$ . The $j$ -invariant defines a holomorphic function on $H$ invariant under $SL_{2} (Z)$ , providing an isomorphism $j : Y (1) := H / SL_{2} (Z) ≅ A_{C}^{1}$ , with $X (1) = P_{C}^{1}$ obtained by adding the single cusp at $\infty$ . The functional equation $j (- 1/ τ) = j (τ)$ exhibits $j$ as the foundational example of a modular function.

Synthesis. Elliptic curves are the simplest abelian varieties beyond the additive and multiplicative groups: 1-dimensional, projective, group-scheme-and-variety in one. The theory packages four apparently distinct ingredients into a single object. The first is the geometry: a smooth genus-1 curve with marked point, embedded in $P^{2}$ as a Weierstrass cubic via Riemann-Roch 04.04.01, with its chord-and-tangent group law identified with $Pic^{0} (E)$ on a genus-1 curve. The second is the arithmetic over number fields: the Mordell-Weil group $E (Q) ≅ Z^{r} \oplus Z / n_{1} \oplus Z / n_{2}$ is finitely generated (Mordell 1922 / Weil 1929), with torsion classified by Mazur 1977 and rank predicted by BSD via the $L$ -function. The third is the automorphic side: the modularity theorem (Wiles-Taylor-BCDT) identifies $L (E, s)$ with the $L$ -function of a weight-2 cuspidal newform on $Γ_{0} (N)$ , building a bridge between geometry and analysis. The fourth is the moduli-theoretic side: $j$ -invariant identifies the moduli of elliptic curves over $\overset{ˉ}{k}$ with $A_{\overset{ˉ}{k}}^{1}$ , modular curves $X_{0} (N), X_{1} (N)$ parametrise level structures, and CM points generate class fields of imaginary quadratic fields.

The same Néron-Tate height that powers Mordell-Weil reappears as the regulator in BSD; the same Galois cohomology that gives weak Mordell-Weil reappears in the Selmer-Shafarevich exact sequence; the same modular curves that classify torsion are the source of Heegner points used in Gross-Zagier-Kolyvagin. Putting these together, the foundational reason elliptic curves are the central object of modern arithmetic geometry is exactly that every major theorem about them connects to every other: rank, torsion, $L$ -function, modularity, Heegner points, CM, reduction types, and Tate-Shafarevich — all are computed from the same Weierstrass coefficients $a, b$ via mutually-determining algorithms, and their interconnections are the engine of Diophantine geometry.

Full proof set [Master]

Theorem (Weak Mordell-Weil). Let $E$ be an elliptic curve over a number field $K$ and $n \geq 2$ an integer. Then $E (K) / n E (K)$ is finite.

Proof. The multiplication-by- $n$ map $[n] : E \to E$ is a finite étale isogeny of degree $n^{2}$ over the open complement of $E [n]$ , with kernel $E [n] ≅ (Z / n)^{2}$ as a $Gal (\overset{ˉ}{K} / K)$ -module. The Kummer sequence $0 \to E [n] \to E [n] E \to 0$ as étale sheaves gives a long exact cohomology sequence; the connecting map yields the Kummer injection $$ \delta : E(K) / n E(K) \hookrightarrow H^1(\mathrm{Gal}(\bar K / K), E[n]). $$ The image lies in the $n$ -Selmer group $Sel_{n} (E / K)$ , defined as the subgroup of cohomology classes that are unramified at all primes of good reduction and lie in the image of the local connecting maps for primes of bad reduction. By the standard finiteness argument — Hermite-Minkowski for $K$ , plus finiteness of the class group $Cl (K)$ and finite generation of the unit group $O_{K}^{\times}$ — the group $Sel_{n} (E / K)$ is finite ^{[Silverman §VIII]}. Therefore $E (K) / n E (K) \subseteq Sel_{n} (E / K)$ is finite. $□$

Theorem (Mordell-Weil). Statement and proof as in the Intermediate-tier Key theorem section, generalised to a number field $K$ in place of $Q$ .

Proof. The Intermediate-tier proof goes through with weak Mordell-Weil (above) replacing the $Q$ -specific Step 1 and the Néron-Tate height construction (existence and parallelogram law via the Tate limit, finite-many-points-of-bounded-height property) replacing the Step 2 ingredients. Step 3 (descent) is identical. $□$

Theorem (Hasse bound). Let $E$ be an elliptic curve over $F_{q}$ . Then $∣# E (F_{q}) - q - 1∣ \leq 2 q$ .

Proof sketch. The Frobenius endomorphism $ϕ : E \to E$ , $(x, y) \mapsto (x^{q}, y^{q})$ , generates the kernel of the étale-cohomological action and satisfies a quadratic equation $ϕ^{2} - a_{q} ϕ + q = 0$ over $End (E_{\overline{F_{q}}})$ , where $a_{q} = q + 1 - # E (F_{q})$ . The action of $ϕ$ on the $ℓ$ -adic Tate module $T_{ℓ} E$ (for $ℓ \neq = p$ ) is given by a matrix in $GL_{2} (Z_{ℓ})$ with characteristic polynomial $T^{2} - a_{q} T + q$ . The two roots $α, β$ have $α β = q$ and $α + β = a_{q}$ . The fact that $ϕ - n$ is an endomorphism for every integer $n$ , with $de g (ϕ - n) = (ϕ - n) (ϕ - n)^{\lor} = (ϕ - n) (\overset{ˉ}{ϕ} - n) = ϕ \overset{ˉ}{ϕ} - n (ϕ + \overset{ˉ}{ϕ}) + n^{2} = q - n a_{q} + n^{2} \geq 0$ for all $n \in Z$ , forces the discriminant $a_{q}^{2} - 4 q \leq 0$ . Hence $∣ a_{q} ∣ \leq 2 q$ . $□$

Theorem (group law from $Pic^{0}$ ). On a smooth projective genus-1 curve $E$ with marked point $O \in E (k)$ , the map $E (k) \to Pic^{0} (E)$ , $P \mapsto [P - O]$ , is a bijection. The induced group structure on $E (k)$ coincides with the chord-and-tangent law on a Weierstrass model.

Proof. Bijection: Riemann-Roch on a genus-1 curve and Serre duality, as in Exercise 5.

Group structure: a line $ℓ : f = 0$ in the plane meets the Weierstrass cubic $E \subset P^{2}$ in a divisor $D_{ℓ}$ of degree 3 (Bézout). Two lines $ℓ, ℓ^{'}$ meeting $E$ in divisors $D_{ℓ}, D_{ℓ^{'}}$ have $D_{ℓ} \sim_{lin} D_{ℓ^{'}}$ (their difference is the divisor of the rational function $f / f^{'}$ , hence principal). In particular, every $D_{ℓ}$ is linearly equivalent to $3 O$ (the divisor of any line through the inflection point at infinity). Three collinear points $P, Q, R$ on $E$ thus give $P + Q + R \sim_{lin} 3 O$ , i.e. $(P - O) + (Q - O) + (R - O) \sim_{lin} 0$ . Translating to $Pic^{0} (E)$ : $[P - O] + [Q - O] + [R - O] = 0$ . The chord rule on the Weierstrass model — three collinear points sum to zero in the group — therefore agrees with addition in $Pic^{0} (E)$ . $□$

Theorem (Weierstrass embedding). Let $E$ be an elliptic curve over $k$ with $char k \neq = 2, 3$ . The complete linear system $∣3 O ∣$ defines a closed embedding $ϕ_{∣3 O ∣} : E ↪ P^{2}$ with image cut out by an equation $y^{2} = x^{3} + a x + b$ for some $a, b \in k$ .

Proof. By Riemann-Roch on the genus-1 curve $E$ , $dim H^{0} (E, O (n O)) = n$ for $n \geq 1$ . Choose: a non-zero constant $1 \in H^{0} (E, O)$ , a function $x \in H^{0} (E, O (2 O))$ with a double pole at $O$ and no other poles (such $x$ exists because $dim H^{0} (E, O (2 O)) = 2$ contains the constants and one new function), a function $y \in H^{0} (E, O (3 O))$ with a triple pole at $O$ . The space $H^{0} (E, O (6 O))$ has dimension 6, but it contains the seven functions $1, x, y, x^{2}, x y, x^{3}, y^{2}$ (each with pole order at $O$ at most 6), so a $k$ -linear relation $$ y^2 + a_1 x y + a_3 y = x^3 + a_2 x^2 + a_4 x + a_6 $$ holds with $a_{i} \in k$ . Comparing pole orders at $O$ shows the coefficients of $y^{2}$ and $x^{3}$ are non-zero; rescaling $y$ and $x$ absorbs them into 1. Substituting $y \mapsto y - (a_{1} x + a_{3}) /2$ and $x \mapsto x - a_{2} /3$ (valid because $char k \neq = 2, 3$ ) eliminates the $a_{1}, a_{2}, a_{3}$ terms, giving the short Weierstrass form $y^{2} = x^{3} + a x + b$ .

The map $ϕ_{∣3 O ∣} = [1 : x : y] : E \to P^{2}$ is well-defined on $E ∖ {O}$ (using the affine coordinates $(x, y)$ ) and sends $O$ to $[0 : 0 : 1]$ (using $y^{- 1}$ as the local generator at $O$ , giving $[y^{- 1} : x y^{- 1} : 1] \to [0 : 0 : 1]$ as $y \to \infty$ ). Smoothness of $E$ implies $Δ = - 16 (4 a^{3} + 27 b^{2}) \neq = 0$ . The map is a closed embedding because $∣3 O ∣$ is very ample on the genus-1 curve. $□$

The remaining advanced results — Mazur's torsion theorem, the modularity theorem, the BSD conjecture in the rank- $\leq 1$ case, the main theorem of complex multiplication, and Tate's algorithm — are stated without proof here; primary references are listed in the Bibliography. Each is a self-contained body of work spanning multiple papers and book chapters.

Connections [Master]

Riemann-Roch theorem for curves 04.04.01. Riemann-Roch on a genus-1 curve gives $dim H^{0} (E, O (D)) = de g D$ for $de g D \geq 1$ (since $K_{E} = 0$ on an elliptic curve), which is exactly the dimension count powering the Weierstrass embedding $ϕ_{∣3 O ∣}$ and the identification $E (k) ≅ Pic^{0} (E)$ . Without Riemann-Roch the explicit Weierstrass model and the group structure on $E (k)$ have no quantitative engine.
Hurwitz formula 04.04.02. A double cover $E \to P^{1}$ via the Weierstrass $x$ -coordinate is ramified at four points (the three roots of $x^{3} + a x + b$ together with the point at infinity), and Hurwitz reproduces $g_{E} = 1$ from $2 g_{E} - 2 = 2 \cdot (- 2) + 4 = 0$ . Every elliptic curve is hyperelliptic in the elementary sense of admitting a degree-2 map to $P^{1}$ .
Picard group 04.05.02. The map $E (k) \to Pic^{0} (E)$ , $P \mapsto [P - O]$ , is a group isomorphism — every degree-zero divisor class on a genus-1 curve has a unique effective representative of the form $P - O$ . The Jacobian of an elliptic curve coincides with the elliptic curve itself: $Jac (E) = E$ , the simplest case of the Jacobi inversion theorem 06.06.06.
Jacobi inversion theorem 06.06.06. For a genus-1 curve $X$ over $C$ , the Abel-Jacobi map $Sym^{1} (X) = X \to Jac (X)$ is the identity on $C /Λ$ (after fixing a reference point). The Jacobi inversion in genus 1 is the identification $X = Jac (X)$ , and the elliptic curve is the universal example for the higher-genus theory.
Theta functions and modular forms. Over $C$ , an elliptic curve $E_{τ} = C / (Z + τ Z)$ has Weierstrass coefficients $g_{2} (τ) = 60 \sum_{(m, n) \neq = 0} (m + n τ)^{- 4}$ and $g_{3} (τ) = 140 \sum_{(m, n) \neq = 0} (m + n τ)^{- 6}$ , and the $j$ -invariant $j (τ) = 1728 g_{2}^{3} / (g_{2}^{3} - 27 g_{3}^{2})$ is a modular function on $H$ generating the function field of $X (1) = P^{1}$ . The Riemann theta function on the elliptic curve becomes the Jacobi theta functions $ϑ_{i} (z; τ)$ , and its zeros are the 2-torsion points.
Modular curves and modular forms. The modular curves $X_{0} (N), X_{1} (N)$ parametrise elliptic curves with level structure; the $L$ -function of $E$ over $Q$ is the $L$ -function of a weight-2 cusp form on $Γ_{0} (N (E))$ by the modularity theorem. Heegner points on $X_{0} (N)$ give rational points on $E$ that detect the rank.
Abelian varieties. Elliptic curves are the 1-dimensional abelian varieties; the Mordell-Weil theorem and the Hasse bound generalise to all abelian varieties over number fields and finite fields respectively. The Tate module $T_{ℓ} E$ as a Galois representation, the étale cohomology $H_{\overset{e}{ˊ} t}^{1} (E_{\overset{ˉ}{k}}, Q_{ℓ}) ≅ V_{ℓ} E$ , and the Frobenius eigenvalue structure are all 1-dimensional cases of the higher-dimensional theory.
Galois representations and the Langlands program. The 2-dimensional Galois representations $ρ_{E, ℓ} : Gal (\overline{Q} / Q) \to GL_{2} (Z_{ℓ})$ associated to $E$ are among the simplest geometrically interesting Galois representations. Modularity identifies them with Galois representations attached to weight-2 modular forms — the foundational rank-2 case of the global Langlands correspondence between Galois representations and automorphic forms.

Historical & philosophical context [Master]

Karl Weierstrass developed the theory of elliptic functions and the Weierstrass equation in his Berlin lectures of the 1860s-1880s, summarised in the posthumous Vorlesungen über elliptische Funktionen edited by Schwarz (1893) ^{[Weierstrass]}. The Weierstrass $℘$ -function $℘ (z; Λ)$ — the unique even meromorphic function on $C /Λ$ with double pole at $0$ and the leading-term normalisation $℘ (z) - z^{- 2} \to 0$ as $z \to 0$ — satisfies the differential equation $(℘^{'})^{2} = 4 ℘^{3} - g_{2} ℘ - g_{3}$ , which is exactly the Weierstrass equation $y^{2} = 4 x^{3} - g_{2} x - g_{3}$ after the substitution $(x, y) = (℘, ℘^{'})$ . The chord-and-tangent law on the cubic corresponds to the addition formula for $℘$ , $℘ (z + w) = - ℘ (z) - ℘ (w) + \frac{1}{4} (℘^{'} (z) - ℘^{'} (w))^{2} / (℘ (z) - ℘ (w))^{2}$ , which Weierstrass proved by a residue calculation.

Henri Poincaré in 1901 Sur les propriétés arithmétiques des courbes algébriques ^{[Poincaré 1901]} (J. de Math. (5) 7, 161-233) was the first to consider $E (Q)$ as an abelian group and to conjecture finite generation. Louis J. Mordell proved the conjecture for elliptic curves over $Q$ in 1922 On the rational solutions of the indeterminate equations of the third and fourth degrees ^{[Mordell 1922]} (Proc. Camb. Phil. Soc. 21, 179-192), introducing the descent argument with the naive height as Step 2 and Selmer-style 2-descent as Step 1. André Weil generalised Mordell's theorem to all elliptic curves over number fields in his thesis L'arithmétique sur les courbes algébriques ^{[Weil 1929]} (Acta Math. 52, 281-315) and further to higher-dimensional abelian varieties — the Mordell-Weil theorem. The canonical-height construction is due to Néron 1965 and Tate 1965 (independently, via the Tate limit), and the modern formulation in terms of Néron's local heights at each place is in Lang's Fundamentals of Diophantine Geometry (1983).

Yutaka Taniyama in 1955 conjectured at the Tokyo-Nikko Symposium that every elliptic curve over $Q$ is modular — every $L$ -function $L (E, s)$ matches the $L$ -function of a weight-2 cuspidal modular form. Goro Shimura refined the conjecture in print in his 1971 Introduction to the Arithmetic Theory of Automorphic Functions. Andrew Wiles proved the semistable case in 1995 ^{[Wiles 1995]} Modular elliptic curves and Fermat's Last Theorem (Ann. Math. 141, 443-551), with the gap in the original argument fixed by Wiles and Taylor Ring-theoretic properties of certain Hecke algebras (Ann. Math. 141, 553-572). Christophe Breuil, Brian Conrad, Fred Diamond, and Richard Taylor extended the proof to all elliptic curves over $Q$ in On the modularity of elliptic curves over $Q$ ^{[Breuil-Conrad-Diamond-Taylor 2001]} (J. Amer. Math. Soc. 14, 843-939), completing the modularity theorem.

Barry Mazur's Modular curves and the Eisenstein ideal ^{[Mazur 1977]} (Publ. Math. IHES 47, 33-186) determined the possible torsion subgroups of $E (Q)$ for all $E / Q$ , the first major application of the Eisenstein-ideal analysis of $J_{0} (N)$ . John Tate's 1974 survey The arithmetic of elliptic curves ^{[Tate 1974]} (Invent. Math. 23, 179-206) consolidated the modern algebraic-geometric formulation, the conductor-discriminant theory, the Tate module $T_{ℓ} E$ as a Galois representation, and the Tate-Shafarevich and Selmer groups, providing the framework within which Mazur, Wiles, and the BSD-conjecture program unfolded.

Bibliography [Master]

[object Promise]

Prerequisites

04.04.01
04.04.02
04.05.02

Tier anchors

beginner: Silverman *The Arithmetic of Elliptic Curves* §III informal — group law on a cubic; Hartshorne §IV.4 informal
intermediate: Hartshorne §IV.4; Silverman *The Arithmetic of Elliptic Curves* §III; Cassels *Lectures on Elliptic Curves* §7-§8
master: Weierstrass *Vorlesungen über elliptische Funktionen* (1880s, originator); Poincaré 1901 *Sur les propriétés arithmétiques des courbes algébriques* (J. de Math. 7, originator of Mordell-Weil conjecture); Mordell 1922 *Proc. Camb. Phil. Soc.* 21 (proof for $\mathbb{Q}$); Weil 1929 *Acta Math.* 52 (number-field generalisation); Tate 1974 *Invent. Math.* 23 (modern survey); Hartshorne §IV.4; Silverman §III, §VIII

References

TODO_REF
Weierstrass — Vorlesungen über elliptische Funktionen · 1880s lecture notes; originator of the Weierstrass form $y^2 = 4x^3 - g_2 x - g_3$
TODO_REF
Poincaré 1901 — Sur les propriétés arithmétiques des courbes algébriques · J. de Math. (5) 7, 161-233; originator of the Mordell-Weil rank conjecture
TODO_REF
Mordell 1922 — On the rational solutions of the indeterminate equations of the third and fourth degrees · Proc. Camb. Phil. Soc. 21, 179-192; finite generation of $E(\mathbb{Q})$
TODO_REF
Weil 1929 — L'arithmétique sur les courbes algébriques · Acta Math. 52, 281-315; Mordell-Weil for number fields
TODO_REF
Tate 1974 — The arithmetic of elliptic curves · Invent. Math. 23, 179-206; modern survey
TODO_REF
Mazur 1977 — Modular curves and the Eisenstein ideal · Publ. Math. IHES 47, 33-186; the torsion theorem
TODO_REF
Wiles 1995 — Modular elliptic curves and Fermat's last theorem · Ann. Math. 141, 443-551
TODO_REF
Breuil-Conrad-Diamond-Taylor 2001 — On the modularity of elliptic curves over Q · J. Amer. Math. Soc. 14, 843-939; full modularity
TODO_REF
Silverman — The Arithmetic of Elliptic Curves · Springer GTM 106, §III, §VIII; standard reference
TODO_REF
Hartshorne — Algebraic Geometry · §IV.4 elliptic curves
TODO_REF
Cassels — Lectures on Elliptic Curves · LMS Student Texts 24, §7-§8; explicit descent
TODO_REF
Husemöller — Elliptic Curves · Springer GTM 111; CM theory and modular curves

Reviewer

TBD

Estimated time

beginner: 18m
intermediate: 45m
master: 75m