[curves] E-521

David Leon Gil coruus at gmail.com
Wed Oct 22 16:15:37 PDT 2014


I've put their code in a GitHub repo here. It needed to be modified
slightly to work with Clang++ HEAD.[*]

https://github.com/coruus/E521

[*] This is the first time I've encountered a compiler taking
advantage of the fact that undefined behavior ensues when a function
not declared void doesn't return a value.

On Wed, Oct 22, 2014 at 6:22 PM, Trevor Perrin <trevp at trevp.net> wrote:
> Robert Granger and Michael Scott report a fast E-521 implementation:
>
> http://eprint.iacr.org/2014/852
>
> Based on Haswell numbers, its efficiency seems similar to Goldilocks:
>
> https://docs.google.com/a/trevp.net/spreadsheet/ccc?key=0Aiexaz_YjIpddFJuWlNZaDBvVTRFSjVYZDdjakxoRkE&usp=sharing#gid=0
>
>
> DJB also timed it on Sandy Bridge, though his numbers are worse than
> I'd expect; not sure why:
>
> http://www.ietf.org/mail-archive/web/cfrg/current/msg05349.html
>
>
> Trevor
> _______________________________________________
> Curves mailing list
> Curves at moderncrypto.org
> https://moderncrypto.org/mailman/listinfo/curves


More information about the Curves mailing list