[curves] General Curve25519 and Ed25519 Libraries

Frank Wang frankw at mit.edu
Thu Jun 18 10:38:40 PDT 2015


Hi Thomas,

Yes. Sorry, my goal right now is that I have a key revocation scheme that I
want to implement, involving elliptic curve addition, subtraction, and
scalar multiplication (as well as hashing messages to the curve). I would
like reasonable performance (so C does seem good) because I'm benchmarking
it against AES. However, I'm willing to trade off some performance for ease
of use.

TweetNacl seems to be designed primarily for ECDH and EC signatures rather
than a general purpose elliptic curve library. I'm exploring alternatives.

Frank

On Thu, Jun 18, 2015 at 1:34 PM, Thomas DuBuisson <
thomas.dubuisson at gmail.com> wrote:

> Frank,
> A lot of recommendations are pouring in about C and Java libraries, on
> top of which I'm tempted to recommend my own in Cryptol or one of the
> Sage version out there, but none of us have heard about your actual
> goal and needs.  Could you say more about how this code will be used
> and what you hope to achieve?
>
> Thomas
>
> On Wed, Jun 17, 2015 at 2:16 PM, Frank Wang <frankw at mit.edu> wrote:
> > Hi,
> >
> > I am working on a research project at MIT, and I need to use elliptic
> curves
> > (or a group where DDH is hard, but elliptic curves seem like the best
> way to
> > go) to implement a cryptographic scheme. I've been trying to search for
> > general Curve25519 and Ed25519 libraries where I can just do add and
> scalar
> > multiply as well as hash messages to points. The best library I've come
> > across so far is tweetnacl, which has the add and scalar multiply
> operation
> > for Ed25519, but it's a bit difficult to use, and I end up modifying the
> > library to do subtraction of points.
> >
> > I have yet to find a good library that allows me to just do operations on
> > Ed25519 or Curve25519. Does such a library exist? If not, any tips on
> what I
> > should do? Should I just use another curve library that is better
> supported?
> > If so, any suggestions?
> >
> > Thanks,
> > Frank
> >
> > _______________________________________________
> > Curves mailing list
> > Curves at moderncrypto.org
> > https://moderncrypto.org/mailman/listinfo/curves
> >
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/curves/attachments/20150618/cbda8d4d/attachment.html>


More information about the Curves mailing list