Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use pre-computation to speed-up Secp256r1 verification #595

Merged
merged 39 commits into from
May 31, 2023
Merged

Use pre-computation to speed-up Secp256r1 verification #595

merged 39 commits into from
May 31, 2023

Conversation

jonas-lj
Copy link
Contributor

@jonas-lj jonas-lj commented May 24, 2023
edited by kchalkias
Loading

Fixes #588 and #573 (because the construction is similar to the one used by openssl, but with modification required for pure Rust)

This PR made to speed up signature verification in Secp256r1 (gives about ~50% speed-up), but it is implemented for generic groups, so it may also be used for other constructions, eg Ristretto (#589) so it's also relevant for #590. It uses a sliding window method (which is variable time) for verification and fixed window (which is constant time) for signing.

The BGMW algorithm is not used for ecdsa, but is faster for single scalar multiplications at the cost of larger precomputation tables. It has been added under the experimental feature flag.

@jonas-lj jonas-lj force-pushed the jonas/precompute branch from 99a2905 to a567976 Compare May 24, 2023 07:14
@jonas-lj jonas-lj requested review from kchalkias and benr-ml May 24, 2023 07:19
This was linked to issues May 24, 2023
Extract secp256r1 from ring /openssl #573
Closed
Introduce precomputed tables in Ristretto Group generator #589
Closed
jonas-lj added 22 commits May 24, 2023 13:41
@jonas-lj jonas-lj force-pushed the jonas/precompute branch from 7103488 to 0d66c5a Compare May 24, 2023 11:41
benr-ml
benr-ml reviewed May 24, 2023
View reviewed changes
fastcrypto/src/groups/mod.rs Outdated Show resolved Hide resolved
fastcrypto/src/groups/secp256r1.rs Outdated Show resolved Hide resolved
fastcrypto/src/groups/secp256r1.rs Outdated Show resolved Hide resolved
fastcrypto/src/groups/multiplier/integer_utils.rs Show resolved Hide resolved
fastcrypto/src/groups/multiplier/fixed_window.rs Outdated Show resolved Hide resolved
@jonas-lj jonas-lj requested a review from benr-ml May 26, 2023 09:00
kchalkias
kchalkias reviewed May 26, 2023
View reviewed changes
fastcrypto/src/groups/mod.rs Outdated Show resolved Hide resolved
fastcrypto/src/groups/multiplier/comb_method.rs Outdated Show resolved Hide resolved
fastcrypto/src/groups/multiplier/integer_utils.rs Outdated Show resolved Hide resolved
fastcrypto/src/groups/secp256r1.rs Outdated Show resolved Hide resolved
@jonas-lj jonas-lj requested a review from kchalkias May 30, 2023 11:51
@jonas-lj jonas-lj requested a review from kchalkias May 31, 2023 10:26
kchalkias
kchalkias approved these changes May 31, 2023
View reviewed changes
Copy link
Collaborator

@kchalkias kchalkias left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Amazing work!

@jonas-lj jonas-lj merged commit ed1c2e1 into main May 31, 2023
@jonas-lj jonas-lj deleted the jonas/precompute branch May 31, 2023 21:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kchalkias kchalkias kchalkias approved these changes

@benr-ml benr-ml Awaiting requested review from benr-ml

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
3 participants
@jonas-lj @kchalkias @benr-ml