Paper 2022/277
Security Analysis of Elliptic Curves over Sextic Extension of Small Prime Fields
Robin Salen and Vijaykumar Singh and Vladimir Soukharev
Abstract
In this report we investigate how to generate secure elliptic curves over sextic extension of prime fields of size roughly 64 bits to achieve 128-bit security. In particular, we present one of such curves over a 64-bit prime field, which we named Cheetah, and provide its security parameter. This curve is particularly well-suited for zero-knowledge applications such as FRI-based STARK proving systems, as its base prime field has the property of having a large two-adicity, necessary for FFT-related operations and at the same time it is used for elliptic curve-based signatures. We also provide a prototype implementation of this curve in Rust, featuring constant-time arithmetic and no use of the Rust standard library for WebAssembly support.
Metadata
- Available format(s)
- Category
- Foundations
- Publication info
- Preprint.
- Keywords
- elliptic curvesdigital signatureszero-knowledge proofsstarkblockchainfield extension
- Contact author(s)
- salen @ toposware com,vijaykumar singh @ toposware com,vladimir soukharev @ toposware com
- History
- 2022-11-08: last of 2 revisions
- 2022-03-02: received
- See all versions
- Short URL
- https://ia.cr/2022/277
- License
-
CC BY