Curve41417 : Karatsuba revisited

D.J. Bernstein, C. Chuengsatiansup, T. Lange

Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

19 Citations (Scopus)

Abstract

This paper introduces constant-time ARM Cortex-A8 ECDH software that (1) is faster than the fastest ECDH option in the latest version of OpenSSL but (2) achieves a security level above 2^200 using a prime above 2^400. For comparison, this OpenSSL ECDH option is not constant-time and has a security level of only 2^80. The new speeds are achieved in a quite different way from typical prime-field ECC software: they rely on a synergy between Karatsuba’s method and choices of radix smaller than the CPU word size. Keywords: performance; Karatsuba; refined Karatsuba; reduced refined Karatsuba; radix choices; vectorization; Edwards curves; Curve41417
Original languageEnglish
Title of host publicationCryptographic Hardware and Embedded Systems - CHES 2014 (16th International Workshop, Busan, South Korea, September 23-26, 2014. Proceedings)
EditorsL. Batina, M. Robshaw
Place of PublicationBerlin
PublisherSpringer
Pages316-334
ISBN (Print)978-3-662-44708-6
DOIs
Publication statusPublished - 2014
Eventconference; 16th Workshop on Cryptographic Hardware and Embedded System; 2014-09-23; 2014-09-26 -
Duration: 23 Sep 201426 Sep 2014

Publication series

NameLecture Notes in Computer Science
Volume8731
ISSN (Print)0302-9743

Conference

Conferenceconference; 16th Workshop on Cryptographic Hardware and Embedded System; 2014-09-23; 2014-09-26
Period23/09/1426/09/14
Other16th Workshop on Cryptographic Hardware and Embedded System

Fingerprint Dive into the research topics of 'Curve41417 : Karatsuba revisited'. Together they form a unique fingerprint.

Cite this