]> git.codecow.com Git - Monocypher.git/commit
projects / Monocypher.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 34a2853) | patch
Don't use the Montgomery ladder for EdDSA
authorLoup Vaillant <loup@loup-vaillant.fr>
Thu, 26 Jul 2018 18:29:11 +0000 (20:29 +0200)
committerLoup Vaillant <loup@loup-vaillant.fr>
Thu, 26 Jul 2018 18:29:11 +0000 (20:29 +0200)
commit6839527bad9ed0ae569a0bb8ae53a7f94cbc9193
treeb8ce6b23535b1bb5f15e9acfe8207a696605acb1tree | snapshot
parent34a2853d6d69c07b6d020584b2e1e4b7b4188cc6commit | diff
Don't use the Montgomery ladder for EdDSA

Again.

There are two reasons: the first is that there are 2 special cases where
the ladder or conversion gives the wrong results (the ladder is correct,
it was just hijacked for another purpose).

The second reason is, fixed based scalar multiplication can be made even
faster in Twisted Edwards space, by using a comb algorithm.  The current
patch uses a window, so it is slower.  It will get faster again.
src/monocypher.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.