[Resource Topic] 2014/526: Curve41417: Karatsuba revisited

Welcome to the resource topic for 2014/526

Curve41417: Karatsuba revisited

Authors: Daniel J. Bernstein, Chitchanok Chuengsatiansup, Tanja Lange


This paper introduces constant-time ARM Cortex-A8 ECDH software that (1) is faster than the fastest ECDH option in the latest version of OpenSSL but (2) achieves a security level above 2^200 using a prime above 2^400. For comparison, this OpenSSL ECDH option is not constant-time and has a security level of only 2^80. The new speeds are achieved in a quite different way from typical prime-field ECC software: they rely on a synergy between Karatsuba’s method and choices of radix smaller than the CPU word size.

ePrint: https://eprint.iacr.org/2014/526

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .