Skip to content
Snippets Groups Projects
Select Git revision
  • pr/58
  • devel
  • master default protected
  • pre-commit-ci-update-config
  • write_graph
  • isae
  • isae-2017
  • euroc-c1
  • euroc
  • wiki
  • v1.3.5
  • v1.3.4
  • v1.3.3
  • v1.3.2
  • v1.3.1
  • v1.3.0
  • v1.2.0
  • v1.1.0
  • V1.0
19 results
Compare
Name Last commit Last update
crypto_dh
crypto_dh_tar
crypto_kem
crypto_kem_tar
README.md
README.md

Authors : Cyrius NUGIER and Remi ADELIN Institute : LAAS-CNRS, INSA Toulouse, Univ Toulouse, FRANCE

This git contains a DH and a KEM implementation of 3 different versions of the Megrelishvili protocol.

  1. "phsmat256b" One base version, a priori faster that is not constant-time coded.
  2. "phsmat256t" Constant time version, with square-and-always-multiply and vector-matrix multiplication not based on the vector's density.
  3. "phsmat256s" Sparse implementation, where the multiply step are done with a faster sparse matrix multiplication.

Everything should comply to be benchmarked with SUPERCOP-20200906

The Megrelishvili portocol is a Principal Homogeneous Space (Couveignes) The Group is generated by a maximal multiplicative order binary GL(256,2) matrix, and composition It acts simply transitively on the set of all length 256 binary vectors. Secutity is provably equivalent to Dlog.