doc: users list
mmcloughlin opened this issue · comments
Add a list of users to README or elsewhere.
crypto/ellipticP-521 (CL 315271, tweet)- Don't forget the constant-time in CSURF (preprint, source code)
cloudflare/circlted448implementation (ref)
Not only that:
- BLS12-377 inversion (code
- BLS12-377 Tonelli-Shanks sqrt (code)
- BLS12-381 inversion (code)
- BLS12-381 invsqrt (code)
- BN254-Nogami inversion (code)
- BN254-Nogami invsqrt (code)
- BN254-Snarks (Ethereum / Zcash) inversion (code)
- BN254-Snarks invsqrt (code)
- BW6-761 inversion (code)
- BW6-761 invsqrt (code)
In the future inversion will likely be replaced by either Bernstein-Yang fast inversion or Pornin's fast inversion but the addition chain will stay as a benchmark reference point.
Not only that:
- BLS12-377 inversion (code
- BLS12-377 Tonelli-Shanks sqrt (code)
- BLS12-381 inversion (code)
- BLS12-381 invsqrt (code)
- BN254-Nogami inversion (code)
- BN254-Nogami invsqrt (code)
- BN254-Snarks (Ethereum / Zcash) inversion (code)
- BN254-Snarks invsqrt (code)
- BW6-761 inversion (code)
- BW6-761 invsqrt (code)
In the future inversion will likely be replaced by either Bernstein-Yang fast inversion or Pornin's fast inversion but the addition chain will stay as a benchmark reference point.
Wow that's awesome, thanks for sharing.
Curious if you had any script to convert addchain output into code. See #94.
Cloudflare CIRCL also using for BLS12-381 prime field.
#95 (comment)
cloudflare/circl#296
cc @armfazh
can add gnark (well, gnark-crypto) to the list. For Sqrt methods so far, but it may be useful in other places 👍
See this pr .
can add
gnark(well,gnark-crypto) to the list. ForSqrtmethods so far, but it may be useful in other places
Awesome thanks @gbotrel !
Cited in: https://eprint.iacr.org/2022/748
Anemoi: Exploiting the Link between Arithmetization-Orientation and CCZ-Equivalence https://eprint.iacr.org/2022/840
Pairings in Rank-1 Constraint Systems https://eprint.iacr.org/2022/1162