Lib.rs

Cryptography
#elliptic-curve #finite-fields #math #prime-field

no-std dev ark-mnt6-298

The MNT6-298 pairing-friendly elliptic curve

by Marcin, Dev Ojha, Pratyush Mishra, Weikeng Chen, arkworks contributors (86 contributors). Co-owned by arkworks.

7 unstable releases

0.5.0 Oct 28, 2024
0.5.0-alpha.0 Jun 20, 2024
0.4.0 Jan 17, 2023
0.4.0-alpha.2 Dec 28, 2022
0.2.0 Mar 25, 2021

#2714 in Cryptography

Download history 31/week @ 2024-08-18 29/week @ 2024-08-25 62/week @ 2024-09-01 29/week @ 2024-09-08 27/week @ 2024-09-15 65/week @ 2024-09-22 102/week @ 2024-09-29 19/week @ 2024-10-06 95/week @ 2024-10-13 50/week @ 2024-10-20 311/week @ 2024-10-27 139/week @ 2024-11-03 104/week @ 2024-11-10 65/week @ 2024-11-17 129/week @ 2024-11-24 64/week @ 2024-12-01

363 downloads per month
Used in 10 crates

MIT/Apache

635KB
13K SLoC

This library implements the MNT6_298 curve generated in [BCTV14]. The name denotes that it is a Miyaji--Nakabayashi--Takano curve of embedding degree 6, defined over a 298-bit (prime) field. The main feature of this curve is that its scalar field and base field respectively equal the base field and scalar field of MNT4_298.

Curve information:

  • Base field: q = 475922286169261325753349249653048451545124878552823515553267735739164647307408490559963137
  • Scalar field: r = 475922286169261325753349249653048451545124879242694725395555128576210262817955800483758081
  • valuation(q - 1, 2) = 34
  • valuation(r - 1, 2) = 17
  • G1 curve equation: y^2 = x^3 + ax + b, where
    • a = 11
    • b = 106700080510851735677967319632585352256454251201367587890185989362936000262606668469523074
  • G2 curve equation: y^2 = x^3 + Ax + B, where
    • A = Fq2 = (0, 0, a)
    • B = Fq2(b * NON_RESIDUE, 0, 0)
    • NON_RESIDUE = 5 is the cubic non-residue used to construct the field extension Fq3

Dependencies

~3.5–5MB
~87K SLoC