Lib.rs

Cryptography
#elliptic-curve #finite-fields #math #prime-field

no-std dev ark-mnt6-298

The MNT6-298 pairing-friendly elliptic curve

by Marcin, Dev Ojha, Pratyush Mishra, Weikeng Chen, arkworks contributors (86 contributors). Co-owned by arkworks.

7 unstable releases

0.5.0 Oct 28, 2024
0.5.0-alpha.0 Jun 20, 2024
0.4.0 Jan 17, 2023
0.4.0-alpha.2 Dec 28, 2022
0.2.0 Mar 25, 2021

#2793 in Cryptography

Download history 31/week @ 2024-09-11 30/week @ 2024-09-18 81/week @ 2024-09-25 78/week @ 2024-10-02 49/week @ 2024-10-09 80/week @ 2024-10-16 227/week @ 2024-10-23 191/week @ 2024-10-30 140/week @ 2024-11-06 44/week @ 2024-11-13 106/week @ 2024-11-20 97/week @ 2024-11-27 82/week @ 2024-12-04 136/week @ 2024-12-11 49/week @ 2024-12-18 14/week @ 2024-12-25

288 downloads per month
Used in 10 crates

MIT/Apache

635KB
13K SLoC

This library implements the MNT6_298 curve generated in [BCTV14]. The name denotes that it is a Miyaji--Nakabayashi--Takano curve of embedding degree 6, defined over a 298-bit (prime) field. The main feature of this curve is that its scalar field and base field respectively equal the base field and scalar field of MNT4_298.

Curve information:

  • Base field: q = 475922286169261325753349249653048451545124878552823515553267735739164647307408490559963137
  • Scalar field: r = 475922286169261325753349249653048451545124879242694725395555128576210262817955800483758081
  • valuation(q - 1, 2) = 34
  • valuation(r - 1, 2) = 17
  • G1 curve equation: y^2 = x^3 + ax + b, where
    • a = 11
    • b = 106700080510851735677967319632585352256454251201367587890185989362936000262606668469523074
  • G2 curve equation: y^2 = x^3 + Ax + B, where
    • A = Fq2 = (0, 0, a)
    • B = Fq2(b * NON_RESIDUE, 0, 0)
    • NON_RESIDUE = 5 is the cubic non-residue used to construct the field extension Fq3

Dependencies

~3.5–5MB
~87K SLoC