Lib.rs

Cryptography
#elliptic-curve #finite-fields #math

no-std dev ark-mnt6-298

The MNT6-298 pairing-friendly elliptic curve

by Marti, Dev Ojha, Pratyush Mishra, Weikeng Chen, arkworks contributors (86 contributors). Co-owned by arkworks.

7 unstable releases

0.5.0 Oct 28, 2024
0.5.0-alpha.0 Jun 20, 2024
0.4.0 Jan 17, 2023
0.4.0-alpha.2 Dec 28, 2022
0.2.0 Mar 25, 2021

#2935 in Cryptography

Download history 53/week @ 2024-11-15 121/week @ 2024-11-22 81/week @ 2024-11-29 107/week @ 2024-12-06 112/week @ 2024-12-13 36/week @ 2024-12-20 10/week @ 2024-12-27 19/week @ 2025-01-03 70/week @ 2025-01-10 65/week @ 2025-01-17 56/week @ 2025-01-24 70/week @ 2025-01-31 75/week @ 2025-02-07 120/week @ 2025-02-14 98/week @ 2025-02-21 72/week @ 2025-02-28

385 downloads per month
Used in 10 crates

MIT/Apache

635KB
13K SLoC

This library implements the MNT6_298 curve generated in [BCTV14]. The name denotes that it is a Miyaji--Nakabayashi--Takano curve of embedding degree 6, defined over a 298-bit (prime) field. The main feature of this curve is that its scalar field and base field respectively equal the base field and scalar field of MNT4_298.

Curve information:

  • Base field: q = 475922286169261325753349249653048451545124878552823515553267735739164647307408490559963137
  • Scalar field: r = 475922286169261325753349249653048451545124879242694725395555128576210262817955800483758081
  • valuation(q - 1, 2) = 34
  • valuation(r - 1, 2) = 17
  • G1 curve equation: y^2 = x^3 + ax + b, where
    • a = 11
    • b = 106700080510851735677967319632585352256454251201367587890185989362936000262606668469523074
  • G2 curve equation: y^2 = x^3 + Ax + B, where
    • A = Fq2 = (0, 0, a)
    • B = Fq2(b * NON_RESIDUE, 0, 0)
    • NON_RESIDUE = 5 is the cubic non-residue used to construct the field extension Fq3

Dependencies

~3.5–5MB
~94K SLoC