Lib.rs

Cryptography
#elliptic-curve #finite-fields #math #prime-field

no-std dev ark-mnt6-298

The MNT6-298 pairing-friendly elliptic curve

by Marcin, Dev Ojha, Pratyush Mishra, Weikeng Chen, arkworks contributors (86 contributors). Co-owned by arkworks.

7 unstable releases

0.5.0 Oct 28, 2024
0.5.0-alpha.0 Jun 20, 2024
0.4.0 Jan 17, 2023
0.4.0-alpha.2 Dec 28, 2022
0.2.0 Mar 25, 2021

#2666 in Cryptography

Download history 96/week @ 2024-07-22 40/week @ 2024-07-29 31/week @ 2024-08-05 40/week @ 2024-08-12 34/week @ 2024-08-19 26/week @ 2024-08-26 63/week @ 2024-09-02 31/week @ 2024-09-09 25/week @ 2024-09-16 66/week @ 2024-09-23 101/week @ 2024-09-30 16/week @ 2024-10-07 103/week @ 2024-10-14 52/week @ 2024-10-21 309/week @ 2024-10-28 201/week @ 2024-11-04

666 downloads per month
Used in 10 crates

MIT/Apache

635KB
13K SLoC

This library implements the MNT6_298 curve generated in [BCTV14]. The name denotes that it is a Miyaji--Nakabayashi--Takano curve of embedding degree 6, defined over a 298-bit (prime) field. The main feature of this curve is that its scalar field and base field respectively equal the base field and scalar field of MNT4_298.

Curve information:

  • Base field: q = 475922286169261325753349249653048451545124878552823515553267735739164647307408490559963137
  • Scalar field: r = 475922286169261325753349249653048451545124879242694725395555128576210262817955800483758081
  • valuation(q - 1, 2) = 34
  • valuation(r - 1, 2) = 17
  • G1 curve equation: y^2 = x^3 + ax + b, where
    • a = 11
    • b = 106700080510851735677967319632585352256454251201367587890185989362936000262606668469523074
  • G2 curve equation: y^2 = x^3 + Ax + B, where
    • A = Fq2 = (0, 0, a)
    • B = Fq2(b * NON_RESIDUE, 0, 0)
    • NON_RESIDUE = 5 is the cubic non-residue used to construct the field extension Fq3

Dependencies

~3.5–5MB
~87K SLoC