#scalar-field #zero-knowledge #crypto

no-std dusk-hades

Implementation of Hades252 permutation algorithm over the Bls12-381 Scalar field

20 releases (11 breaking)

0.24.1 Jan 24, 2024
0.23.0 Dec 13, 2023
0.22.1 Nov 22, 2023
0.21.0 Jun 28, 2023
0.15.0-pre.0 Mar 22, 2021

#1010 in Cryptography

Download history 3/week @ 2024-07-22 145/week @ 2024-07-29 19/week @ 2024-08-05 10/week @ 2024-08-12 94/week @ 2024-08-19 7/week @ 2024-08-26 2/week @ 2024-09-09 69/week @ 2024-09-23 7/week @ 2024-09-30 1/week @ 2024-10-07 26/week @ 2024-10-14 2/week @ 2024-10-28 30/week @ 2024-11-04

58 downloads per month

MPL-2.0 license

61KB
371 lines

Build Status Repository Documentation

Hades252 (deprecated)

❗ This crate is deprecated.
The hades permutation moved into dusk-poseidon.

Implementation of Hades252 permutation algorithm over the Bls12-381 Scalar field.

Documentation

To generate the Hades252 documentation:

make doc
make doc-internal

Use

Run the following to add Hades252 to the dependency section of your project's 'Cargo.toml':

cargo add dusk-hades

Hades252 has a width equals to 5; it's possible to use a different value, see How to generate the assets.

Parameters

  • p = 0x73eda753299d7d483339d80809a1d80553bda402fffe5bfeffffffff00000001

  • Security level is 117 -120 bits of security [NCCG] bits.

  • width = 5

  • Number of full rounds = 8 . There are four full rounds at the beginning and four full rounds at the end, where each full round has WIDTH quintic S-Boxes.

  • Number of partial rounds = 59, where each partial round has one quintic S-Box and (width-1) identity functions.

  • Number of round constants = 960

Example for ScalarStrategy

use dusk_bls12_381::BlsScalar;
use dusk_hades::{ScalarStrategy, Strategy, WIDTH};

// Generate the inputs that will permute.
// The number of values we can input is equivalent to `WIDTH`

let input = vec![BlsScalar::from(1u64); dusk_hades::WIDTH];
let mut output = input.clone();

let mut strategy = ScalarStrategy::new();
strategy.perm(output.as_mut_slice());

assert_ne!(&input, &output);
assert_eq!(input.len(), output.len());

Deviations

Reference

https://eprint.iacr.org/2019/458.pdf

Dependencies

~2.2–3MB
~68K SLoC