#bitcoin #crypto #ecc #ethereum #secp256k1

no-std k256

secp256k1 elliptic curve library written in pure Rust with support for ECDSA signing/verification (including Ethereum-style signatures with public-key recovery), Elliptic Curve Diffie-Hellman (ECDH), and general purpose secp256k1 curve arithmetic useful for implementing arbitrary group-based protocols

18 releases (4 breaking)

0.5.9 Oct 8, 2020
0.5.6 Sep 28, 2020
0.3.0 Jun 8, 2020
0.1.0 Jan 6, 2020
0.0.0 Dec 5, 2019

#8 in Cryptocurrencies

Download history 1419/week @ 2020-07-04 647/week @ 2020-07-11 663/week @ 2020-07-18 953/week @ 2020-07-25 432/week @ 2020-08-01 1017/week @ 2020-08-08 1061/week @ 2020-08-15 797/week @ 2020-08-22 685/week @ 2020-08-29 778/week @ 2020-09-05 1158/week @ 2020-09-12 1316/week @ 2020-09-19 1604/week @ 2020-09-26 2497/week @ 2020-10-03 2323/week @ 2020-10-10 2664/week @ 2020-10-17

4,228 downloads per month
Used in 19 crates (12 directly)

Apache-2.0 OR MIT

270KB
5.5K SLoC

RustCrypto: secp256k1 (K-256) elliptic curve

crate Docs Apache2/MIT licensed Rust Version Project Chat Build Status

secp256k1 (a.k.a. K-256) elliptic curve library written in pure Rust with support for ECDSA signing/verification (including Ethereum-style signatures with public-key recovery), Elliptic Curve Diffie-Hellman (ECDH), and general purpose arithmetic which can be used to implement arbitrary protocols.

Uses traits and base types from the elliptic-curve crate.

Optionally includes a secp256k1 arithmetic feature providing scalar and point types (projective/affine) with support for constant-time scalar multiplication. Additionally, implements traits from the group crate which can be used to generically construct group-based protocols.

Documentation

⚠️ Security Warning

The secp256k1 elliptic curve arithmetic contained in this crate has never been independently audited!

This crate has been designed with the goal of ensuring that secret-dependent operations are performed in constant time (using the subtle crate and constant-time formulas). However, it has not been thoroughly assessed to ensure that generated assembly is constant time on common CPU architectures.

USE AT YOUR OWN RISK!

Supported Algorithms

About secp256k1 (K-256)

secp256k1 is a Koblitz curve commonly used in cryptocurrency applications. The "K-256" name follows NIST notation where P = prime fields, B = binary fields, and K = Koblitz curves (defined over F₂).

The curve is specified as secp256k1 by Certicom's SECG in "SEC 2: Recommended Elliptic Curve Domain Parameters":

https://www.secg.org/sec2-v2.pdf

secp256k1 is primarily notable for usage in Bitcoin and other cryptocurrencies, particularly in conjunction with the Elliptic Curve Digital Signature Algorithm (ECDSA).

Minimum Supported Rust Version

Rust 1.44 or higher.

Minimum supported Rust version can be changed in the future, but it will be done with a minor version bump.

SemVer Policy

  • All on-by-default features of this library are covered by SemVer
  • MSRV is considered exempt from SemVer as noted above

License

All crates licensed under either of

at your option.

Contribution

Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you, as defined in the Apache-2.0 license, shall be dual licensed as above, without any additional terms or conditions.

Dependencies

~300–610KB
~10K SLoC