How to (Pre-)Compute a Ladder Improving the Performance of X25519 and X448
| dc.contributor.author | Thomaz Oliveira | |
| dc.contributor.author | Julio Lopez | |
| dc.contributor.author | Huseyin Hisil | |
| dc.contributor.author | Armando Faz-Hernandez | |
| dc.contributor.author | Francisco Rodriguez-Henriquez | |
| dc.contributor.editor | C Adams | |
| dc.contributor.editor | J Camenisch | |
| dc.coverage.spatial | 24th International Conference on Selected Areas in Cryptography (SAC) | |
| dc.date.accessioned | 2025-10-06T16:23:02Z | |
| dc.date.issued | 2018 | |
| dc.description.abstract | In the RFC 7748 memorandum the Internet Research Task Force specified a Montgomery-ladder scalar multiplication function based on two recently adopted elliptic curves curve25519 and curve448. The purpose of this function is to support the Diffie-Hellman key exchange algorithm that will be included in the forthcoming version of the Transport Layer Security cryptographic protocol. In this paper we describe a ladder variant that permits to accelerate the fixed-point multiplication function inherent to the Diffie-Hellman key pair generation phase. Our proposal combines a right-to-left version of the Montgomery ladder along with the pre-computation of constant values directly derived from the base-point and its multiples. To our knowledge this is the first proposal of a Montgomery ladder procedure for prime elliptic curves that admits the extensive use of pre-computation. In exchange of very modest memory resources and a small extra programming effort the proposed ladder obtains significant speedups for software implementations. Moreover our proposal fully complies with the RFC 7748 specification. A software implementation of the X25519 and X448 functions using our pre-computable ladder yields an acceleration factor of roughly 1.20 and 1.25 when implemented on the Haswell and the Skylake micro-architectures respectively. | |
| dc.identifier.doi | 10.1007/978-3-319-72565-9_9 | |
| dc.identifier.isbn | 978-3-319-72565-9, 978-3-319-72564-2 | |
| dc.identifier.issn | 0302-9743 | |
| dc.identifier.uri | http://dx.doi.org/10.1007/978-3-319-72565-9_9 | |
| dc.identifier.uri | https://gcris.yasar.edu.tr/handle/123456789/7652 | |
| dc.language.iso | English | |
| dc.publisher | SPRINGER INTERNATIONAL PUBLISHING AG | |
| dc.relation.ispartof | 24th International Conference on Selected Areas in Cryptography (SAC) | |
| dc.source | SELECTED AREAS IN CRYPTOGRAPHY - SAC 2017 | |
| dc.subject | Montgomery ladder, Elliptic curve scalar multiplication, Diffie-Hellman protocol, RFC 7748 | |
| dc.title | How to (Pre-)Compute a Ladder Improving the Performance of X25519 and X448 | |
| dc.type | Conference Object | |
| dspace.entity.type | Publication | |
| gdc.bip.impulseclass | C4 | |
| gdc.bip.influenceclass | C4 | |
| gdc.bip.popularityclass | C4 | |
| gdc.coar.type | text::conference output | |
| gdc.collaboration.industrial | false | |
| gdc.identifier.openalex | W2779269605 | |
| gdc.index.type | WoS | |
| gdc.oaire.diamondjournal | false | |
| gdc.oaire.impulse | 5.0 | |
| gdc.oaire.influence | 3.482945E-9 | |
| gdc.oaire.isgreen | true | |
| gdc.oaire.popularity | 8.732112E-9 | |
| gdc.oaire.publicfunded | false | |
| gdc.openalex.collaboration | International | |
| gdc.openalex.fwci | 4.0875 | |
| gdc.openalex.normalizedpercentile | 0.96 | |
| gdc.openalex.toppercent | TOP 10% | |
| gdc.opencitations.count | 15 | |
| gdc.plumx.crossrefcites | 6 | |
| gdc.plumx.mendeley | 26 | |
| gdc.plumx.scopuscites | 20 | |
| oaire.citation.endPage | 191 | |
| oaire.citation.startPage | 172 | |
| person.identifier.orcid | Faz Hernandez- Armando/0000-0001-5502-8666, | |
| publicationvolume.volumeNumber | 10719 | |
| relation.isOrgUnitOfPublication | ac5ddece-c76d-476d-ab30-e4d3029dee37 | |
| relation.isOrgUnitOfPublication.latestForDiscovery | ac5ddece-c76d-476d-ab30-e4d3029dee37 |