[Cryptography] Microsoft's new, free, crypto library dubbed FourQ
Tony Arcieri
bascule at gmail.com
Tue Sep 15 16:34:56 EDT 2015
Some context (for curves at a 128-bit security level):
- Curve25519 is now 10 years old
- FourQ *is* faster than Curve25519 but...
- djb and friends' Kummer curve is faster than FourQ unless FourQ leverages
techniques in the GLV patent: https://eprint.iacr.org/2014/134.pdf
- Kummer may potentially be faster even when the patented techniques are
leveraged? (hasn't been assembly optimized yet)
That said, FourQ is more generally applicable, e.g. it can be used for
signatures in addition to D-H.
Verdict: interesting but the way Microsoft is marketing it is a bit
disingenuous and it has patent entanglements which if avoided make it
slower than alternatives. They should be expiring soon though.
I think this is the relevant patent?
https://www.google.com/patents/US20070053506
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150915/027675e5/attachment.html>
More information about the cryptography
mailing list