Optimize ScalarBaseMult #2
Labels
Comments
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 24, 2014
Code uses the binomial expansion strategy which eliminates doublings. All the basepoint doublings are computed beforehand to assist in the base multiplication. Main function is computeDoublingPoints which computes all the doublings of the generator point G up to the size of the curve's bit size (for secp256k1, that's 256). Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about half what it was before. Closes btcsuite#2
Merged
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 24, 2014
Code uses the binomial expansion strategy which eliminates doublings. All the basepoint doublings are computed beforehand to assist in the base multiplication. Main function is computeDoublingPoints which computes all the doublings of the generator point G up to the size of the curve's bit size (for secp256k1, that's 256). Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about half what it was before. Closes btcsuite#2
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 24, 2014
Code uses a windowing/precomputing strategy to minimize ECC math. Every 8-bit window of the 256 bits that compose a possible scalar multiple has a complete map that's pre-computed. Main function is computeBytePoints which computes all the 256 possible combinations in that 8-bit window. This is used then to look up the point values so it minimizes the ScalarBaseMult operation. Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about 35% of what it was before. Closes btcsuite#2
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 24, 2014
Code uses a windowing/precomputing strategy to minimize ECC math. Every 8-bit window of the 256 bits that compose a possible scalar multiple has a complete map that's pre-computed. Main function is computeBytePoints which computes all the 256 possible combinations in that 8-bit window. This is used then to look up the point values so it minimizes the ScalarBaseMult operation. Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about 35% of what it was before. Closes btcsuite#2
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 24, 2014
Code uses a windowing/precomputing strategy to minimize ECC math. Every 8-bit window of the 256 bits that compose a possible scalar multiple has a complete map that's pre-computed. Main function is computeBytePoints which computes all the 256 possible combinations in that 8-bit window. This is used then to look up the point values so it minimizes the ScalarBaseMult operation. Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about 35% of what it was before. Closes btcsuite#2
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 24, 2014
Code uses a windowing/precomputing strategy to minimize ECC math. Every 8-bit window of the 256 bits that compose a possible scalar multiple has a complete map that's pre-computed. Main function is computeBytePoints which computes all the 256 possible combinations in that 8-bit window. This is used then to look up the point values so it minimizes the ScalarBaseMult operation. Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about 35% of what it was before. Closes btcsuite#2
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 24, 2014
Code uses a windowing/precomputing strategy to minimize ECC math. Every 8-bit window of the 256 bits that compose a possible scalar multiple has a complete map that's pre-computed. Main function is computeBytePoints which computes all the 256 possible combinations in that 8-bit window. This is used then to look up the point values so it minimizes the ScalarBaseMult operation. Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about 35% of what it was before. Closes btcsuite#2
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 24, 2014
Code uses a windowing/precomputing strategy to minimize ECC math. Every 8-bit window of the 256 bits that compose a possible scalar multiple has a complete map that's pre-computed. Main function is computeBytePoints which computes all the 256 possible combinations in that 8-bit window. This is used then to look up the point values so it minimizes the ScalarBaseMult operation. Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about 35% of what it was before. Closes btcsuite#2
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 24, 2014
Code uses a windowing/precomputing strategy to minimize ECC math. Every 8-bit window of the 256 bits that compose a possible scalar multiple has a complete map that's pre-computed. Main function is computeBytePoints which computes all the 256 possible combinations in that 8-bit window. This is used then to look up the point values so it minimizes the ScalarBaseMult operation. Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about 35% of what it was before. Closes btcsuite#2
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 25, 2014
Code uses a windowing/precomputing strategy to minimize ECC math. Every 8-bit window of the 256 bits that compose a possible scalar multiple has a complete map that's pre-computed. The precomputed data is in secp256k1.go and the generator for that file is in gensecp256k1.go Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about 35% of what it was before. Closes btcsuite#2
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 25, 2014
Code uses a windowing/precomputing strategy to minimize ECC math. Every 8-bit window of the 256 bits that compose a possible scalar multiple has a complete map that's pre-computed. The precomputed data is in secp256k1.go and the generator for that file is in gensecp256k1.go Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about 35% of what it was before. Closes btcsuite#2
jimmysong
added a commit
to jimmysong/btcec
that referenced
this issue
Sep 25, 2014
Code uses a windowing/precomputing strategy to minimize ECC math. Every 8-bit window of the 256 bits that compose a possible scalar multiple has a complete map that's pre-computed. The precomputed data is in secp256k1.go and the generator for that file is in gensecp256k1.go Also fixed a spelling error in a benchmark test. Results so far seem to indicate the time taken is about 35% of what it was before. Closes btcsuite#2
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
ScalarBaseMultcan be significantly accelerated by making use of the fact it is multiplying by a fixed point that is known at compile time. See section 3.3.2 of Guide to Elliptic Curve Cryptography - Hankerson, Menezes, Vanstone for details.Currently
ScalarBaseMultsimply callsScalarMultwhich can make no such assumptions.The text was updated successfully, but these errors were encountered: