GitHub - robdockins/large-gf: Implementation of some fairly large finite fields

robdockins / large-gf Public

Notifications You must be signed in to change notification settings
Fork 0
Star 2

Implementation of some fairly large finite fields

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 28 Commits
Data		Data
opencl		opencl
GF2_16.cry		GF2_16.cry
GF2_8.cry		GF2_8.cry
LICENSE		LICENSE
Makefile		Makefile
README		README
gf.cry		gf.cry
gf2_128.c		gf2_128.c
gf2_128.h		gf2_128.h
gf2_16.c		gf2_16.c
gf2_16.h		gf2_16.h
gf2_32.c		gf2_32.c
gf2_32.h		gf2_32.h
gf2_64.c		gf2_64.c
gf2_64.h		gf2_64.h
gfBridge.cabal		gfBridge.cabal
main.c		main.c
main128.c		main128.c
main64.c		main64.c
main_gfc.c		main_gfc.c
main_gfc128.c		main_gfc128.c

Repository files navigation

This repository contains C implementations of the following
finite Galois Fields:

   GF(2^16)
   GF(2^32)
   GF(2^64)

It also contains partial Cryptol specifications of these
implementations.

GF(2^16) is implemented via explicity lookup tables for the
exponential and discrete logarithm functions.  The other
two implementations arise as finite field extensions of
GF(2^16).

Field multiplication in GF(2^32) and GF(2^64) is
straightforward polynomial multiplication followed
by polynomial reduction, albeit hand-tuned to reduce
the number of table lookups.  The calculation of
multiplicative inverses uses the Itoh-Tsujii method,
which can be made fairly fast; and is branching-free,
unlike methods based on Euclidean division.

All algorithms are _branch-free_ and _constant-time_,
if we assume that access to the lookup tables are
constant time (a large and untrue assumption, but probably
reliable enough under nonadversarial conditions).

I mostly put these implementations together for my own
amusement and edification, but perhaps they could be
useful for something eventually.