Skip to main content

Elliptic Curve Cryptography playground/toolkit written in pure Python

Project description

toyecc

Build Status

toyecc is a playground for Elliptic Curve Cryptography in FP. It is written in pure Python and aims to explain ECC in easy terms. It is neither written to be performant, nor side-channel resistant nor in any way suited for productive use at all. Please use it for its intended purpose and for it only.

The rationale behind toyecc is to show a clear and mathematically clean presentation of the underlying mathematical problems. Most code that is written arund ECC -- especially code that revolves around Ed25519 and/or Curve25519 is heavily optimized and in many cases hard to understand. toyecc tries to present the problems with a high level of abstraction in order to serve as yet another (different) reference to compare implementations against and in order to aid understanding of heavily optimized code. All curve arithmetic is therefore performed in affine space; performance in affine space is lowest, but having values that directly can be checked against the curve equation makes understanding everything extremely easy.

Installation

toyecc is available on PyPi. You can install it by:

$ pip3 install toyecc

Tutorial

There's a ECC tutorial that I've written which accompanies the pure code. It can be found at http://johannes-bauer.com/compsci/ecc/

Features

  • ECDSA demonstration
  • ECIES demonstration
  • ECDH demonstration
  • Elgamal demonstration
  • Dual_EC_DBRG backdoor demonstration
  • Demonstration how a private key can be recovered from two ECDSA signatures which reused the same nonce (ECDSA nonce exploit)
  • Support for short-formed Weierstrass curves, Montgomery curves and twisted Edwards curves
  • Conversion of domain parameters of twisted Edwards to Montgomery form and back, conversion of points between Montgomery representation and its birationally equivalent twisted Edwards counterpart
  • Ed25519 and Curve25519 support and support to convert keys between each other (Curve25519 and Ed25519 are birationally equivalent curves)
  • Many testcases to try out your own implementation
  • Example of OpenBSD's signify application (generates and verifies Ed25519 signatures, but doesn't support key encryption)
  • X-coordinate-only scalar multiplication on Short Weierstrass curves
  • Clean, well-documented Python3 code
  • Sage scripts that perform an invalid point attack using a vulnerable X-only-ladder implementation of toyecc

License

GNU GPL-3.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

toyecc-0.0.8.tar.gz (114.9 kB view details)

Uploaded Source

File details

Details for the file toyecc-0.0.8.tar.gz.

File metadata

  • Download URL: toyecc-0.0.8.tar.gz
  • Upload date:
  • Size: 114.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.1 CPython/3.10.7

File hashes

Hashes for toyecc-0.0.8.tar.gz
Algorithm Hash digest
SHA256 bd93425dba589fe08d3889e9f8a26c81bcd50601770d39b0f79a32a88b5783ee
MD5 e30be186decbf3ee524c4b8180bdda6a
BLAKE2b-256 3b14c16cb6be10f00f438c02a3572280a09335a1acd710b476bb7ecec24c8791

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page