Elliptic Curve Cryptography playground/toolkit written in pure Python
Project description
toyecc
toyecc is a playground for Elliptic Curve Cryptography in FP. It is written in pure Python and aims to explain ECC in easy terms. It is neither written to be performant, nor side-channel resistant nor in any way suited for productive use at all. Please use it for its intended purpose and for it only.
The rationale behind toyecc is to show a clear and mathematically clean presentation of the underlying mathematical problems. Most code that is written arund ECC -- especially code that revolves around Ed25519 and/or Curve25519 is heavily optimized and in many cases hard to understand. toyecc tries to present the problems with a high level of abstraction in order to serve as yet another (different) reference to compare implementations against and in order to aid understanding of heavily optimized code. All curve arithmetic is therefore performed in affine space; performance in affine space is lowest, but having values that directly can be checked against the curve equation makes understanding everything extremely easy.
Installation
toyecc is available on PyPi. You can install it by:
$ pip3 install toyecc
Tutorial
There's a ECC tutorial that I've written which accompanies the pure code. It can be found at http://johannes-bauer.com/compsci/ecc/
Features
- ECDSA demonstration
- ECIES demonstration
- ECDH demonstration
- Elgamal demonstration
- Dual_EC_DBRG backdoor demonstration
- Demonstration how a private key can be recovered from two ECDSA signatures which reused the same nonce (ECDSA nonce exploit)
- Support for short-formed Weierstrass curves, Montgomery curves and twisted Edwards curves
- Conversion of domain parameters of twisted Edwards to Montgomery form and back, conversion of points between Montgomery representation and its birationally equivalent twisted Edwards counterpart
- Ed25519 and Curve25519 support and support to convert keys between each other (Curve25519 and Ed25519 are birationally equivalent curves)
- Many testcases to try out your own implementation
- Example of OpenBSD's signify application (generates and verifies Ed25519 signatures, but doesn't support key encryption)
- X-coordinate-only scalar multiplication on Short Weierstrass curves
- Clean, well-documented Python3 code
- Sage scripts that perform an invalid point attack using a vulnerable X-only-ladder implementation of toyecc
License
GNU GPL-3.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
File details
Details for the file toyecc-0.0.8.tar.gz
.
File metadata
- Download URL: toyecc-0.0.8.tar.gz
- Upload date:
- Size: 114.9 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.1 CPython/3.10.7
File hashes
Algorithm | Hash digest | |
---|---|---|
SHA256 | bd93425dba589fe08d3889e9f8a26c81bcd50601770d39b0f79a32a88b5783ee |
|
MD5 | e30be186decbf3ee524c4b8180bdda6a |
|
BLAKE2b-256 | 3b14c16cb6be10f00f438c02a3572280a09335a1acd710b476bb7ecec24c8791 |