zec
/
pasta
mirror of https://github.com/zcash/pasta.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

The specific cycle is provisional. 

Signed-off-by: Daira Hopwood <daira@jacaranda.org>
This commit is contained in:
Daira Hopwood 2019-09-12 16:01:16 +01:00
parent 9547beea4d
commit 5f57064498
1 changed files with 8 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
README.md
View File

@ -4,8 +4,8 @@ Tweedledum/Tweedledee supporting evidence
This repository contains supporting evidence that the amicable pair of
prime-order curves:
* Ep : y^2 = x^3 + 5 over GF(p) of order q, called Tweedledum;
* Eq : y^2 = x^3 + 5 over GF(q) of order p, called Tweedledee;
* Ep : y^2 = x^3 + 5 over GF(p) of order q, called (provisional) Tweedledum;
* Eq : y^2 = x^3 + 5 over GF(q) of order p, called (provisional) Tweedledee;
with
@ -26,8 +26,12 @@ The criteria that are *not* satisfied are, in summary:
* twist security;
* rigidity.
Tweedledum/Tweedledee is one of the cycles output by ``sage amicable.sage --nearpowerof2 255 32``
(the first one with constant 5 for both curves and gcd(p-1, 5) = 1, gcd(q-1, 5) = 1).
(Provisional) Tweedledum/Tweedledee is one of the cycles output by
``sage amicable.sage --nearpowerof2 255 32`` (the first one with constant 5 for both curves
and gcd(p-1, 5) = 1, gcd(q-1, 5) = 1).
**Which cycle we call Tweedledum/Tweedledee is subject to change as we make further
optimizations to Halo.**
Prerequisites: