The rearrangement of the sigma functions was suggested in Intel's "Fast
SHA-256 Implementations" whitepaper, and the constants for the SHA-256
implementation are taken from there. The constants for the SHA-512
implementation were derived via exhaustive search + random testing.
Performance improves on SHA-256 by ~10% locally, and on SHA-512 by ~15-20%.
The rearrangement of the sigma functions was suggested in Intel's "Fast SHA-256 Implementations" whitepaper, and the constants for the SHA-256 implementation are taken from there. The constants for the SHA-512 implementation were derived via exhaustive search + random testing.
Performance improves on SHA-256 by ~10% locally, and on SHA-512 by ~15-20%.