tarcieri
commented
1 year ago Better precomputation support, including precomputing tables for arbitrary points, and especially via a trait-based API that could be used across curves, would definitely be something nice to have
MulByGenerator exposes a faster multiplication using a precomputed table. Is there any interest in extending this support for handling other (application supplied) points, where the cost of precomputation can similarly be amortized over many multiplications?
For context DFINITY's threshold ECDSA implementation uses
k256andp256and there we have two generators, namely the typical one used in the group plus a second (derived using hash to curve) so we can do Pedersen commitments.