sage: verify instances are secure using bounds in iacr/2024/310

penumbra-zone / poseidon377

An instantiation of the Poseidon hash for use with decaf377

https://protocol.penumbra.zone/main/crypto/poseidon.html

Other

28 stars 10 forks source link

sage: verify instances are secure using bounds in iacr/2024/310 #55

Closed redshiftzero closed 6 months ago

redshiftzero commented 6 months ago

Closes #54

This PR adds in Sage the conditions in Eqns 16 and 17 in the paper:

Which are satisfied for our instances:

% sage poseidonperm_x17.sage
instances secure vs iacr/2024/310 generic eigenpolynomial computation?
384.221507077532
True
449.620912537537
True
515.020317997543
True
645.819128917554
True
711.218534377559
True
776.617939837564
True
instances secure vs iacr/2024/310 generic root extraction?
True
True
True
True
True
True
True

redshiftzero commented 6 months ago

Ci failing only due to unrelated issue #56