VAMPIRE

eBACS: ECRYPT Benchmarking of Cryptographic Systems


ECRYPT II
General information:IntroductioneBASHeBASCeBAEADeBATSSUPERCOPXBXComputersArch
How to submit new software:Tipshashstreamaeaddhkemencryptsign
List of primitives measured:lwcsha3hashstreamlwccaesaraeaddhkemencryptsign
Measurements:lwcsha3hashstreamlwccaesaraeaddhkemencryptsign
List of subroutines:verifydecodeencodesortcorehashblocksxofscalarmult

Measurements of public-key Diffie–Hellman secret-sharing systems on one machine: amd64; Ivy Bridge+AES (306a9); 2012 Intel Core i5-3427U; 2 x 1800MHz; hunsnivy, supercop-20241022

[Page version: 20241215 22:59:13]

eBATS (ECRYPT Benchmarking of Asymmetric Systems) is a project to measure the performance of public-key systems. This page presents benchmark results collected in eBATS for public-key Diffie–Hellman secret-sharing systems:

Each table row lists the first quartile of many speed measurements, the median of many speed measurements, the third quartile of many speed measurements, and the name of the primitive. Measurements with large variance are indicated in red with question marks. The symbol T: (starting with supercop-20200816) means that the SUPERCOP database at the time of benchmarking did not list constant time as a goal for this implementation. The symbol T!!! means that constant time was listed as a goal for this implementation, but that the implementation failed TIMECOP. (TIMECOP failures are not necessarily security issues; they can sometimes be resolved by, e.g., declaring that a rejection-sampling condition is safe to declassify.)

There is a separate page with more information about each Diffie–Hellman system and each implementation. Designers and implementors interested in submitting new Diffie–Hellman systems and new implementations of existing systems should read the call for submissions.


Test results

Graphs: (pkcycles,pkbytes) (scycles,pkbytes)

Cycles to generate a key pair
25%50%75%system
297143001630353
T:
jacfp127i
306163099931829
T:
kumjacfp127g
333493370334138
T:
prjfp127i
342213459434978
T:
hecfp127i
406884114841601
T:
jacfp128bk
488764924549708
T:
prjfp128bk
491694953849921
T:
hecfp128i
491884956149939
T:
hecfp128fkt
492234967250045
T:
hecfp128bk
493755030151461
T:
ecfp256e
515845249854088
T:
ecfp256h
541835509956786
T:
ecfp256s
575185857960536
T:
curve2251
578055870460290
T:
ecfp256q
740087516776808
T:
gls254
887028886789036
T:
kummer
964729742298568
T:
gls1271
106054106322106401
T:
gls254prot
116543116794117079
T:
kumfp127g
145071145465145553
T:
curve25519
164032164285164640
T:
kumfp128g
176472176612176961
T:
k277taa
181383182130183806
T:
k298
210043210604211490
T:
ed448goldilocks
224570225888227242
T:
ecfp256i
232861233579234596
T:
surf127eps
257446257713258434
T:
k277mon
266261268554270821
T:
sclaus1024
277739287976297198
T:
hector
307428308633309480
T:
nistp256
580501582942584719
T:
surf2113
109080110917701093263
T:
ed521gs
126111712632151265642
T:
nist521gs
137503313850791395239
T:
sclaus2048
159457615986081603575
T:
claus
Cycles to compute a shared secret
25%50%75%system
666176940970543
T:
gls254
885128859688805
T:
kummer
106210106255106351
T:
gls254prot
119109119455119760
T:
kumfp127g
124300124492124798
T:
jacfp128bk
126243126397126658
T:
kumjacfp127g
157284157352158918
T:
curve25519
157644157922158286
T:
prjfp128bk
163505163781164162
T:
hecfp128bk
167156167342167723
T:
hecfp128fkt
170810171139171499
T:
kumfp128g
176360176633176959
T:
k277taa
180679181107181664
T:
k298
190776191115193430
T:
jacfp127i
209633209862210142
T:
ecfp256e
220244220508220759
T:
ecfp256i
221521221882222134
T:
ecfp256q
221837223828225070
T:
curve2251
230014230529231226
T:
surf127eps
234421236999243392
T:
gls1271
238814239110239586
T:
prjfp127i
244751245264246108
T:
hecfp127i
254351254555254880
T:
ecfp256h
257259257604258106
T:
k277mon
270864271743274390
T:
sclaus1024
286636287064287570
T:
ecfp256s
366119367311368710
T:
hecfp128i
577942579820582649
T:
surf2113
632505633104635213
T:
ed448goldilocks
780977782565784849
T:
nistp256
932610933828936768
T:
hector
108279710925291095316
T:
ed521gs
125936812626501268184
T:
nist521gs
137282413849741390261
T:
sclaus2048
158760915987441603774
T:
claus