mcl/readme.md

# mcl

A class library of finite field, elliptic curve and pairing

# Abstract

mcl is a library for pairing-based cryptography.
The current version supports the optimal Ate pairing over BN curves.

# Support architecture

* 64-bit Windows + Visual Studio
* x86, x86-64 Linux + gcc/clang
* ARM
* ARM64
* (maybe any platform to be supported by LLVM)

# Installation Requirements

* [GMP](https://gmplib.org/) must
```
apt install libgmp-dev
```
* [OpenSSL](https://www.openssl.org/) must
* [LLVM](http://llvm.org/) optional

Create a working directory (e.g., work) and clone the following repositories.
```
mkdir work
cd work
git clone git://github.com/herumi/mcl.git
git clone git://github.com/herumi/cybozulib.git
git clone git://github.com/herumi/xbyak.git
git clone git://github.com/herumi/cybozulib_ext.git
```
* Xbyak is a prerequisite for optimizing the operations in the finite field on x86-64.
* Cybozulib_ext is a prerequisite for running OpenSSL and GMP on VC (Visual C++).

# Build and test
To make lib/libmcl.a and test, run
```
make test
```
To measure pairing, run
```
bin/bn_test.exe
```
To make sample programs, run
```
make sample
```
If LLVM is installed, then
```
make MCL_USE_LLVM=1 LLVM_VER=-3.8
```
Change `LLVM_VER=-3.8` to `LLVM_VER=-3.7` if the version of LLVM is 3.7.

## Build for 32-bit Linux
Build openssl and gmp for 32-bit mode and install <lib32>
```
make ARCH=x86 CFLAGS_USER="-I <lib32>/include" LDFLAGS_USER="-L <lib32>/lib -Wl,-rpath,<lib32>/lib"
```

## Build for 64-bit Windows
1) make library
```
>mklib.bat
```
2) make exe binary of sample\pairing.cpp
```
>mk sample\pairing.cpp
```

open mcl.sln and build or if you have msbuild.exe
```
msbuild /p:Configuration=Release
```

## Build for ARM64 Linux
```
make MCL_USE_LLVM=1 LLVM_VER=-3.7 ARCH=aarch64
```
## Build for ARM Linux
```
make MCL_USE_LLVM=1 LLVM_VER=-3.8 ARCH=arm
```

## Benchmark

A benchmark of a BN curve over the 254-bit prime.
* x64, x86 ; Core i7 4700MQ
    * `sudo sh -c "echo 1 > /sys/devices/system/cpu/intel_pstate/no_turbo"`
* arm ; 900MHz quad-core ARM Cortex-A7 on Raspberry Pi2, Linux 4.4.11-v7+
* arm64 ; 1.2GHz ARM Cortex-A53 [HiKey](http://www.96boards.org/product/hikey/)

software                                                 |   x64|  x86| arm|arm64
---------------------------------------------------------|------|-----|----|-----
[ate-pairing](https://github.com/herumi/ate-pairing)     | 0.35 |   - |  - |    -
mcl                                                      | 0.63 | 2.9 | 32 |  5.7
[TEPLA](http://www.cipher.risk.tsukuba.ac.jp/tepla/)     | 2.3  | 4.8 | 37 | 17.9
[RELIC](https://github.com/relic-toolkit/relic) PRIME=254| 1.4  | 4.0 | 36 |    -
[MIRACL](https://github.com/miracl/MIRACL) ake12bnx      | 5.2  |   - | 78 |    -
[NEONabe](http://sandia.cs.cinvestav.mx/Site/NEONabe)    |   -  |   - | 16 |    -

# License

modified new BSD License
http://opensource.org/licenses/BSD-3-Clause

The original source of the followings are https://github.com/aistcrypt/Lifted-ElGamal .
These files are licensed by BSD-3-Clause and are used for only tests.

```
include/mcl/elgamal.hpp
include/mcl/window_method.hpp
test/elgamal_test.cpp
test/window_method_test.cpp
sample/vote.cpp
```
This library contains [mie](https://github.com/herumi/mie/) and [Lifted-ElGamal](https://github.com/aistcrypt/Lifted-ElGamal/).

# References
* [ate-pairing](https://github.com/herumi/ate-pairing/)
* [_Faster Explicit Formulas for Computing Pairings over Ordinary Curves_](http://dx.doi.org/10.1007/978-3-642-20465-4_5),
 D.F. Aranha, K. Karabina, P. Longa, C.H. Gebotys, J. Lopez,
 EUROCRYPTO 2011, ([preprint](http://eprint.iacr.org/2010/526))
* [_High-Speed Software Implementation of the Optimal Ate Pairing over Barreto-Naehrig Curves_](http://dx.doi.org/10.1007/978-3-642-17455-1_2),
   Jean-Luc Beuchat, Jorge Enrique González Díaz, Shigeo Mitsunari, Eiji Okamoto, Francisco Rodríguez-Henríquez, Tadanori Teruya,
  Pairing 2010, ([preprint](http://eprint.iacr.org/2010/354))
* [_Faster hashing to G2_](http://dx.doi.org/10.1007/978-3-642-28496-0_25),Laura Fuentes-Castañeda,  Edward Knapp,  Francisco Rodríguez-Henríquez,
  SAC 2011, ([preprint](https://eprint.iacr.org/2008/530))

# Author

光成滋生 MITSUNARI Shigeo(herumi@nifty.com)
fix code 9 years ago			`# mcl`

update doc 8 years ago			`A class library of finite field, elliptic curve and pairing`
fix code 9 years ago
			`# Abstract`

update doc 8 years ago			`mcl is a library for pairing-based cryptography.`
			`The current version supports the optimal Ate pairing over BN curves.`

			`# Support architecture`

			`* 64-bit Windows + Visual Studio`
			`* x86, x86-64 Linux + gcc/clang`
			`* ARM`
			`* ARM64`
fix typo 8 years ago			`* (maybe any platform to be supported by LLVM)`
fix code 9 years ago
			`# Installation Requirements`

update doc 8 years ago			`* [GMP](https://gmplib.org/) must`
			```
			`apt install libgmp-dev`
			```
			`* [OpenSSL](https://www.openssl.org/) must`
			`* [LLVM](http://llvm.org/) optional`

fix code 9 years ago			`Create a working directory (e.g., work) and clone the following repositories.`
			```
			`mkdir work`
			`cd work`
update doc 8 years ago			`git clone git://github.com/herumi/mcl.git`
fix code 9 years ago			`git clone git://github.com/herumi/cybozulib.git`
update doc 8 years ago			`git clone git://github.com/herumi/xbyak.git`
fix code 9 years ago			`git clone git://github.com/herumi/cybozulib_ext.git`
			```
update doc 8 years ago			`* Xbyak is a prerequisite for optimizing the operations in the finite field on x86-64.`
fix code 9 years ago			`* Cybozulib_ext is a prerequisite for running OpenSSL and GMP on VC (Visual C++).`

			`# Build and test`
			`To make lib/libmcl.a and test, run`
			```
			`make test`
			```
add benchmark 8 years ago			`To measure pairing, run`
			```
			`bin/bn_test.exe`
			```
fix code 9 years ago			`To make sample programs, run`
			```
			`make sample`
			```
update doc 8 years ago			`If LLVM is installed, then`
			```
			`make MCL_USE_LLVM=1 LLVM_VER=-3.8`
			```
			Change `LLVM_VER=-3.8` to `LLVM_VER=-3.7` if the version of LLVM is 3.7.
fix code 9 years ago
			`## Build for 32-bit Linux`
			`Build openssl and gmp for 32-bit mode and install <lib32>`
			```
rename function from bit to N 8 years ago			`make ARCH=x86 CFLAGS_USER="-I <lib32>/include" LDFLAGS_USER="-L <lib32>/lib -Wl,-rpath,<lib32>/lib"`
fix code 9 years ago			```

			`## Build for 64-bit Windows`
add how to use mklib.bat and mk.bat for win 8 years ago			`1) make library`
			```
			`>mklib.bat`
			```
			`2) make exe binary of sample\pairing.cpp`
			```
			`>mk sample\pairing.cpp`
			```

fix code 9 years ago			`open mcl.sln and build or if you have msbuild.exe`
			```
			`msbuild /p:Configuration=Release`
			```

add how to make on ARM64 linux 8 years ago			`## Build for ARM64 Linux`
			```
update doc 8 years ago			`make MCL_USE_LLVM=1 LLVM_VER=-3.7 ARCH=aarch64`
add how to make on ARM64 linux 8 years ago			```
update doc 8 years ago			`## Build for ARM Linux`
change hash.calc 8 years ago			```
update doc 8 years ago			`make MCL_USE_LLVM=1 LLVM_VER=-3.8 ARCH=arm`
change hash.calc 8 years ago			```

add benchmark 8 years ago			`## Benchmark`

update benchmark of arm64 8 years ago			`A benchmark of a BN curve over the 254-bit prime.`
recalc 8 years ago			`* x64, x86 ; Core i7 4700MQ`
			* `sudo sh -c "echo 1 > /sys/devices/system/cpu/intel_pstate/no_turbo"`
add benchmark 8 years ago			`* arm ; 900MHz quad-core ARM Cortex-A7 on Raspberry Pi2, Linux 4.4.11-v7+`
			`* arm64 ; 1.2GHz ARM Cortex-A53 [HiKey](http://www.96boards.org/product/hikey/)`

update benchmark of arm64 8 years ago			`software \| x64\| x86\| arm\|arm64`
			`---------------------------------------------------------\|------\|-----\|----\|-----`
recalc 8 years ago			`[ate-pairing](https://github.com/herumi/ate-pairing) \| 0.35 \| - \| - \| -`
			`mcl \| 0.63 \| 2.9 \| 32 \| 5.7`
update benchmark of arm64 8 years ago			`[TEPLA](http://www.cipher.risk.tsukuba.ac.jp/tepla/) \| 2.3 \| 4.8 \| 37 \| 17.9`
add space for document 8 years ago			`[RELIC](https://github.com/relic-toolkit/relic) PRIME=254\| 1.4 \| 4.0 \| 36 \| -`
recalc 8 years ago			`[MIRACL](https://github.com/miracl/MIRACL) ake12bnx \| 5.2 \| - \| 78 \| -`
update benchmark of arm64 8 years ago			`[NEONabe](http://sandia.cs.cinvestav.mx/Site/NEONabe) \| - \| - \| 16 \| -`
add benchmark 8 years ago
fix code 9 years ago			`# License`

			`modified new BSD License`
			`http://opensource.org/licenses/BSD-3-Clause`

			`The original source of the followings are https://github.com/aistcrypt/Lifted-ElGamal .`
			`These files are licensed by BSD-3-Clause and are used for only tests.`

			```
			`include/mcl/elgamal.hpp`
			`include/mcl/window_method.hpp`
			`test/elgamal_test.cpp`
			`test/window_method_test.cpp`
			`sample/vote.cpp`
			```
update doc 8 years ago			`This library contains [mie](https://github.com/herumi/mie/) and [Lifted-ElGamal](https://github.com/aistcrypt/Lifted-ElGamal/).`
fix code 9 years ago
			`# References`
			`* [ate-pairing](https://github.com/herumi/ate-pairing/)`
			`* [_Faster Explicit Formulas for Computing Pairings over Ordinary Curves_](http://dx.doi.org/10.1007/978-3-642-20465-4_5),`
			`D.F. Aranha, K. Karabina, P. Longa, C.H. Gebotys, J. Lopez,`
			`EUROCRYPTO 2011, ([preprint](http://eprint.iacr.org/2010/526))`
			`* [_High-Speed Software Implementation of the Optimal Ate Pairing over Barreto-Naehrig Curves_](http://dx.doi.org/10.1007/978-3-642-17455-1_2),`
			`Jean-Luc Beuchat, Jorge Enrique González Díaz, Shigeo Mitsunari, Eiji Okamoto, Francisco Rodríguez-Henríquez, Tadanori Teruya,`
			`Pairing 2010, ([preprint](http://eprint.iacr.org/2010/354))`
			`* [_Faster hashing to G2_](http://dx.doi.org/10.1007/978-3-642-28496-0_25),Laura Fuentes-Castañeda, Edward Knapp, Francisco Rodríguez-Henríquez,`
			`SAC 2011, ([preprint](https://eprint.iacr.org/2008/530))`

			`# Author`

			`光成滋生 MITSUNARI Shigeo(herumi@nifty.com)`