Talk:Curve25519

This article is rated C-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects:

Computing: Networking / Software Low‑importance This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.ComputingWikipedia:WikiProject ComputingTemplate:WikiProject ComputingComputing articles Low This article has been rated as Low-importance on the project's importance scale. This article is supported by Networking task force (assessed as Low-importance). This article is supported by WikiProject Software (assessed as Low-importance). This article is supported by WikiProject Computer Security (assessed as High-importance). Things you can help WikiProject Computer Security with: edit history watch purge Article alerts will be generated shortly by AAlertBot. Please allow some days for processing. More information... Answer question about Same-origin_policy Review importance and quality of existing articles Identify categories related to Computer Security Tag related articles Identify articles for creation (see also: Article requests) Identify articles for improvement Create the Project Navigation Box including lists of adopted articles, requested articles, reviewed articles, etc. Find editors who have shown interest in this subject and ask them to take a look here. Cryptography: Computer science High‑importance This article is within the scope of WikiProject Cryptography, a collaborative effort to improve the coverage of Cryptography on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.CryptographyWikipedia:WikiProject CryptographyTemplate:WikiProject CryptographyCryptography articles High This article has been rated as High-importance on the importance scale. This article is supported by WikiProject Computer science (assessed as High-importance).

This is a pre-stub page for Dan Bernstein's Curve25519 ECC-DH algorithm. I'm redirecting to ECC for now; I imagine ECC will at some point contain a section on Curve25519, and eventually it will be moved into its own article, for as a cryptographic algorithm goes, it warrants more than just a footnote in the ECC class of ciphers. Feel free to be bold and write that article.

Bernstein's paper is here:http://cr.yp.to/ecdh/curve25519-20060209.pdf

NoDepositNoReturn (talk) 06:26, 14 June 2008 (UTC)[reply]

The article says the curve is defined "over the quadratic extension of the prime field...".

I don't think that's true, I think it's defined over the prime field.

See the original publication: https://cr.yp.to/ecdh/curve25519-20060209.pdf page 4. — Preceding unsigned comment added by 194.95.66.251 (talk) 16:36, 26 February 2019 (UTC)[reply]

While I have no doubt that Schneier has an issue with other curves, I don't like that this article makes an endorsement of Curve25519 out of that. Is there any quote where he actually suggests it being better than the NSA-parameters?

--Giszmo (talk) 01:01, 18 August 2015 (UTC)[reply]

I don't read it like he endorses Curve25519, rather the article tries to document the mention "... but interest increased considerably after 2013..." MaxStrobel (talk) 16:16, 21 November 2015 (UTC)[reply]

It is clear that Bernstein believes this curve to be patent-free, but is this enough to say it here ?

How can we be sure that there are no patents covering it ? or some particular implementation of it ?

The fact that its author is unaware of it doesn't make curve25519 patent free in my opinion. ECC is known to be a mess with regards to patents, and Bernstein doesn't own a law firm as far as I know. — Preceding unsigned comment added by 72.37.140.35 (talk) 12:56, 28 August 2015 (UTC)[reply]

It would be nice to know if anything about the choices in the curve's implementation would protect against attacks designed for quantum computers. DouglasHeld (talk) 02:27, 10 September 2015 (UTC)[reply]

Yesterday I removed the sentence that said that GPG uses Curve25519 by default. Indeed it does not, but on the other hand it can used starting with release 2.1 if enabled with "--expert" mode and if the fact that OpenPGP didn't yet ratify the packet identifier used by that implementation is OK with the user. So, can be used by anyone determined to use it (and with a very recent GnuPG), but very far from being the default. --Lapo Luchini (talk) 08:35, 19 November 2015 (UTC)[reply]

Hello fellow Wikipedians,

I have just modified one external link on Curve25519. Please take a moment to review my edit. If you have any questions, or need the bot to ignore the links, or the page altogether, please visit this simple FaQ for additional information. I made the following changes:

• Added archive https://web.archive.org/web/20150520171756/http://fossies.org/dox/nettle-3.1.1/curve25519_8h.html to http://fossies.org/dox/nettle-3.1.1/curve25519_8h.html

When you have finished reviewing my changes, you may follow the instructions on the template below to fix any issues with the URLs.

This message was posted before February 2018. After February 2018, "External links modified" talk page sections are no longer generated or monitored by InternetArchiveBot. No special action is required regarding these talk page notices, other than regular verification using the archive tool instructions below. Editors have permission to delete these "External links modified" talk page sections if they want to de-clutter talk pages, but see the RfC before doing mass systematic removals. This message is updated dynamically through the template {{source check}} (last update: 18 January 2022).

• If you have discovered URLs which were erroneously considered dead by the bot, you can report them with this tool.
• If you found an error with any archives or the URLs themselves, you can fix them with this tool.

Cheers.—InternetArchiveBot (Report bug) 18:19, 15 August 2017 (UTC)[reply]

ls.

I created an image depicting this curve:

Please add it to the lemma if you think it's correct and useful.

Kind regards Snaily (talk) 23:14, 23 September 2023 (UTC)[reply]