In [1]:
load('skyscraper.sage')

# Example 1: Skyscraper

In [2]:
sky = Skyscraper(p=28657, n=1, num_B=1, num_S=1, N=2, debug=True, debugBar=False, rep='x')
sky([sky.F.zero(),sky.F.zero()])

SKYSCRAPER over Finite Field of size 28657. Feistel rounds: x^2 B x^2 B x^2
BAR over Finite Field of size 28657 (15 bits base field). Decomposition of 16 bits into 2 parts of size 8. Circular left-rotation by 1.
Round 1 out: (0, 0) -> (0, 0)
Round 2 out: (0, 0) -> (0, 22372)
Round 3 out: (22372, 0) -> (22372, 7170)
Round 4 out: (7170, 22372) -> (7170, 14098)
Round 5 out: (14098, 7170) -> (14098, 17032)


[17032, 14098]

In [3]:
# Predefined instances
instances = [Sky_BLS381_1,Sky_BLS381_2,Sky_BLS381_3,Sky_BN254_1,Sky_BN254_2,Sky_BN254_3,Sky_PALLAS_1,Sky_PALLAS_2,Sky_PALLAS_3,Sky_VESTA_1,Sky_VESTA_2,Sky_VESTA_3]

for skyperm in instances:
    state_in = [skyperm.F.random_element(), skyperm.F.random_element()]
    state_out = skyperm(state_in)
    assert(state_in == skyperm(state_out,inv=True))

# Example 2: BAR (Table 3) 
$\mathsf B': \mathbb F_{p^n} \to \mathbb F_{p^n}$ for the $15$-bit prime $p = 28657$, $n \in \{1,2,3\}$, and $m=2$. The extension field modulus is $X^n + 5$.

### $n=1$

In [4]:
sky = Skyscraper(p=28657, n=1, num_B=1, num_S=1, N=2, debug=False, debugBar=True, rep='x')
print(sky)
sky.BAR(sky.F(0x17cd));

SKYSCRAPER over Finite Field of size 28657. Feistel rounds: x^2 B x^2 B x^2
BAR: F_q -> F_q
BAR(6093) = BAR([6093]) = BAR(['17cd']) = ...
DECOMPOSE: 17cd -> ['17', 'cd']
ROTATE LEFT BY 1:
	Before: [['17', 'cd']]
	After:  [['cd', '17']]
T: F_2^8 -> F_2^8. S(cd) = d3
T: F_2^8 -> F_2^8. S(17) = 0e
COMPOSE: ['d3', '0e'] -> d30e -> 631d
BAR(6093) = 25373


### $n=2$

In [5]:
sky = Skyscraper(p=28657, n=2, beta=5, num_B=1, num_S=2, N=2, debug=False, debugBar=True, rep='x')
print(sky)
sky.BAR(sky.F([0x1e83,0x142b]));

SKYSCRAPER over Finite Field in a of size 28657^2. Feistel rounds: x^2 x^2 B x^2 x^2 B x^2 x^2
BAR: F_q -> F_q
BAR(5163*a + 7811) = BAR([7811, 5163]) = BAR(['1e83', '142b']) = ...
DECOMPOSE: 1e83 -> ['1e', '83']
DECOMPOSE: 142b -> ['14', '2b']
ROTATE LEFT BY 1:
	Before: [['1e', '83'], ['14', '2b']]
	After:  [['83', '14'], ['2b', '1e']]
T: F_2^8 -> F_2^8. S(83) = 17
T: F_2^8 -> F_2^8. S(14) = 28
T: F_2^8 -> F_2^8. S(2b) = 46
T: F_2^8 -> F_2^8. S(1e) = bc
COMPOSE: ['17', '28'] -> 1728 -> 1728
COMPOSE: ['46', 'bc'] -> 46bc -> 46bc
BAR(5163*a + 7811) = 18108*a + 5928


### $n=3$

In [6]:
sky = Skyscraper(p=28657, n=3, beta=5, num_B=2, num_S=2, N=2, debug=False, debugBar=True, rep='x')
print(sky)
sky.BAR(sky.F([0x09ce,0x4aae,0x2d7c]));

SKYSCRAPER over Finite Field in a of size 28657^3. Feistel rounds: x^2 x^2 B B x^2 x^2 B B x^2 x^2
BAR: F_q -> F_q
BAR(11644*a^2 + 19118*a + 2510) = BAR([2510, 19118, 11644]) = BAR(['09ce', '4aae', '2d7c']) = ...
DECOMPOSE: 09ce -> ['09', 'ce']
DECOMPOSE: 4aae -> ['4a', 'ae']
DECOMPOSE: 2d7c -> ['2d', '7c']
ROTATE LEFT BY 1:
	Before: [['09', 'ce'], ['4a', 'ae'], ['2d', '7c']]
	After:  [['ce', '4a'], ['ae', '2d'], ['7c', '09']]
T: F_2^8 -> F_2^8. S(ce) = d9
T: F_2^8 -> F_2^8. S(4a) = 94
T: F_2^8 -> F_2^8. S(ae) = 1d
T: F_2^8 -> F_2^8. S(2d) = 1a
T: F_2^8 -> F_2^8. S(7c) = fa
T: F_2^8 -> F_2^8. S(09) = 12
COMPOSE: ['d9', '94'] -> d994 -> 69a3
COMPOSE: ['1d', '1a'] -> 1d1a -> 1d1a
COMPOSE: ['fa', '12'] -> fa12 -> 1a30
BAR(11644*a^2 + 19118*a + 2510) = 6704*a^2 + 7450*a + 27043
