Skip to content
WebAssembly implementation of Ed25519-based operations and more.
Branch: master
Clone or download
Latest commit 59f6769 Mar 15, 2019
Type Name Latest commit message Commit time
Failed to load latest commit information.
assembly More tests Mar 11, 2019


A WebAssembly (via AssemblyScript) set of cryptographic primitives for building authentication and key exchange protocols.

Currently provides:

  • RFC 8032/libsodium-compatible detached EdDSA signatures
  • Ed25519 signatures and non-deterministic signatures using Trevor Perrin's generalized EdDSA scheme
  • Deterministic and non-deterministic Schnorr signatures over the Ristretto group.
  • Hashing (simple + multi-parts)
  • Authentication (HMAC-SHA-512)
  • Point validation, point addition, scalar multiplication with and without clamping over Edwards25519 using the standard Ed25519 point encoding.
  • Fast point validation, hash-to-point, point addition, scalar multiplication over the Ristretto prime-order group.
  • Scalar reduction, scalar multiplication, scalar inversion mod the order of the prime-order groups for multiparty computation and oblivious pseudorandom functions.

Javascript (TypeScript) bindings

WASM-Crypto currently lacks a nice set of Javascript wrappers.

This is fairly easy (see the Terrarium access control example for an example), so if you think you can help, please do!

You can’t perform that action at this time.