Post
Topic
Board Development & Technical Discussion
Merits 1 from 1 user
Re: Pollards kangaroo method to reverse engineer private keys
by
WanderingPhilospher
on 06/03/2021, 16:55:56 UTC
⭐ Merited by JayJuanGee (1)
What do you mean the jump size is limited?

https://github.com/JeanLucPons/Kangaroo/blob/master/Kangaroo.cpp#L381-L420

Then it looks like it subtracts the kangaroo and the jump distance from this squared value to get new X (also 128 bits), then for Y it subtracts that from the jump distance and multiplied that result by the aforementioned 128-bit value which potentially gives a 256-bit value which is then subtracted from old kangaroo Y to get new Y.

And each operation is taken to the modulus of secp256k1 group order.

A lot of moving parts in JLPs kangaroo but it is the best on the free market...his program also subtracts the starting range so the actual starting range is always 0; so when a key is solved, it subtracts T-W then adds back original start range. So for 120 bit, it subtracts 800000....effectively reducing search range a full bit to 0 thru 7FFFFF....versus 800000...FFFFFF