threshold-elgamal 0.1.0

package/docs/modules.md

@@ -0,0 +1,381 @@
+[threshold-elgamal](README.md) / Exports
+
+# threshold-elgamal
+
+## Table of contents
+
+### Type Aliases
+
+- [EncryptedMessage](modules.md#encryptedmessage)
+- [KeyPair](modules.md#keypair)
+- [Parameters](modules.md#parameters)
+- [PartyKeyPair](modules.md#partykeypair)
+
+### Functions
+
+- [combineDecryptionShares](modules.md#combinedecryptionshares)
+- [combinePublicKeys](modules.md#combinepublickeys)
+- [createDecryptionShare](modules.md#createdecryptionshare)
+- [decrypt](modules.md#decrypt)
+- [encrypt](modules.md#encrypt)
+- [generateKeyShares](modules.md#generatekeyshares)
+- [generateParameters](modules.md#generateparameters)
+- [generateSingleKeyShare](modules.md#generatesinglekeyshare)
+- [getRandomBigIntegerInRange](modules.md#getrandombigintegerinrange)
+- [multiplyEncryptedValues](modules.md#multiplyencryptedvalues)
+- [thresholdDecrypt](modules.md#thresholddecrypt)
+
+## Type Aliases
+
+### EncryptedMessage
+
+Ƭ **EncryptedMessage**: `Object`
+
+#### Type declaration
+
+| Name | Type |
+| :------ | :------ |
+| `c1` | `bigint` |
+| `c2` | `bigint` |
+
+#### Defined in
+
+[types.ts:1](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/types.ts#L1)
+
+___
+
+### KeyPair
+
+Ƭ **KeyPair**: `Object`
+
+#### Type declaration
+
+| Name | Type |
+| :------ | :------ |
+| `privateKey` | `bigint` |
+| `publicKey` | `bigint` |
+
+#### Defined in
+
+[types.ts:13](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/types.ts#L13)
+
+___
+
+### Parameters
+
+Ƭ **Parameters**: `Object`
+
+#### Type declaration
+
+| Name | Type |
+| :------ | :------ |
+| `generator` | `bigint` |
+| `prime` | `bigint` |
+| `privateKey` | `bigint` |
+| `publicKey` | `bigint` |
+
+#### Defined in
+
+[types.ts:6](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/types.ts#L6)
+
+___
+
+### PartyKeyPair
+
+Ƭ **PartyKeyPair**: `Object`
+
+#### Type declaration
+
+| Name | Type |
+| :------ | :------ |
+| `partyPrivateKey` | `bigint` |
+| `partyPublicKey` | `bigint` |
+
+#### Defined in
+
+[types.ts:18](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/types.ts#L18)
+
+## Functions
+
+### combineDecryptionShares
+
+▸ **combineDecryptionShares**(`decryptionShares`, `prime`): `bigint`
+
+Combines partial decryptions from multiple parties into a single decryption factor.
+
+#### Parameters
+
+| Name | Type | Description |
+| :------ | :------ | :------ |
+| `decryptionShares` | `bigint`[] | An array of partial decryption results. |
+| `prime` | `bigint` | The prime modulus used in the ElGamal system. |
+
+#### Returns
+
+`bigint`
+
+The combined decryption factor.
+
+#### Defined in
+
+[thresholdElgamal.ts:129](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/thresholdElgamal.ts#L129)
+
+___
+
+### combinePublicKeys
+
+▸ **combinePublicKeys**(`publicKeys`, `prime`): `bigint`
+
+Combines multiple public keys into a single public key.
+
+#### Parameters
+
+| Name | Type | Description |
+| :------ | :------ | :------ |
+| `publicKeys` | `bigint`[] | An array of public keys to combine. |
+| `prime` | `bigint` | The prime modulus used in the ElGamal system. |
+
+#### Returns
+
+`bigint`
+
+The combined public key.
+
+#### Defined in
+
+[thresholdElgamal.ts:103](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/thresholdElgamal.ts#L103)
+
+___
+
+### createDecryptionShare
+
+▸ **createDecryptionShare**(`encryptedMessage`, `partyPrivateKey`, `prime`): `bigint`
+
+Performs a partial decryption on a ciphertext using an individual's private key share.
+
+#### Parameters
+
+| Name | Type | Description |
+| :------ | :------ | :------ |
+| `encryptedMessage` | [`EncryptedMessage`](modules.md#encryptedmessage) | The encrypted secret. |
+| `partyPrivateKey` | `bigint` | The private key share of the decrypting party. |
+| `prime` | `bigint` | The prime modulus used in the ElGamal system. |
+
+#### Returns
+
+`bigint`
+
+The result of the partial decryption.
+
+#### Defined in
+
+[thresholdElgamal.ts:116](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/thresholdElgamal.ts#L116)
+
+___
+
+### decrypt
+
+▸ **decrypt**(`encryptedMessage`, `prime`, `privateKey`): `number`
+
+Decrypts an ElGamal encrypted secret.
+
+#### Parameters
+
+| Name | Type | Description |
+| :------ | :------ | :------ |
+| `encryptedMessage` | [`EncryptedMessage`](modules.md#encryptedmessage) | - |
+| `prime` | `bigint` | The prime number used in the encryption system. |
+| `privateKey` | `bigint` | The private key used for decryption. |
+
+#### Returns
+
+`number`
+
+The decrypted secret as an integer.
+
+#### Defined in
+
+[elgamal.ts:77](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/elgamal.ts#L77)
+
+___
+
+### encrypt
+
+▸ **encrypt**(`secret`, `prime`, `generator`, `publicKey`): [`EncryptedMessage`](modules.md#encryptedmessage)
+
+Encrypts a secret using ElGamal encryption.
+
+#### Parameters
+
+| Name | Type | Description |
+| :------ | :------ | :------ |
+| `secret` | `number` | The secret to be encrypted. |
+| `prime` | `bigint` | The prime number used in the encryption system. |
+| `generator` | `bigint` | The generator used in the encryption system. |
+| `publicKey` | `bigint` | The public key used for encryption. |
+
+#### Returns
+
+[`EncryptedMessage`](modules.md#encryptedmessage)
+
+The encrypted secret, consisting of two BigIntegers (c1 and c2).
+
+#### Defined in
+
+[elgamal.ts:51](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/elgamal.ts#L51)
+
+___
+
+### generateKeyShares
+
+▸ **generateKeyShares**(`n`, `threshold`, `primeBits?`): [`PartyKeyPair`](modules.md#partykeypair)[]
+
+Generates key shares for a threshold ElGamal cryptosystem.
+
+#### Parameters
+
+| Name | Type | Default value | Description |
+| :------ | :------ | :------ | :------ |
+| `n` | `number` | `undefined` | The total number of key shares. |
+| `threshold` | `number` | `undefined` | The minimum number of key shares required for decryption. |
+| `primeBits` | ``2048`` \| ``3072`` \| ``4096`` | `2048` | The bit length of the prime modulus (default: 2048). |
+
+#### Returns
+
+[`PartyKeyPair`](modules.md#partykeypair)[]
+
+An array of key shares, each containing a private and public key share.
+
+#### Defined in
+
+[thresholdElgamal.ts:83](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/thresholdElgamal.ts#L83)
+
+___
+
+### generateParameters
+
+▸ **generateParameters**(`primeBits?`): [`Parameters`](modules.md#parameters)
+
+Generates the parameters for the ElGamal encryption, including the prime, generator,
+and key pair (public and private keys).
+
+#### Parameters
+
+| Name | Type | Default value | Description |
+| :------ | :------ | :------ | :------ |
+| `primeBits` | ``2048`` \| ``3072`` \| ``4096`` | `2048` | The bit length for the prime number. Supports 2048, 3072, or 4096 bits. |
+
+#### Returns
+
+[`Parameters`](modules.md#parameters)
+
+The generated parameters including the prime, generator, publicKey, and privateKey.
+
+#### Defined in
+
+[elgamal.ts:14](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/elgamal.ts#L14)
+
+___
+
+### generateSingleKeyShare
+
+▸ **generateSingleKeyShare**(`index`, `threshold`, `primeBits?`): [`PartyKeyPair`](modules.md#partykeypair)
+
+Generates a single key share for a participant in a threshold ElGamal cryptosystem.
+
+#### Parameters
+
+| Name | Type | Default value | Description |
+| :------ | :------ | :------ | :------ |
+| `index` | `number` | `undefined` | The unique index of the participant (starting from 1). |
+| `threshold` | `number` | `undefined` | The minimum number of key shares required for decryption. |
+| `primeBits` | ``2048`` \| ``3072`` \| ``4096`` | `2048` | The bit length of the prime modulus (default: 2048). |
+
+#### Returns
+
+[`PartyKeyPair`](modules.md#partykeypair)
+
+The key share containing a private and public key share for the participant.
+
+#### Defined in
+
+[thresholdElgamal.ts:56](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/thresholdElgamal.ts#L56)
+
+___
+
+### getRandomBigIntegerInRange
+
+▸ **getRandomBigIntegerInRange**(`min`, `max`): `bigint`
+
+Generates a random bigint within a specified range.
+
+#### Parameters
+
+| Name | Type | Description |
+| :------ | :------ | :------ |
+| `min` | `bigint` | The minimum value (inclusive). |
+| `max` | `bigint` | The maximum value (exclusive). |
+
+#### Returns
+
+`bigint`
+
+A random bigint within the specified range.
+
+#### Defined in
+
+[utils.ts:11](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/utils.ts#L11)
+
+___
+
+### multiplyEncryptedValues
+
+▸ **multiplyEncryptedValues**(`value1`, `value2`, `prime`): [`EncryptedMessage`](modules.md#encryptedmessage)
+
+Performs homomorphic multiplication on two encrypted values, allowing for encrypted arithmetic operations.
+
+#### Parameters
+
+| Name | Type | Description |
+| :------ | :------ | :------ |
+| `value1` | [`EncryptedMessage`](modules.md#encryptedmessage) | The first encrypted value. |
+| `value2` | [`EncryptedMessage`](modules.md#encryptedmessage) | The second encrypted value. |
+| `prime` | `bigint` | The prime modulus used in the encryption system. |
+
+#### Returns
+
+[`EncryptedMessage`](modules.md#encryptedmessage)
+
+The result of the multiplication, as a new encrypted message.
+
+#### Defined in
+
+[utils.ts:33](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/utils.ts#L33)
+
+___
+
+### thresholdDecrypt
+
+▸ **thresholdDecrypt**(`encryptedMessage`, `combinedDecryptionShares`, `prime`): `number`
+
+Decrypts an encrypted secret using the combined partial decryptions in a threshold ElGamal scheme.
+
+#### Parameters
+
+| Name | Type | Description |
+| :------ | :------ | :------ |
+| `encryptedMessage` | `Object` | The encrypted secret components. |
+| `encryptedMessage.c1` | `bigint` | - |
+| `encryptedMessage.c2` | `bigint` | - |
+| `combinedDecryptionShares` | `bigint` | The combined partial decryptions from all parties. |
+| `prime` | `bigint` | The prime modulus used in the ElGamal system. |
+
+#### Returns
+
+`number`
+
+The decrypted secret, assuming it was small enough to be directly encrypted.
+
+#### Defined in
+
+[thresholdElgamal.ts:148](https://github.com/Tenemo/threshold-elgamal/blob/fc2a22a1ff8f83d6af5a428644410ebc8517f4e1/src/thresholdElgamal.ts#L148)

package/eslint.config.js

@@ -0,0 +1,161 @@
+import path from 'path';
+import { fileURLToPath } from 'url';
+
+// eslint-disable-next-line import/namespace
+import { FlatCompat } from '@eslint/eslintrc';
+import eslintJs from '@eslint/js';
+import errorOnlyPlugin from 'eslint-plugin-only-error';
+import prettierPluginRecommended from 'eslint-plugin-prettier/recommended';
+import globals from 'globals';
+
+const OFF = 0;
+const ERROR = 2;
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+
+const compat = new FlatCompat({
+    baseDirectory: __dirname,
+});
+
+export default [
+    ...compat.config({
+        extends: ['plugin:import/errors', 'plugin:import/warnings'],
+        parser: '@typescript-eslint/parser',
+        parserOptions: {
+            parser: '@typescript-eslint/parser',
+            sourceType: 'module',
+            ecmaFeatures: {
+                jsx: true,
+            },
+            project: './tsconfig.json',
+            ecmaVersion: 2021,
+        },
+        plugins: ['only-error'],
+        settings: {
+            react: {
+                version: 'detect',
+            },
+            'import/resolver': {
+                typescript: {},
+            },
+        },
+    }),
+    prettierPluginRecommended,
+    {
+        files: ['**/*.js', '**/*.jsx', '**/*.ts', '**/*.tsx', '**/*.mjs'],
+        rules: {
+            ...eslintJs.configs.recommended.rules,
+            'arrow-parens': [ERROR, 'always', { requireForBlockBody: false }],
+            'no-restricted-exports': OFF,
+            'no-shadow': OFF, // duplicated by @typescript-eslint/no-shadow
+
+            // @typescript-eslint/eslint-plugin
+            '@typescript-eslint/no-use-before-define': ERROR,
+            '@typescript-eslint/no-shadow': ERROR,
+            '@typescript-eslint/explicit-module-boundary-types': ERROR,
+            '@typescript-eslint/unbound-method': ERROR,
+            '@typescript-eslint/explicit-function-return-type': [
+                ERROR,
+                {
+                    allowExpressions: true,
+                    allowTypedFunctionExpressions: true,
+                },
+            ],
+            '@typescript-eslint/consistent-type-definitions': ['error', 'type'],
+
+            // eslint-plugin-prettier
+            'prettier/prettier': [
+                ERROR,
+                {
+                    useTabs: false,
+                    semi: true,
+                    singleQuote: true,
+                    jsxSingleQuote: false,
+                    trailingComma: 'all',
+                    arrowParens: 'always',
+                    endOfLine: 'lf',
+                },
+            ],
+
+            // eslint-plugin-import
+            'import/no-extraneous-dependencies': [
+                ERROR,
+                { devDependencies: true },
+            ],
+            'import/prefer-default-export': OFF,
+            'import/extensions': [
+                ERROR,
+                'ignorePackages',
+                {
+                    js: 'never',
+                    jsx: 'never',
+                    ts: 'never',
+                    tsx: 'never',
+                },
+            ],
+            'import/order': [
+                'error',
+                {
+                    'newlines-between': 'always',
+                    alphabetize: { order: 'asc', caseInsensitive: true },
+                    pathGroupsExcludedImportTypes: ['builtin'],
+                },
+            ],
+        },
+        plugins: {
+            'only-error': errorOnlyPlugin,
+        },
+        linterOptions: {
+            reportUnusedDisableDirectives: true,
+        },
+        languageOptions: {
+            globals: {
+                ...globals.browser,
+                ...globals.node,
+                ...globals.es2021,
+                ...globals.commonjs,
+            },
+        },
+    },
+    ...compat.config({
+        extends: [
+            'plugin:@typescript-eslint/recommended-requiring-type-checking', // adds @typescript-eslint plugin
+            'plugin:@typescript-eslint/stylistic-type-checked',
+            'plugin:import/typescript',
+        ],
+        overrides: [
+            {
+                files: ['**/*.mjs', '**/*.js', '**/*.jsx', 'eslint.config.mjs'],
+                rules: {
+                    '@typescript-eslint/no-unsafe-assignment': OFF,
+                    '@typescript-eslint/no-unsafe-member-access': OFF,
+                    '@typescript-eslint/no-unsafe-call': OFF,
+                },
+            },
+        ],
+    }),
+    {
+        files: ['**/*.scss.d.ts'],
+        rules: {
+            'prettier/prettier': OFF,
+            '@typescript-eslint/consistent-type-definitions': OFF,
+        },
+    },
+    {
+        files: ['**/*.spec.tsx'],
+        rules: {
+            '@typescript-eslint/ban-ts-comment': OFF,
+            '@typescript-eslint/no-unsafe-return': OFF,
+        },
+    },
+    {
+        ignores: [
+            'node_modules/*',
+            '.tmp/*',
+            'coverage/*',
+            'dist/*',
+            '**/*.html',
+        ],
+    },
+];

package/package.json

@@ -0,0 +1,82 @@
+{
+    "name": "threshold-elgamal",
+    "version": "0.1.0",
+    "author": "Piotr Piech <piotr@piech.dev>",
+    "license": "MIT",
+    "description": "threshold-elgamal",
+    "main": "dist/index.js",
+    "types": "dist/index.d.ts",
+    "repository": {
+        "type": "git",
+        "url": "git+https://github.com/Tenemo/threshold-elgamal.git"
+    },
+    "bugs": {
+        "url": "https://github.com/Tenemo/threshold-elgamal/issues"
+    },
+    "homepage": "https://github.com/Tenemo/threshold-elgamal#readme",
+    "scripts": {
+        "example": "tsx ./example/example",
+        "eslint": "eslint . -c eslint.config.js",
+        "eslint:fix": "eslint . --fix -c eslint.config.js",
+        "tsc": "tsc",
+        "prebuild": "npm run eslint && npm run tsc && npm run test && rimraf dist",
+        "build": "tsc --project tsconfig.build.json",
+        "build:skip": "tsc --project tsconfig.build.json",
+        "test": "vitest --watch=false --reporter=verbose",
+        "test:watch": "vitest --watch=true --reporter=verbose",
+        "pretypedoc": "rimraf docs",
+        "typedoc": "typedoc --plugin typedoc-plugin-markdown src --out docs",
+        "prepublish": "npm run prebuild",
+        "publish": "npm publish"
+    },
+    "engines": {
+        "node": ">=20.11.0"
+    },
+    "type": "module",
+    "devDependencies": {
+        "@eslint/eslintrc": "^3.0.2",
+        "@eslint/js": "^8.57.0",
+        "@types/eslint": "^8.56.7",
+        "@types/eslint-plugin-prettier": "^3.1.3",
+        "@types/node": "^20.12.5",
+        "@types/npm": "^7.19.3",
+        "@types/prettier": "^2.7.3",
+        "@typescript-eslint/eslint-plugin": "^7.5.0",
+        "@typescript-eslint/parser": "^7.5.0",
+        "eslint": "^8.57.0",
+        "eslint-config-prettier": "^9.1.0",
+        "eslint-import-resolver-typescript": "^3.6.1",
+        "eslint-plugin-import": "^2.29.1",
+        "eslint-plugin-only-error": "^1.0.2",
+        "eslint-plugin-prettier": "^5.1.3",
+        "globals": "^15.0.0",
+        "prettier": "^3.2.5",
+        "prettier-eslint": "^16.3.0",
+        "rimraf": "^5.0.5",
+        "tsx": "^4.7.2",
+        "typedoc": "^0.25.13",
+        "typedoc-plugin-markdown": "^3.17.1",
+        "typescript": "^5.4.4",
+        "vitest": "^1.4.0"
+    },
+    "dependencies": {
+        "bigint-mod-arith": "^3.3.1",
+        "random-bigint": "^0.0.1"
+    },
+    "keywords": [
+        "cryptography",
+        "security",
+        "encryption",
+        "elgamal",
+        "threshold-encryption",
+        "public-key-encryption",
+        "cryptographic-algorithm",
+        "distributed-cryptography",
+        "secure-communication",
+        "typescript-cryptography",
+        "data-protection",
+        "privacy",
+        "key-management",
+        "secret-sharing"
+    ]
+}

package/src/constants.ts

@@ -0,0 +1,44 @@
+/*
+ The GROUPS object defines cryptographic parameters for different levels
+ of finite field Diffie-Hellman (FFDHE) key exchanges.
+ 
+ The parameters are standardized in RFC 7919 to ensure security,
+ interoperability, and a balance between computational efficiency
+ and resistance against cryptographic attacks.
+ 
+ Each subgroup (ffdhe2048, ffdhe3072, ffdhe4096) corresponds to a security
+ level, with larger primes offering stronger security but requiring more processing power.
+
+ Reference: https://datatracker.ietf.org/doc/rfc7919/
+ */
+export const GROUPS = {
+    // Parameters for 2048-bit prime modulus group
+    ffdhe2048: {
+        primeBits: 2048, // Size of the prime in bits, default security level suitable for current applications
+        prime: 32317006071311007300153513477825163362488057133489075174588434139269806834136210002792056362640164685458556357935330816928829023080573472625273554742461245741026202527916572972862706300325263428213145766931414223654220941111348629991657478268034230553086349050635557712219187890332729569696129743856241741236237225197346402691855797767976823014625397933058015226858730761197532436467475855460715043896844940366130497697812854295958659597567051283852132784468522925504568272879113720098931873959143374175837826000278034973198552060607533234122603254684088120031105907484281003994966956119696956248629032338072839127039n,
+        generator: 2n, // A small, primitive root modulo prime, used to generate public keys
+        // Same as `prime` in this context, used for modulo operations in encryption/decryption
+        modulus:
+            16158503035655503650076756738912581681244028566744537587294217069634903417068105001396028181320082342729278178967665408464414511540286736312636777371230622870513101263958286486431353150162631714106572883465707111827110470555674314995828739134017115276543174525317778856109593945166364784848064871928120870618118612598673201345927898883988411507312698966529007613429365380598766218233737927730357521948422470183065248848906427147979329798783525641926066392234261462752284136439556860049465936979571687087918913000139017486599276030303766617061301627342044060015552953742140501997483478059848478124314516169036419563519n,
+        symmetricEquivalentBitsSecurity: 103, // The estimated security level equivalent to symmetric key cryptography
+    },
+    // Parameters for 3072-bit prime modulus group
+    ffdhe3072: {
+        primeBits: 3072, // Provides higher security/complexity level
+        prime: 5809605995369958062758586654274580047791722104970656507438869740087793294939022179753100900150316602414836960597893531254315756065700170507943025794723871619068282822579148207659984331724286057133800207014820356957933334364535176201393094406964280368146360322417397201921556656310696298417414318434929392806928868314831784332237038568260988712237196665742900353512788403877776568945491183287529096888884348887176901995757588549340219807606149955056871781046117195453427070254533858964729101754281121787330325506574928503501334937579191349178901801866451262831560570379780282604068262795024384318599710948857446185134652829941527736472860172354516733867877780829051346167153594329592339252295871976889069885964128038593002336846153522149026229984394781638501125312676451837144945451331832522946684620954184360294871798125320434686136230055213248587935623124338652624786221871129902570119964134282018641257113252046271726747647n,
+        generator: 2n,
+        modulus:
+            2904802997684979031379293327137290023895861052485328253719434870043896647469511089876550450075158301207418480298946765627157878032850085253971512897361935809534141411289574103829992165862143028566900103507410178478966667182267588100696547203482140184073180161208698600960778328155348149208707159217464696403464434157415892166118519284130494356118598332871450176756394201938888284472745591643764548444442174443588450997878794274670109903803074977528435890523058597726713535127266929482364550877140560893665162753287464251750667468789595674589450900933225631415780285189890141302034131397512192159299855474428723092567326414970763868236430086177258366933938890414525673083576797164796169626147935988444534942982064019296501168423076761074513114992197390819250562656338225918572472725665916261473342310477092180147435899062660217343068115027606624293967811562169326312393110935564951285059982067141009320628556626023135863373823n,
+
+        symmetricEquivalentBitsSecurity: 125,
+    },
+    // Parameters for 4096-bit prime modulus group
+    ffdhe4096: {
+        primeBits: 4096, // High security/complexity level
+        prime: 1044388881413152506673611132423542708364181673367771525125030890756881099188024532056304793061869328458723091803972939229793654985168401497491717574483844225116618212565649899896238061528255690984013755361148305106047581812557457571303413897964307070369153233034916545609049161117676542252417034306148432734874401682098205055813065377495410934435776008569464677021023433005437163880753068613673525551966829473007537177831003494630326494021352410947409155250518131329542947165352164089215019548909074312164647627938366550236314760864116934087960021077839688388383033906117940935023026686459274599124189299486771919466921436930468113859003854695674493896608503326776616230412252016237753188005160515672431703429026925450722225213972891936880551722374424500117253400391608019951133386097176734162660461073160502839490488652900367939577292447038637156268014222959401811270825513710710113193757653852931049810187522670964988718456427706279024201400130351029277257873323362974483425793829163819060563081096261611614988801585554385004830748976181157545121697905898543562330970182151097394600286811868072516047394404389555706298311761588649133904051123770516767707951778179308436153604841663369568605395358405635911568855382987714763476172799n,
+        generator: 2n,
+        modulus:
+            522194440706576253336805566211771354182090836683885762562515445378440549594012266028152396530934664229361545901986469614896827492584200748745858787241922112558309106282824949948119030764127845492006877680574152553023790906278728785651706948982153535184576616517458272804524580558838271126208517153074216367437200841049102527906532688747705467217888004284732338510511716502718581940376534306836762775983414736503768588915501747315163247010676205473704577625259065664771473582676082044607509774454537156082323813969183275118157380432058467043980010538919844194191516953058970467511513343229637299562094649743385959733460718465234056929501927347837246948304251663388308115206126008118876594002580257836215851714513462725361112606986445968440275861187212250058626700195804009975566693048588367081330230536580251419745244326450183969788646223519318578134007111479700905635412756855355056596878826926465524905093761335482494359228213853139512100700065175514638628936661681487241712896914581909530281540548130805807494400792777192502415374488090578772560848952949271781165485091075548697300143405934036258023697202194777853149155880794324566952025561885258383853975889089654218076802420831684784302697679202817955784427691493857381738086399n,
+        symmetricEquivalentBitsSecurity: 150,
+    },
+} as const;