diff --git a/High‐assurance-field-inversion-for-curve‐based-cryptography.md b/High‐assurance-field-inversion-for-curve‐based-cryptography.md
new file mode 100644
index 0000000..cc69fb8
--- /dev/null
+++ b/High‐assurance-field-inversion-for-curve‐based-cryptography.md
@@ -0,0 +1,7 @@
+# Reference
+- [High-assurance field inversion for curve-based cryptography](https://eprint.iacr.org/2021/549.pdf)
+- [Fast constant-time gcd and modular inversion](https://gcd.cr.yp.to/papers.html#safegcd)
+- [The safegcd implementation in libsecp256k1 explained](https://github.com/bitcoin-core/secp256k1/blob/master/doc/safegcd_implementation.md)
+- [Use field-element code generated by fiat-crypto to implement ecdsa with curve secp256r1](https://www.nightmare.com/rushing/irken/p256/p256_ec.c)
+- https://github.com/mirage/mirage-crypto/blob/main/ec/implementation.mld
+- https://github.com/mirage/mirage-crypto/blob/main/ec/native/inversion_template.h
\ No newline at end of file