The math module of upb.crypto mainly implements elliptic curve groups with pairings including the supersingular curve with Tate pairing and Barreto-Naehrig curves. These groups form the base of many cryptographic constructions.
Moreover, it implements other mathematical basics used in cryptographic constructions like polynomial rings, finite fields, etc.

The craco (CRyptogrAphic COnstructions) module of upb.crypto started out as a library for attribute-based access control and evolved into a library providing implementations of numerous cryptographic constructions, many of which form the basis of more complex schemes.
Craco provides (among others) attribute-based encryption (ABE), identity-based encryption, signature schemes, commitment schemes, secret sharing schemes, and cryptographic accumulators.

Craco has been developed during the first phase of the SFB 901 and has been steadily updated with new functionality since then.

The protocols module of upb.crypto gathers all kind of (non-)interactive cryptographic protocols. Its focus is on zero-knowledge proof of knowledge protocols, in particular sigma protocols.
This currently includes an implementation of the (generalized) Schnorr protocol as well as several advanced Schnorr-style "proof of knowledge of exponent" protocols (range proofs, set membership proofs, etc.) and standard transformations (the Fiat-Shamir heuristic and Damgård's technique).