[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[lsd0001] branch master updated: minor considerations

From: gnunet
Subject: [lsd0001] branch master updated: minor considerations
Date: Tue, 06 Oct 2020 14:05:11 +0200

This is an automated email from the git hooks/post-receive script.

martin-schanzenbach pushed a commit to branch master
in repository lsd0001.

The following commit(s) were added to refs/heads/master by this push:
     new e90cb11  minor considerations
e90cb11 is described below

commit e90cb113eb1e3550497dc214fb459fd4441e520f
Author: Martin Schanzenbach <>
AuthorDate: Tue Oct 6 13:58:16 2020 +0200

    minor considerations
 draft-schanzen-gns.xml | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml
index 0141940..de1af5b 100644
--- a/draft-schanzen-gns.xml
+++ b/draft-schanzen-gns.xml
@@ -679,7 +679,13 @@ PRK_h := HKDF-Extract ("key-derivation", zk)
 h := HKDF-Expand (PRK_h, label | "gns", 512 / 8)
 h[31] &= 7  // Implies h mod L == h
 zk’ := h * zk
-         ]]></artwork>
+           ]]></artwork>
+         <t>
+           We note that implementors must employ a constant time scalar
+           multiplication for the constructions above. Also, implementors
+           must ensure that the private key "a" is an ed25519 private key
+           and specifically that "a[0] &#38; 7 == 0" holds.
+         </t>
            The EDKEY cryptosystem uses a
            hash-based key derivation function (HKDF) as defined in
@@ -698,7 +704,8 @@ zk’ := h * zk
            We point out that the multiplication of "zk" with "h" is a point 
-           while the multiplication of "a" with "h" is a scalar multiplication.
+           while the division and multiplication of "a" and "a1" with the
+           cofactor are integer operations.
            Signatures for EDKEY zones using the derived private key "a'"

To stop receiving notification emails like this one, please contact

reply via email to

[Prev in Thread] Current Thread [Next in Thread]