[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[lsd0001] branch master updated: minor considerations
From: |
gnunet |
Subject: |
[lsd0001] branch master updated: minor considerations |
Date: |
Tue, 06 Oct 2020 14:05:11 +0200 |
This is an automated email from the git hooks/post-receive script.
martin-schanzenbach pushed a commit to branch master
in repository lsd0001.
The following commit(s) were added to refs/heads/master by this push:
new e90cb11 minor considerations
e90cb11 is described below
commit e90cb113eb1e3550497dc214fb459fd4441e520f
Author: Martin Schanzenbach <mschanzenbach@posteo.de>
AuthorDate: Tue Oct 6 13:58:16 2020 +0200
minor considerations
---
draft-schanzen-gns.xml | 11 +++++++++--
1 file changed, 9 insertions(+), 2 deletions(-)
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml
index 0141940..de1af5b 100644
--- a/draft-schanzen-gns.xml
+++ b/draft-schanzen-gns.xml
@@ -679,7 +679,13 @@ PRK_h := HKDF-Extract ("key-derivation", zk)
h := HKDF-Expand (PRK_h, label | "gns", 512 / 8)
h[31] &= 7 // Implies h mod L == h
zk’ := h * zk
- ]]></artwork>
+ ]]></artwork>
+ <t>
+ We note that implementors must employ a constant time scalar
+ multiplication for the constructions above. Also, implementors
+ must ensure that the private key "a" is an ed25519 private key
+ and specifically that "a[0] & 7 == 0" holds.
+ </t>
<t>
The EDKEY cryptosystem uses a
hash-based key derivation function (HKDF) as defined in
@@ -698,7 +704,8 @@ zk’ := h * zk
</t>
<t>
We point out that the multiplication of "zk" with "h" is a point
multiplication,
- while the multiplication of "a" with "h" is a scalar multiplication.
+ while the division and multiplication of "a" and "a1" with the
+ cofactor are integer operations.
</t>
<t>
Signatures for EDKEY zones using the derived private key "a'"
--
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- [lsd0001] branch master updated: minor considerations,
gnunet <=