-
https://github.com/Cyan4973/xxHash - not a cryptographic hash fn, not for HMAC! So, maybe we could use it as a crc32 replacement (if we keep the crc32(header+all_data) approach). **borg uses xxh64 at …
-
As far as I can tell, KangarooTwelve is not compatible with the CFRG draft version: https://datatracker.ietf.org/doc/draft-irtf-cfrg-kangarootwelve/
Am I correct? If so: The draft has reached RG la…
-
There is a request to support SPAKE2+ in the Crypto API. This will require additions and changes to the PAKE extension API (currently beta), as SPAKE2+ is quite different in operation to EC J_PAKE.
…
-
This depends on variable `VERSION` in the base draft: https://datatracker.ietf.org/doc/html/draft-irtf-cfrg-vdaf-08#section-6.2.3-4
Is this intended? We probably should avoid this dependency.
-
The specification should clearly state that BBS+ is the cryptography being used. I've been exchanging emails with someone that was concerned that we were using BBS and not BBS+. I started to tell them…
-
We need an API to generate Field elements from the Transcript.
We have this methods:
* `pub fn transcript_to_field(transcript: &mut Transcript) -> FE`
* `fn transcript_to_usize(transcript: &m…
-
[draft-irtf-cfrg-hash-to-curve](https://datatracker.ietf.org/doc/rfc9380/) was added in 3.0.0 and was now finalized as RFC 9380. We should review the differences and update the implementation accordin…
-
While looking at #258, I was considering how one might implement the Prio2 or Prio3CountVec AFE while using Prio3 without joint randomness. No joint randomness means we can't use random linear combina…
-
## Problem statement
Issue #183 discusses the tradeoff between the anti-replay requirements in the collect sub-protocol and flexibility. In particular, ekr articulates a desire to enable cross tabu…
-
- name of spec to be reviewed: BBS Cryptosuite v2023 Securing Verifiable Credentials with Selective Disclosure
using BBS Signatures
- URL of spec: https://www.w3.org/TR/vc-di-bbs/#introduction
- …