-
https://drand.love/developer/http-api/#public-latest
https://api.drand.sh/public/latest
```
round | 162810
randomness | "646c742faded02ebeb15fcb1c34314ed566381df59b90b28ba5af8b12b959c2d"
sign…
-
Although we have drifted away from the [original FROST protocol](https://eprint.iacr.org/2020/852), we may want to get closer to the FROST Internet Draft developed at https://github.com/cfrg/draft-irt…
-
Implement XChaCha20-Poly1305 using the IETF construction only, as done here.
This is blocked on us finding (or writing) a clear security analysis of the XChaCha20-Poly1305 construct. In particular,…
-
-
Right now, we have only one authenticated block cipher mode of operation (GCM). Redundancy in security primitives is highly important for a few reasons.
OCB is on par with GCM in security level, an…
-
Is there any interest/avenue for implementing signature aggregation?
-
Compatibility between bls12-381 libraries might be useful. For example, etherum2, zcash, chia.net, algorand, dfinity are all using or plan to use bls12-381.
There's a simple single-key signature ve…
-
Nimrod Aviram said:
> The construction relies on Keccak behaving like a random oracle.
As Joan and Gilles have pointed out, this is a modelling choice, not something that can be proven.
This is a…
-
Thank you for your work on this library.
I was wondering if there are any plans to implement hashing to curve G2. Right now, I see the implementation for hashing to curve G1.
-
https://github.com/openpgpjs/noble-curves/commit/559e53c4293d9f858e2fa74502c1c37fba6a90b5
@larabr a pr would be highly appreciated!