Is this implementation of Curve25519 formulated in such a way (and are its inputs "sanity checked") as to negate the attacks defined by Samuel Neves and Mehdi Tibouchi?
I'm using your implementation of NaCl in an implementation of miniLock, and am curious.
https://eprint.iacr.org/2015/1233.pdf
Is this implementation of Curve25519 formulated in such a way (and are its inputs "sanity checked") as to negate the attacks defined by Samuel Neves and Mehdi Tibouchi?
I'm using your implementation of NaCl in an implementation of miniLock, and am curious.
SparkDustJoe/miniLockManaged