Open bisgardo opened 4 months ago
Apple's CryptoKit implementation of Ed25519 (Curve25519.Signing) does not produce deterministic signatures.
Curve25519.Signing
There has been some concern internally about whether or not this is a problem.
Alternatives to consider:
swift-crypto
CryptoSwift
This should be fine. The non-determinism is likely to protect against fault-attacks. See https://www.ietf.org/id/draft-irtf-cfrg-det-sigs-with-noise-03.html for more details on this type of "hedged" signatures.
Apple's CryptoKit implementation of Ed25519 (
Curve25519.Signing
) does not produce deterministic signatures.There has been some concern internally about whether or not this is a problem.
Alternatives to consider:
swift-crypto
- official Apple library, open sourceCryptoSwift
- unofficial but very popular, open source