Closed TWal closed 3 weeks ago
I've looked through and have no major objections. I am reminded that the encoding as int list
s is quite bulky --- I might see how much work it is to automate that.
I merged main and adapted the printing functions, does it look fine @fabian-hk? If so, I will merge this PR!
The difficulty of implementing KDFs is that HKDF.Extract is (in several protocols) used to mix two secrets together, as a dual-PRF.
I have been looking on how the KDFs are used in TLS 1.3, Signal and MLS, I think the proof interface here would allow to prove these protocols (so hopefully, any other protocol that has reasonable usage of KDFs!)