There is an IETF standard for FROST which makes several relevant security suggestions. In particular to nonces, it hashes the random bytes to include an extra layer of security (here). However, in this library the nonce (e, d) is computed from two random bytestrings extracted from the EC wrapper (Scalar::random(rng) where rng represents OsRng) .
There is an IETF standard for FROST which makes several relevant security suggestions. In particular to nonces, it hashes the random bytes to include an extra layer of security (here). However, in this library the nonce
(e, d)
is computed from two random bytestrings extracted from the EC wrapper (Scalar::random(rng) where rng represents OsRng) .