armfazh
commented
4 years ago Originally posted by @chris-wood in https://github.com/cfrg/draft-irtf-cfrg-voprf/pull/78
Should we unify around DST instead of aux?
Closed armfazh closed 4 years ago
armfazh
commented
4 years ago Originally posted by @chris-wood in https://github.com/cfrg/draft-irtf-cfrg-voprf/pull/78
Should we unify around DST instead of aux?
alxdavids
commented
4 years ago I think we need multiple DSTs. One for the DLEQ proof generation, and then aux. However, I think capturing all DST usages under a specific set of guidelines makes sense. The only difference is that Finalize depends on client properties, where as the DLEQ DST should probably be fixed (to something VOPRF ciphersuite-specific) so that the client & server are in agreement.
alxdavids
commented
4 years ago Assigning to @chris-wood to do as it is related to #89
alxdavids
commented
4 years ago Done: #102
If the only purpose of
auxadditional info is to provide domain separation, then this can be re-engineered and unified together with the other hash functions. Related #79