Open pschuermann97 opened 3 years ago
@JanBobolz is this covered by using TLS and thus having an authenticated connection?
No, this proof is to force the provider to generate keys honestly (in some sense), not to make sure that the key is being transmitted correctly.
It should not become part of Issue/Join. Rather, I'd recommend adding a Fiat-Shamir proof to the provider public key.
We omitted the ZKP of the well-formedness of the provider public key in the beginning of the Issue-Join protocol for now. We should add it later (where to do so will be discusseed on May 21, 2021)