Order points in hash and update 1 to Identity_GT

decentralized-identity / bbs-signature

The BBS Signature Scheme

https://identity.foundation/bbs-signature/draft-irtf-cfrg-bbs-signatures.html

Apache License 2.0

78 stars 26 forks source link

Order points in hash and update 1 to Identity_GT #182

Closed alessandroguggino closed 2 years ago

alessandroguggino commented 2 years ago

Fixes #173 by @dev0x1. Now the challenge hashes c and cv in ProofGen and ProofVerify are computed as hash_to_scalar((PK || A' || Abar || D || C1 || C2 || ph), 1), to keep the ordering of the proof.

The other minor fix is to follow the new notation introduced in #175 and use Identity_GT instead of 1 in Verify.

BasileiosKal commented 2 years ago

Multiple approvals, editorial update, merging! Thanks @alessandroguggino!!