The hash function WriteAny does not build domain separation properly and collisions can be easily built. It can allow to make an honest participant look like a culprit during the key generation.
Recommendation
Use a hash function with proper domain separation and add the previous test in the test set.
Audit: KS-SBCF-F-05
Location: protocols/cmp/keygen/round3.go:154
Description
The hash function WriteAny does not build domain separation properly and collisions can be easily built. It can allow to make an honest participant look like a culprit during the key generation.
Recommendation
Use a hash function with proper domain separation and add the previous test in the test set.