zk-nullifier-sig
zk-nullifier-sig copied to clipboard
plume-sig
Implementation of PLUME: nullifier friendly signature scheme on ECDSA
Variant should be joint/embedded with `struct PlumeSignature` (aka `Signature`) to avoid failing verifications when with a correct signature instance a wrong variant indicator being input.
It's yet named `SecretKey`, oncoming PR renames it to not give false impression of security. here `arkworks` should be checked for proper methods for keys handling at least `zeroize` should...
There's substantial [number of different improvements](https://github.com/arkworks-rs/algebra/blob/master/CHANGELOG.md#breaking-changes-3) since "0.3.0" which is used now. I guess it'd not only generally improve execution, but also might enable simplification of some current helpers introduced...
I didn't check, but it seems to me that cases when `c` is zero, or EC points are at infinity aren't covered by tests, and in couple of recent PRs...
I am recently reading into the PLUME design and the use of Geometry's map. Note that Geometry's map was designed for a different purpose. If we target at making a...
I'm not sure if this is the right repo for this issue, but in the demo app (https://ethbogota-2022.netlify.app/) I see the following error when trying to connect Metamask Flask. "The...
It's important to have consistency across these impls. A few examples: - sha256 in js, circom vs sha512 in rust. - `c` is returned as a plain number in js,...
Just to add, there is a quick way to prove the PLUME security, in case anyone asks. This is the GDH undeniable signature with the confirmation protocol replaced with NIZK,...
perhaps non trivial :stuck_out_tongue_winking_eye:
