unpopular opinion: maybe people should stop designing protocols on top of Curve25519. We've got many people fighting against point validation, and on the other hand we have complex protocols that end up being vulnerable if they don't do it. CPace fortunately specifies it
-
Show this thread
Replying to @cryptodavidw
Existing implementations all use Ristretto. And CPace’s author is going to consider it for the next revision of the draft https://mailarchive.ietf.org/arch/msg/cfrg/jwV8c0BWwXdhQkPRB7yRz_zFmAg/ …
4:29 PM - 25 May 2020
from Saint-Mandé, France
0 replies
0 retweets
3 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.