zcash-hackworks
/
bitcore-lib-zcash
mirror of https://github.com/zcash-hackworks/bitcore-lib-zcash.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
bitcore-lib-zcash/lib/common
History
Ryan X. Charles 9f9e2f1d41 k should be 32 bytes, not 8 bytes 
This is a bug with security implications. It is much easier to guess the value
of k within a 64 byte range. This would lead to compromised private keys.

The cryptography interface of bitcore is extremely poor. I recommend:
* Get rid of the C++ code, since it makes everything more difficult with little benefit
* Refactor all crypto, and have easily auditable bignum, point, ecdsa, and key classes
* Then actually audit the crypto
 		2014-08-10 21:25:52 -04:00
..
ECIES.js cleanup after removal of soop 2014-07-12 12:14:56 +02:00
Key.js k should be 32 bytes, not 8 bytes 2014-08-10 21:25:52 -04:00
PayPro.js paypro: expose RootCerts on PayPro. 2014-07-29 10:58:35 -07:00
Point.js add proper DER signature support to Key 2014-07-17 13:09:35 -07:00
RootCerts.js root-certs: use hasOwnProperty check instead of __proto__=null. 2014-07-25 10:53:21 -07:00
SecureRandom.js cleanup after removal of soop 2014-07-12 12:14:56 +02:00