zec
/
orchard
mirror of https://github.com/zcash/orchard.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

book: Refine types on Commitments page 

Co-authored-by: Daira Hopwood <daira@jacaranda.org>
This commit is contained in:
str4d 2021-05-21 21:23:08 +01:00 committed by GitHub
parent 4423b50788
commit 9585c67ed2
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
book/src/design/commitments.md
View File

@ -32,6 +32,6 @@ Note that for $\mathsf{ivk}$, we also deviate from Sapling in two ways:
Sapling, we relied on BLAKE2s to make $\mathsf{ivk} = 0$ infeasible to produce, but it was still
technically possible. For Orchard, we get this by construction:
- $0$ is not a valid x-coordinate for any Pallas point.
- $\mathit{ShortCommit}$ internally maps points to field elements by replacing the identity (which
has no affine coordinates) with $0$. But Sinsemilla is defined using incomplete addition, and
- $\mathsf{SinsemillaShortCommit}$ internally maps points to field elements by replacing the identity (which
has no affine coordinates) with $0$. But $\mathsf{SinsemillaCommit}$ is defined using incomplete addition, and
thus will never produce the identity.