mirror of https://github.com/zcash/zips.git
Protocol spec: cosmetics.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
This commit is contained in:
parent
a593018417
commit
32cb319cc7
|
@ -7164,7 +7164,7 @@ but this does not result in any practical security weakness as long as the secur
|
||||||
of ZIP-32 are followed. If $\RedDSA$ is reused in other protocols making use of these additive
|
of ZIP-32 are followed. If $\RedDSA$ is reused in other protocols making use of these additive
|
||||||
properties, careful analysis of potential interactions is required.}
|
properties, careful analysis of potential interactions is required.}
|
||||||
|
|
||||||
\vspace{3ex}
|
\vspace{1ex}
|
||||||
\introlist
|
\introlist
|
||||||
The two abelian groups specified in \crossref{abstractsigmono} are instantiated for $\RedDSA$
|
The two abelian groups specified in \crossref{abstractsigmono} are instantiated for $\RedDSA$
|
||||||
as follows:
|
as follows:
|
||||||
|
@ -7189,7 +7189,7 @@ As required, $\RedDSADerivePublic$ is a group monomorphism, since it is injectiv
|
||||||
A $\RedDSA$ \publicKey $\vk$ can be encoded as a bit sequence $\reprG{}\Of{\vk}$\, of
|
A $\RedDSA$ \publicKey $\vk$ can be encoded as a bit sequence $\reprG{}\Of{\vk}$\, of
|
||||||
length $\ellG{}$ bits (or as a corresponding byte sequence $\vkBytes{}$ by then applying $\LEBStoOSP{\ellG{}}$).
|
length $\ellG{}$ bits (or as a corresponding byte sequence $\vkBytes{}$ by then applying $\LEBStoOSP{\ellG{}}$).
|
||||||
|
|
||||||
\vspace{2ex}
|
\vspace{1ex}
|
||||||
\introlist
|
\introlist
|
||||||
The scheme $\RedJubjub$ specializes $\RedDSA$ with:
|
The scheme $\RedJubjub$ specializes $\RedDSA$ with:
|
||||||
\begin{itemize}
|
\begin{itemize}
|
||||||
|
@ -7213,7 +7213,7 @@ Define $\AuthSignBase := \FindGroupJHash\Of{\ascii{Zcash\_G\_}, \ascii{}}$.
|
||||||
The \defining{\spendAuthSignatureScheme}, $\SpendAuthSig$, is instantiated as $\RedJubjub$
|
The \defining{\spendAuthSignatureScheme}, $\SpendAuthSig$, is instantiated as $\RedJubjub$
|
||||||
with key re-randomization, and with generator $\GenG{} = \AuthSignBase$.
|
with key re-randomization, and with generator $\GenG{} = \AuthSignBase$.
|
||||||
|
|
||||||
\vspace{2ex}
|
\vspace{1ex}
|
||||||
See \crossref{spendauthsig} for details on the use of this \signatureScheme.
|
See \crossref{spendauthsig} for details on the use of this \signatureScheme.
|
||||||
|
|
||||||
\securityrequirement{
|
\securityrequirement{
|
||||||
|
@ -7233,7 +7233,7 @@ Let $\ValueCommitRandBase$ be the randomness base defined in \crossref{concretev
|
||||||
The \defining{\bindingSignatureScheme}, $\BindingSig$, is instantiated as $\RedJubjub$ without
|
The \defining{\bindingSignatureScheme}, $\BindingSig$, is instantiated as $\RedJubjub$ without
|
||||||
use of key re-randomization, and with generator $\GenG{} = \ValueCommitRandBase$.
|
use of key re-randomization, and with generator $\GenG{} = \ValueCommitRandBase$.
|
||||||
|
|
||||||
\vspace{2ex}
|
\vspace{1ex}
|
||||||
See \crossref{bindingsig} for details on the use of this \signatureScheme.
|
See \crossref{bindingsig} for details on the use of this \signatureScheme.
|
||||||
|
|
||||||
\securityrequirement{
|
\securityrequirement{
|
||||||
|
@ -8600,6 +8600,7 @@ This value is used in the definition of $\GroupJHash{}$ in \crossref{concretegro
|
||||||
and in the multi-party computation to obtain the \Sapling parameters given in
|
and in the multi-party computation to obtain the \Sapling parameters given in
|
||||||
\crossref{grothparameters}.
|
\crossref{grothparameters}.
|
||||||
|
|
||||||
|
\introlist
|
||||||
It is derived as described in \cite{Bowe2018}:
|
It is derived as described in \cite{Bowe2018}:
|
||||||
|
|
||||||
\begin{itemize}
|
\begin{itemize}
|
||||||
|
|
Loading…
Reference in New Issue