zec
/
zips
mirror of https://github.com/zcash/zips.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

SHA fixup

This commit is contained in:
Daira Hopwood 2018-02-24 02:08:14 +00:00
parent bf9bd313a2
commit 59331fca67
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
protocol/protocol.tex
View File

@ -3833,7 +3833,7 @@ $n = 200$).
\nsubsubsection{\PseudoRandomFunctions} \label{concreteprfs} \nsubsubsection{\PseudoRandomFunctions} \label{concreteprfs}
The \changed{four} independent PRFs described in \crossref{abstractprfs} are The \changed{four} independent PRFs described in \crossref{abstractprfs} are
all instantiated using the $\shaCompress$ function: all instantiated using the \shaCompressFunction defined in \crossref{concretesha256}:
\newcommand{\iminusone}{\hspace{0.3pt}\scriptsize{$i$\hspace{0.6pt}-1}} \newcommand{\iminusone}{\hspace{0.3pt}\scriptsize{$i$\hspace{0.6pt}-1}}
@ -4144,8 +4144,8 @@ The leading byte of the $\SHAFull$ input is $\hexint{B0}$.
} }
\begin{securityrequirements} \begin{securityrequirements}
\item The $\shaCompress$ function must be collision-resistant. \item The \shaCompressFunction must be collision-resistant.
\item The $\shaCompress$ function must be a PRF when keyed by the bits corresponding \item The \shaCompressFunction must be a PRF when keyed by the bits corresponding
to the position of $\NoteCommitRand$ in the second block of $\SHAFull$ to the position of $\NoteCommitRand$ in the second block of $\SHAFull$
input, with input to the PRF in the remaining bits of the block and input, with input to the PRF in the remaining bits of the block and
the chaining variable. the chaining variable.