Daira Hopwood
42954ecdac
Fill in more sections of "Differences from Zerocash".
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-13 01:23:04 +00:00
Daira Hopwood
3d04c384f1
Add Nathan Wilcox to authors.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-09 00:40:08 +00:00
Daira Hopwood
1b1e1f8456
Add lead byte to KDF input.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 21:08:14 +00:00
Daira Hopwood
95e6fc42cd
Seriously, LaTeX, this paragraph is just fine.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 21:06:23 +00:00
Daira Hopwood
a8ff6110e6
Adjust list spacing. (I'm picky about things like that.)
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 21:05:45 +00:00
Daira Hopwood
e15a4fc0a4
Clarify that the nonce to AEAD_CHACHA20_POLY1305 is 96 bits, and the key 256 bits.
...
fixes zips/#19
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 17:00:31 +00:00
Daira Hopwood
c57d295a38
Fix definitions of a_vk and a_pk in Pour statement. fixes zips#18
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 16:52:15 +00:00
Daira Hopwood
64c91164ab
Descriptions of scriptSig and scriptPubKey were the wrong way round. fixes zips#17
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 04:53:02 +00:00
Daira Hopwood
2fac159404
Fix index error in computation of hSig.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 04:38:51 +00:00
Daira Hopwood
26df1df754
Define some convenience macros to shorten 1..N^{old,new}.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 04:36:29 +00:00
Daira Hopwood
9bbae8ce2a
Makefile: avoid error if protocol.aux doesn't exist.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 04:15:27 +00:00
Daira Hopwood
a1b1cd62c3
Notation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 03:38:00 +00:00
Daira Hopwood
6d25c4beb2
Be more precise about the specification of Curve25519 functions.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-06 23:26:40 +00:00
Daira Hopwood
a9da411767
Rearrange domain separation to make room for greater pour arities, and
...
state explicitly the domain separation convention for uses of the full hash.
Also bump the draft number.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-06 22:21:48 +00:00
Daira Hopwood
39e5992e60
Clarify endianness.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-06 22:19:12 +00:00
Daira Hopwood
608c0dbcb0
Fix potential attacks due to unclamped esk provided to a viewing key holder.
...
(The other change from epk to epk* in the KDF input is just for clarity,
since we check that epk* = epk.)
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-06 10:34:34 +00:00
Daira Hopwood
acf7cabe39
More PDF niceties.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 21:45:11 +00:00
Daira Hopwood
5e14841dce
Make hyperref links go to the top of the page to avoid having to scroll up.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 21:28:15 +00:00
Daira Hopwood
9069509095
Generate PDF index.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 21:12:38 +00:00
Daira Hopwood
c8e8846a53
More cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 21:05:06 +00:00
Daira Hopwood
06e747ed1f
Suppress spurious overfull hbox warnings; other cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 21:02:46 +00:00
Daira Hopwood
96f8c869f2
Fancy linking of cross-references and URLs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 20:20:11 +00:00
Daira Hopwood
63b7fa7f1a
Move the specification of how a coin plaintext is encoded.
...
This avoids the implication that we intend it to be Base85Check-encoded,
and makes the statement about prefix-freedom true again.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 18:37:40 +00:00
Daira Hopwood
661e894907
Remove version byte in coin plaintext.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 18:19:33 +00:00
Daira Hopwood
b0f06c6589
Correct a misstatement in the 'Decryption by a Viewing Key Holder' section.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-04 00:29:30 +00:00
Daira Hopwood
b6f8ab3f9b
Formatting; fix key derivation diagram.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-03 18:51:33 +00:00
Daira Hopwood
70dede1507
Unified spec with or without viewing keys.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-03 18:43:10 +00:00
Daira Hopwood
605d6ef5b1
Cosmetics.
2016-03-03 15:25:25 +00:00
Daira Hopwood
1875e0d389
Fix size of r in Coin Plaintexts section.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-03 15:25:15 +00:00
Daira Hopwood
b2ef4732af
Don't mention s in Coins section; it's confusing given that COMM^s no longer exists.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-03 15:24:45 +00:00
Daira Hopwood
d3b2bfe5fb
Improve presentation of decryption by viewing key holder; define \bot.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-03 14:01:39 +00:00
Daira Hopwood
9ad8d7ee50
Improve presentation of P^disclose, fix a use-before-definition,
...
and correct an N^new -> N^old.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-03 14:00:52 +00:00
Daira Hopwood
e634b9ceb1
Viewing key optimizations.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-02 16:09:52 +00:00
Daira Hopwood
d3b0cfd649
Correct confusion between N^new and N^old in decryption by a viewing key holder,
...
and add a clarification about a viewing key holder acting as a recipient.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-02 15:29:37 +00:00
Daira Hopwood
9ba83513bb
Fix length of r.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-02 00:15:43 +00:00
Daira Hopwood
f5ab4ef51d
Ensure that a viewing key holder can decrypt the value of the old coin.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-29 14:19:35 +00:00
Daira Hopwood
80dcdeef4f
"additional data" -> "associated data".
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-28 11:25:41 +00:00
Daira Hopwood
d7dd20d281
Wording improvement.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-27 23:40:01 +00:00
Daira Hopwood
65ebefd7e8
Merge "Raw Encoding" subsubsections into their parent, and correct a section title.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-27 23:39:12 +00:00
Daira Hopwood
f3041d4e07
The viewing key holder should check epk.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-27 21:14:39 +00:00
Daira Hopwood
9611e0b35b
The arguments to Curve25519 multiplication were consistently the wrong way round.
...
Also, add the base point argument to the computation of pk_enc from sk_enc.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-27 21:12:50 +00:00
Daira Hopwood
c6ec1e0e07
Note about some fields not being constrained in the circuit.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-27 20:58:39 +00:00
Daira Hopwood
a816d1fd18
Correct an obsolete paragraph relating a_sk and a_pk.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-27 20:38:58 +00:00
Daira Hopwood
32963392a8
Merge branch 'master' into 406.viewing-keys.1
2016-02-27 17:32:54 +00:00
Daira Hopwood
8c537c300b
Add MIT license. fixes #15
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-27 17:29:48 +00:00
Daira Hopwood
0770ff87dc
Acknowledgements.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-27 00:54:33 +00:00
Daira Hopwood
0545c5b9ca
Work in progress on "Differences from Zerocash" section.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-27 00:54:06 +00:00
Daira Hopwood
98398f0385
Update Pour statement for viewing keys.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-27 00:52:14 +00:00
Daira Hopwood
a2d625f1b2
Merge branch '738.fix-internalh-collision.0' into 406.viewing-keys.1
...
Includes other fixes.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-26 17:22:59 +00:00
Daira Hopwood
ce18d51650
Proposed fix for domain separation and truncation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-02-26 16:36:59 +00:00