Daira Hopwood
5bbbb0bde6
Use standard AEAD_CHACHA20_POLY1305.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 23:32:01 +00:00
Daira Hopwood
d98c941429
Switch to little-endian encoding, consistent with Bitcoin serialization.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 23:19:38 +00:00
Daira Hopwood
350c5ae598
DecryptCoin -> DecryptNote.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 20:37:43 +00:00
Daira Hopwood
c55489fa2d
Fix some macro uses, and rename rn to nf.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 20:29:42 +00:00
Daira Hopwood
5e408580c1
Remove "map" terminology; the spent nullifiers are a set at this level of abstraction.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 20:26:37 +00:00
Daira Hopwood
d60fda0e3d
Rename remnant (serial number) -> nullifier.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 19:48:19 +00:00
Daira Hopwood
0b0295e29e
Fix some cases where macros were not used consistently.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-20 19:46:19 +00:00
Daira Hopwood
08e25a8b21
WIP - new terminology.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-18 21:09:24 +00:00
Daira Hopwood
0e6953a6eb
WIP: Define types for serialized fields.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-18 01:20:44 +00:00
Daira Hopwood
5ebe7b31e0
Specify precisely the data to be signed. This includes a design change
...
to use a single signature covering all of the transaction except
pourPubKey and pubSig.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-16 01:36:37 +00:00
Daira Hopwood
a5096c755a
Bibliography: cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-16 01:34:45 +00:00
Daira Hopwood
57d94a0bf9
Specify precise encoding of ECDSA public key. Also improve description
...
of how the public key is bound to the Pour statement.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-16 00:06:01 +00:00
Daira Hopwood
5d3b31b15f
Cosmetics, re-render PDF.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:23:38 +00:00
Daira Hopwood
1bd4e4cfdb
Make some subparagraphs into subsections.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:23:05 +00:00
Daira Hopwood
5a78817989
Reference libsnark for encoding of proofs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:22:22 +00:00
Daira Hopwood
245c52036c
randomSeed must be chosen independently at random for each Pour description.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:21:41 +00:00
Daira Hopwood
223f7d2e1e
Be more precise about Pour transfers.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:20:46 +00:00
Daira Hopwood
87c502ffd3
Enforce canonical ECDSA signatures, and specify encodings (WIP).
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:20:17 +00:00
Daira Hopwood
23e66ae090
Change 'script*' variables to 'pour*', and add references.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:17:14 +00:00
Daira Hopwood
28b38b5eb9
Fix 'make clean'.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-15 23:13:51 +00:00
Daira Hopwood
10ac791004
Remove viewing keys (except for sk_enc) for now.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-13 02:16:30 +00:00
Daira Hopwood
42954ecdac
Fill in more sections of "Differences from Zerocash".
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-13 01:23:04 +00:00
Daira Hopwood
3d04c384f1
Add Nathan Wilcox to authors.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-09 00:40:08 +00:00
Daira Hopwood
1b1e1f8456
Add lead byte to KDF input.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 21:08:14 +00:00
Daira Hopwood
95e6fc42cd
Seriously, LaTeX, this paragraph is just fine.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 21:06:23 +00:00
Daira Hopwood
a8ff6110e6
Adjust list spacing. (I'm picky about things like that.)
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 21:05:45 +00:00
Daira Hopwood
e15a4fc0a4
Clarify that the nonce to AEAD_CHACHA20_POLY1305 is 96 bits, and the key 256 bits.
...
fixes zips/#19
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 17:00:31 +00:00
Daira Hopwood
c57d295a38
Fix definitions of a_vk and a_pk in Pour statement. fixes zips#18
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 16:52:15 +00:00
Daira Hopwood
64c91164ab
Descriptions of scriptSig and scriptPubKey were the wrong way round. fixes zips#17
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 04:53:02 +00:00
Daira Hopwood
2fac159404
Fix index error in computation of hSig.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 04:38:51 +00:00
Daira Hopwood
26df1df754
Define some convenience macros to shorten 1..N^{old,new}.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 04:36:29 +00:00
Daira Hopwood
9bbae8ce2a
Makefile: avoid error if protocol.aux doesn't exist.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 04:15:27 +00:00
Daira Hopwood
a1b1cd62c3
Notation.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-07 03:38:00 +00:00
Daira Hopwood
6d25c4beb2
Be more precise about the specification of Curve25519 functions.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-06 23:26:40 +00:00
Daira Hopwood
a9da411767
Rearrange domain separation to make room for greater pour arities, and
...
state explicitly the domain separation convention for uses of the full hash.
Also bump the draft number.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-06 22:21:48 +00:00
Daira Hopwood
39e5992e60
Clarify endianness.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-06 22:19:12 +00:00
Daira Hopwood
608c0dbcb0
Fix potential attacks due to unclamped esk provided to a viewing key holder.
...
(The other change from epk to epk* in the KDF input is just for clarity,
since we check that epk* = epk.)
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-06 10:34:34 +00:00
Daira Hopwood
acf7cabe39
More PDF niceties.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 21:45:11 +00:00
Daira Hopwood
5e14841dce
Make hyperref links go to the top of the page to avoid having to scroll up.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 21:28:15 +00:00
Daira Hopwood
9069509095
Generate PDF index.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 21:12:38 +00:00
Daira Hopwood
c8e8846a53
More cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 21:05:06 +00:00
Daira Hopwood
06e747ed1f
Suppress spurious overfull hbox warnings; other cosmetics.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 21:02:46 +00:00
Daira Hopwood
96f8c869f2
Fancy linking of cross-references and URLs.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 20:20:11 +00:00
Daira Hopwood
63b7fa7f1a
Move the specification of how a coin plaintext is encoded.
...
This avoids the implication that we intend it to be Base85Check-encoded,
and makes the statement about prefix-freedom true again.
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 18:37:40 +00:00
Daira Hopwood
661e894907
Remove version byte in coin plaintext.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-05 18:19:33 +00:00
Daira Hopwood
b0f06c6589
Correct a misstatement in the 'Decryption by a Viewing Key Holder' section.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-04 00:29:30 +00:00
Daira Hopwood
b6f8ab3f9b
Formatting; fix key derivation diagram.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-03 18:51:33 +00:00
Daira Hopwood
70dede1507
Unified spec with or without viewing keys.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-03 18:43:10 +00:00
Daira Hopwood
605d6ef5b1
Cosmetics.
2016-03-03 15:25:25 +00:00
Daira Hopwood
1875e0d389
Fix size of r in Coin Plaintexts section.
...
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
2016-03-03 15:25:15 +00:00