114 lines
5.4 KiB
HTML
114 lines
5.4 KiB
HTML
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
|
|
<HTML>
|
|
<HEAD>
|
|
<TITLE> [zapps-wg] Powers of Tau participation + zk proof question
|
|
</TITLE>
|
|
<LINK REL="Index" HREF="/pipermail/zapps-wg/2018/index.html" >
|
|
<LINK REL="made" HREF="mailto:zapps-wg%40lists.zfnd.org?Subject=Re%3A%20%5Bzapps-wg%5D%20Powers%20of%20Tau%20participation%20%2B%20zk%20proof%20question&In-Reply-To=%3CCAF7tpEzWd8tX-LzKE-MC%2BQfx4f9_O%3DTQEzyP%2BVgGWeQWBBRg7A%40mail.gmail.com%3E">
|
|
<META NAME="robots" CONTENT="index,nofollow">
|
|
<style type="text/css">
|
|
pre {
|
|
white-space: pre-wrap; /* css-2.1, curent FF, Opera, Safari */
|
|
}
|
|
</style>
|
|
<META http-equiv="Content-Type" content="text/html; charset=us-ascii">
|
|
<LINK REL="Previous" HREF="000160.html">
|
|
<LINK REL="Next" HREF="000162.html">
|
|
</HEAD>
|
|
<BODY BGCOLOR="#ffffff">
|
|
<H1>[zapps-wg] Powers of Tau participation + zk proof question</H1>
|
|
<B>Andrew Miller</B>
|
|
<A HREF="mailto:zapps-wg%40lists.zfnd.org?Subject=Re%3A%20%5Bzapps-wg%5D%20Powers%20of%20Tau%20participation%20%2B%20zk%20proof%20question&In-Reply-To=%3CCAF7tpEzWd8tX-LzKE-MC%2BQfx4f9_O%3DTQEzyP%2BVgGWeQWBBRg7A%40mail.gmail.com%3E"
|
|
TITLE="[zapps-wg] Powers of Tau participation + zk proof question">soc1024 at illinois.edu
|
|
</A><BR>
|
|
<I>Wed Jan 3 15:36:18 EST 2018</I>
|
|
<P><UL>
|
|
<LI>Previous message (by thread): <A HREF="000160.html">[zapps-wg] Powers of Tau participation + zk proof question
|
|
</A></li>
|
|
<LI>Next message (by thread): <A HREF="000162.html">[zapps-wg] Powers of Tau participation + zk proof question
|
|
</A></li>
|
|
<LI> <B>Messages sorted by:</B>
|
|
<a href="date.html#161">[ date ]</a>
|
|
<a href="thread.html#161">[ thread ]</a>
|
|
<a href="subject.html#161">[ subject ]</a>
|
|
<a href="author.html#161">[ author ]</a>
|
|
</LI>
|
|
</UL>
|
|
<HR>
|
|
<!--beginarticle-->
|
|
<PRE>Suppose one did want to build a secp256k1 gadget. I notice that libsnark
|
|
already provides a general gadget for weierstrass form elliptic curves,
|
|
parameterized by a field. So all we'd have to do is define the secp256k1
|
|
operations in the alt_bn128 or in bls12 fields. Is there any more clever
|
|
way to do this than just providing splitting into bits to implement modular
|
|
arithmetic in a different field?
|
|
|
|
On Jan 3, 2018 2:11 PM, "Sean Bowe" <<A HREF="/mailman/listinfo/zapps-wg">sean at z.cash</A>> wrote:
|
|
|
|
><i> If any curve is acceptable, I would encourage Jubjub, which we'll be
|
|
</I>><i> using for the next version of Zcash. In which case you will be able to
|
|
</I>><i> leverage our Sapling crypto code once it is more mature over the next
|
|
</I>><i> month or so. <A HREF="https://github.com/zcash-hackworks/sapling-crypto">https://github.com/zcash-hackworks/sapling-crypto</A>
|
|
</I>><i>
|
|
</I>><i> Sean
|
|
</I>><i>
|
|
</I>><i> On Wed, Jan 3, 2018 at 1:02 PM, James Prestwich via zapps-wg
|
|
</I>><i> <<A HREF="/mailman/listinfo/zapps-wg">zapps-wg at lists.z.cash.foundation</A>> wrote:
|
|
</I>><i> > I'd prefer sha256 or bitcoin-style hash160. I'm interested in a few
|
|
</I>><i> > different curves, including secp256k1. Eventually for EdDSA keys as
|
|
</I>><i> well. Is
|
|
</I>><i> > there a list of supported curve operations?
|
|
</I>><i> >
|
|
</I>><i> > On Wed, Jan 3, 2018 at 12:57 PM Andrew Miller <<A HREF="/mailman/listinfo/zapps-wg">soc1024 at illinois.edu</A>>
|
|
</I>><i> wrote:
|
|
</I>><i> >>
|
|
</I>><i> >> Thank you so much for expressing your question in Camenisch-Stadler
|
|
</I>><i> >> notation! That makes it very clear what you're going for.
|
|
</I>><i> >>
|
|
</I>><i> >> What hash function H do you have in mind, would SHA2 work? Also what
|
|
</I>><i> group
|
|
</I>><i> >> G do you have in mind, secp256k1?
|
|
</I>><i> >>
|
|
</I>><i> >> If so, I do not know of any existing implementation of secp256k1
|
|
</I>><i> >> operations specifically in libsnark, so that would presumably be the
|
|
</I>><i> biggest
|
|
</I>><i> >> challenge.
|
|
</I>><i> >>
|
|
</I>><i> >>
|
|
</I>><i> >> On Jan 3, 2018 1:47 PM, "James Prestwich via zapps-wg"
|
|
</I>><i> >> <<A HREF="/mailman/listinfo/zapps-wg">zapps-wg at lists.z.cash.foundation</A>> wrote:
|
|
</I>><i> >>
|
|
</I>><i> >> I'd like to participate in the setup ceremony.
|
|
</I>><i> >>
|
|
</I>><i> >> I also have an app I'd like to build using a zk-proof of knowledge of an
|
|
</I>><i> >> ECC private key. {(a) : A = a * G, B = H(a)}. Can anyone point me to
|
|
</I>><i> good
|
|
</I>><i> >> resources on getting started?
|
|
</I>><i> >>
|
|
</I>><i> >>
|
|
</I>><i> >
|
|
</I>><i>
|
|
</I>
|
|
</PRE>
|
|
|
|
<!--endarticle-->
|
|
<HR>
|
|
<P><UL>
|
|
<!--threads-->
|
|
<LI>Previous message (by thread): <A HREF="000160.html">[zapps-wg] Powers of Tau participation + zk proof question
|
|
</A></li>
|
|
<LI>Next message (by thread): <A HREF="000162.html">[zapps-wg] Powers of Tau participation + zk proof question
|
|
</A></li>
|
|
<LI> <B>Messages sorted by:</B>
|
|
<a href="date.html#161">[ date ]</a>
|
|
<a href="thread.html#161">[ thread ]</a>
|
|
<a href="subject.html#161">[ subject ]</a>
|
|
<a href="author.html#161">[ author ]</a>
|
|
</LI>
|
|
</UL>
|
|
|
|
<hr>
|
|
<a href="/mailman/listinfo/zapps-wg">More information about the zapps-wg
|
|
mailing list</a><br>
|
|
</body></html>
|