Skip to content

Signature blinding #133

New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom
Open
tomato42 opened this issue Oct 7, 2019 · 1 comment
Open

Signature blinding #133

tomato42 opened this issue Oct 7, 2019 · 1 comment
Labels
feature functionality to be implemented
Milestone
someday/future

Comments

@tomato42
Copy link
Member

tomato42 commented Oct 7, 2019

While blinding in ECC is not really practical for performance applications, it would be a good teaching opportunity to show how blinding can be performed in ECDSA signatures.

the new equation for s would be as follows:

s = inv_blind * inv_k * (blind * m + blind * r * priv_key) % order

where inv_blind and inv_k are multiplicative inverses modulo order of blind and k respectively
@tomato42 tomato42 added the feature functionality to be implemented label Oct 7, 2019
@tomato42 tomato42 added this to the someday/future milestone Oct 7, 2019
@tomato42
Copy link
Member Author

tomato42 commented Mar 2, 2020

If implemented, use of blinding should depend on a setting (either mode-wide one or one for just one instance of SigningKey) and it should default to disabled.

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
feature functionality to be implemented
Projects
None yet
Milestone
someday/future
Development

No branches or pull requests
1 participant
@tomato42