1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
|
Return-Path: <roconnor@blockstream.io>
Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org
[172.17.192.35])
by mail.linuxfoundation.org (Postfix) with ESMTPS id E46D3D01
for <bitcoin-dev@lists.linuxfoundation.org>;
Thu, 20 Sep 2018 21:13:03 +0000 (UTC)
X-Greylist: whitelisted by SQLgrey-1.7.6
Received: from mail-io1-f47.google.com (mail-io1-f47.google.com
[209.85.166.47])
by smtp1.linuxfoundation.org (Postfix) with ESMTPS id 7DA2A798
for <bitcoin-dev@lists.linuxfoundation.org>;
Thu, 20 Sep 2018 21:13:03 +0000 (UTC)
Received: by mail-io1-f47.google.com with SMTP id e12-v6so9767287iok.12
for <bitcoin-dev@lists.linuxfoundation.org>;
Thu, 20 Sep 2018 14:13:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=blockstream.io; s=google;
h=mime-version:in-reply-to:references:from:date:message-id:subject:to;
bh=NOxQotPPOvufAUr9Uq+Abz7lKmEVI37R+wXxiBj7GI4=;
b=iFYMsN21YW0oE7SvYW+pPzNsoHXo7hMfge4Rqz4u/lOIRVF5lM0SMeFJVQUU/ZrNZ1
pdivfNmNkVq+kaGIOwKSv/GvCtKQ46QuaedDuOCr7c+GOf49Dkyrnsy+KzKkj+E0lq23
I+xlnGBGffXCfLvmP+RPEWxNh7tK5ol8JPxg0=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20161025;
h=x-gm-message-state:mime-version:in-reply-to:references:from:date
:message-id:subject:to;
bh=NOxQotPPOvufAUr9Uq+Abz7lKmEVI37R+wXxiBj7GI4=;
b=C2fPh6i4vqJdHaAQnUSYivd3tb4V0uxH5snURESukg2XIkchyqUEvh/r+4emQRmVas
YqptJmuSdlupMwWW6IMiULYAVA6S9cR6GojgoFfkQLzSP95BoVH0OIC9Ioo2HCUtt+mJ
/6NjygvgdPnGzrgANXgIgQ89yZfCVXBz5/dLaoOWxJ/qSuLGGm58VU6flEafEOdflMKR
UVANw+nWp4sByEOVkFQqqhb4ErEOdO5d/rtRoc36ZR7IsFOD24Mjd/ekLlCWtmt5Sxzz
P9A7SHCHLh+z0snkcnI2na/gx7r1u7baehDqapSYOpVItax4vvwzXLOEZlQmIKxrqvyE
n6TQ==
X-Gm-Message-State: APzg51C74UlRhx9xT+5JUwzah7iWGvw/rBWn5VXwzxnyXTuSTfi8ghXT
j8PuC+cwXFQmzJITPiAAwib3MC3QQbayjZkl1iJ21A==
X-Google-Smtp-Source: ANB0VdYCvy0btcPieF5o3XtkxE6QofK998gBg68wAFdpnFqXDJqQF/694kYyK0Xkjr05Yo2/StzXulb9YwZv9WeNoXo=
X-Received: by 2002:a02:3c01:: with SMTP id
m1-v6mr38090660jaa.77.1537477982697;
Thu, 20 Sep 2018 14:13:02 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a02:4111:0:0:0:0:0 with HTTP; Thu, 20 Sep 2018 14:12:42
-0700 (PDT)
In-Reply-To: <CAPg+sBj7f+=OYXuOMdNeJk3NBG67FSQSF8Xv3seFCvwxCWq69A@mail.gmail.com>
References: <CAPg+sBj7f+=OYXuOMdNeJk3NBG67FSQSF8Xv3seFCvwxCWq69A@mail.gmail.com>
From: "Russell O'Connor" <roconnor@blockstream.io>
Date: Thu, 20 Sep 2018 17:12:42 -0400
Message-ID: <CAMZUoKmeW+q0+84vHjD0L_Jzn4j3E6JXV0O8efYayfWf-91HKQ@mail.gmail.com>
To: Pieter Wuille <pieter.wuille@gmail.com>,
Bitcoin Protocol Discussion <bitcoin-dev@lists.linuxfoundation.org>
Content-Type: multipart/alternative; boundary="0000000000000253cb057653fd1d"
X-Spam-Status: No, score=-2.0 required=5.0 tests=BAYES_00,DKIM_SIGNED,
DKIM_VALID, DKIM_VALID_AU, HTML_MESSAGE,
RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.1
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
smtp1.linux-foundation.org
X-Mailman-Approved-At: Fri, 21 Sep 2018 18:17:22 +0000
Subject: Re: [bitcoin-dev] Schnorr signatures BIP
X-BeenThere: bitcoin-dev@lists.linuxfoundation.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Bitcoin Protocol Discussion <bitcoin-dev.lists.linuxfoundation.org>
List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe>
List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/>
List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org>
List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help>
List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Sep 2018 21:13:08 -0000
--0000000000000253cb057653fd1d
Content-Type: text/plain; charset="UTF-8"
It would be helpful to add the intermediate 'e' values computed to the
first four test vectors.
On Fri, Jul 6, 2018 at 2:08 PM, Pieter Wuille via bitcoin-dev <
bitcoin-dev@lists.linuxfoundation.org> wrote:
> Hello everyone,
>
> Here is a proposed BIP for 64-byte elliptic curve Schnorr signatures,
> over the same curve as is currently used in ECDSA:
> https://github.com/sipa/bips/blob/bip-schnorr/bip-schnorr.mediawiki
>
> It is simply a draft specification of the signature scheme itself. It
> does not concern consensus rules, aggregation, or any other
> integration into Bitcoin - those things are left for other proposals,
> which can refer to this scheme if desirable. Standardizing the
> signature scheme is a first step towards that, and as it may be useful
> in other contexts to have a common Schnorr scheme available, it is its
> own informational BIP.
>
> If accepted, we'll work on more production-ready reference
> implementations and tests.
>
> This is joint work with several people listed in the document.
>
> Cheers,
>
> --
> Pieter
> _______________________________________________
> bitcoin-dev mailing list
> bitcoin-dev@lists.linuxfoundation.org
> https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev
>
--0000000000000253cb057653fd1d
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr">It would be helpful to add the intermediate 'e' va=
lues computed to the first four test vectors.<br><div><div class=3D"gmail_e=
xtra"><br><div class=3D"gmail_quote">On Fri, Jul 6, 2018 at 2:08 PM, Pieter=
Wuille via bitcoin-dev <span dir=3D"ltr"><<a href=3D"mailto:bitcoin-dev=
@lists.linuxfoundation.org" target=3D"_blank">bitcoin-dev@lists.linuxfounda=
tion.org</a>></span> wrote:<br><blockquote class=3D"gmail_quote" style=
=3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hello ev=
eryone,<br>
<br>
Here is a proposed BIP for 64-byte elliptic curve Schnorr signatures,<br>
over the same curve as is currently used in ECDSA:<br>
<a href=3D"https://github.com/sipa/bips/blob/bip-schnorr/bip-schnorr.mediaw=
iki" rel=3D"noreferrer" target=3D"_blank">https://github.com/sipa/bips/<wbr=
>blob/bip-schnorr/bip-schnorr.<wbr>mediawiki</a><br>
<br>
It is simply a draft specification of the signature scheme itself. It<br>
does not concern consensus rules, aggregation, or any other<br>
integration into Bitcoin - those things are left for other proposals,<br>
which can refer to this scheme if desirable. Standardizing the<br>
signature scheme is a first step towards that, and as it may be useful<br>
in other contexts to have a common Schnorr scheme available, it is its<br>
own informational BIP.<br>
<br>
If accepted, we'll work on more production-ready reference<br>
implementations and tests.<br>
<br>
This is joint work with several people listed in the document.<br>
<br>
Cheers,<br>
<span class=3D"HOEnZb"><font color=3D"#888888"><br>
-- <br>
Pieter<br>
______________________________<wbr>_________________<br>
bitcoin-dev mailing list<br>
<a href=3D"mailto:bitcoin-dev@lists.linuxfoundation.org">bitcoin-dev@lists.=
<wbr>linuxfoundation.org</a><br>
<a href=3D"https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev" =
rel=3D"noreferrer" target=3D"_blank">https://lists.linuxfoundation.<wbr>org=
/mailman/listinfo/bitcoin-<wbr>dev</a><br>
</font></span></blockquote></div><br></div></div></div>
--0000000000000253cb057653fd1d--
|
