You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
To create BLS signatures in G2, we need to first map the message to a point in G2. At the moment, we do this by hashing the message to a string, interpreting it as an integer, and multiplying it by the base point. This is not the proper way to do it.
Implement "hash and check" which supposedly is insecure, but should be acceptable for our use case (because the attacker cannot choose the message that's signed) -- see here for a description, but in the context of BLS12-381.
The text was updated successfully, but these errors were encountered:
To create BLS signatures in G2, we need to first map the message to a point in
G2
. At the moment, we do this by hashing the message to a string, interpreting it as an integer, and multiplying it by the base point. This is not the proper way to do it.The text was updated successfully, but these errors were encountered: