Skip to content

Release v0.0.11

Choose a tag to compare

View all tags
@xlloit xlloit released this 22 Mar 18:17
· 4 commits to main since this release
v0.0.11
6c985b0

FROST

  • Aligned Ed25519 and secp256k1 ciphersuites with RFC 9591: correct H1 binding factor computation (group public key, H4/H5 pre-hashing, identifier placement)
  • Fixed SerializeScalar encoding: 32-byte little-endian for Ed25519, 32-byte big-endian for secp256k1 (was 4-byte int32be for both)
  • H2 for Ed25519 now correctly omits domain separator for RFC 8032 compatibility
  • Implemented H3 hedged nonce generation (H3(random_bytes(32) || SerializeScalar(sk_i))) per RFC 9591 Section 4.1
  • Added RFC 9591 Appendix E test vectors for both ciphersuites (H1–H5, nonce generation, binding factors, signature aggregation)

GG20

  • Fixed tau reuse in MtAwc respondent proof
  • Added EC-point binding to MtAwc respondent proof

ECIES

  • Added ChaCha20Poly1305 cipher
Assets 2
Loading