[Cryptech Tech] why not deterministic ecdsa?

Leif Johansson leifj at sunet.se
Mon Sep 7 07:29:28 UTC 2015

Previous message (by thread): [Cryptech Tech] why not deterministic ecdsa?
Next message (by thread): [Cryptech Tech] why not deterministic ecdsa?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


> 3) Generality and separation of components (someone who uses your
> ecdsa might not necessarily trust your rng).

afaiu this is the usual argument for 6979 but haven't we failed if folks
don't trust our rng?

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iEUEARECAAYFAlXtPNgACgkQ8Jx8FtbMZnf4nwCgsBSJyE6JR02088f6BEEBtadO
CqoAmPmfhcAsBkoAa5JYwfnKSK09wes=
=oJsZ
-----END PGP SIGNATURE-----

Previous message (by thread): [Cryptech Tech] why not deterministic ecdsa?
Next message (by thread): [Cryptech Tech] why not deterministic ecdsa?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Tech mailing list