[Cryptech Tech] why not deterministic ecdsa?

Leif Johansson leifj at sunet.se
Mon Sep 7 07:29:28 UTC 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


> 3) Generality and separation of components (someone who uses your
> ecdsa might not necessarily trust your rng).

afaiu this is the usual argument for 6979 but haven't we failed if folks
don't trust our rng?

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iEUEARECAAYFAlXtPNgACgkQ8Jx8FtbMZnf4nwCgsBSJyE6JR02088f6BEEBtadO
CqoAmPmfhcAsBkoAa5JYwfnKSK09wes=
=oJsZ
-----END PGP SIGNATURE-----



More information about the Tech mailing list