Return-Path: <roconnor@blockstream.io> Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org [172.17.192.35]) by mail.linuxfoundation.org (Postfix) with ESMTPS id E46D3D01 for <bitcoin-dev@lists.linuxfoundation.org>; Thu, 20 Sep 2018 21:13:03 +0000 (UTC) X-Greylist: whitelisted by SQLgrey-1.7.6 Received: from mail-io1-f47.google.com (mail-io1-f47.google.com [209.85.166.47]) by smtp1.linuxfoundation.org (Postfix) with ESMTPS id 7DA2A798 for <bitcoin-dev@lists.linuxfoundation.org>; Thu, 20 Sep 2018 21:13:03 +0000 (UTC) Received: by mail-io1-f47.google.com with SMTP id e12-v6so9767287iok.12 for <bitcoin-dev@lists.linuxfoundation.org>; Thu, 20 Sep 2018 14:13:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=blockstream.io; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=NOxQotPPOvufAUr9Uq+Abz7lKmEVI37R+wXxiBj7GI4=; b=iFYMsN21YW0oE7SvYW+pPzNsoHXo7hMfge4Rqz4u/lOIRVF5lM0SMeFJVQUU/ZrNZ1 pdivfNmNkVq+kaGIOwKSv/GvCtKQ46QuaedDuOCr7c+GOf49Dkyrnsy+KzKkj+E0lq23 I+xlnGBGffXCfLvmP+RPEWxNh7tK5ol8JPxg0= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=NOxQotPPOvufAUr9Uq+Abz7lKmEVI37R+wXxiBj7GI4=; b=C2fPh6i4vqJdHaAQnUSYivd3tb4V0uxH5snURESukg2XIkchyqUEvh/r+4emQRmVas YqptJmuSdlupMwWW6IMiULYAVA6S9cR6GojgoFfkQLzSP95BoVH0OIC9Ioo2HCUtt+mJ /6NjygvgdPnGzrgANXgIgQ89yZfCVXBz5/dLaoOWxJ/qSuLGGm58VU6flEafEOdflMKR UVANw+nWp4sByEOVkFQqqhb4ErEOdO5d/rtRoc36ZR7IsFOD24Mjd/ekLlCWtmt5Sxzz P9A7SHCHLh+z0snkcnI2na/gx7r1u7baehDqapSYOpVItax4vvwzXLOEZlQmIKxrqvyE n6TQ== X-Gm-Message-State: APzg51C74UlRhx9xT+5JUwzah7iWGvw/rBWn5VXwzxnyXTuSTfi8ghXT j8PuC+cwXFQmzJITPiAAwib3MC3QQbayjZkl1iJ21A== X-Google-Smtp-Source: ANB0VdYCvy0btcPieF5o3XtkxE6QofK998gBg68wAFdpnFqXDJqQF/694kYyK0Xkjr05Yo2/StzXulb9YwZv9WeNoXo= X-Received: by 2002:a02:3c01:: with SMTP id m1-v6mr38090660jaa.77.1537477982697; Thu, 20 Sep 2018 14:13:02 -0700 (PDT) MIME-Version: 1.0 Received: by 2002:a02:4111:0:0:0:0:0 with HTTP; Thu, 20 Sep 2018 14:12:42 -0700 (PDT) In-Reply-To: <CAPg+sBj7f+=OYXuOMdNeJk3NBG67FSQSF8Xv3seFCvwxCWq69A@mail.gmail.com> References: <CAPg+sBj7f+=OYXuOMdNeJk3NBG67FSQSF8Xv3seFCvwxCWq69A@mail.gmail.com> From: "Russell O'Connor" <roconnor@blockstream.io> Date: Thu, 20 Sep 2018 17:12:42 -0400 Message-ID: <CAMZUoKmeW+q0+84vHjD0L_Jzn4j3E6JXV0O8efYayfWf-91HKQ@mail.gmail.com> To: Pieter Wuille <pieter.wuille@gmail.com>, Bitcoin Protocol Discussion <bitcoin-dev@lists.linuxfoundation.org> Content-Type: multipart/alternative; boundary="0000000000000253cb057653fd1d" X-Spam-Status: No, score=-2.0 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID, DKIM_VALID_AU, HTML_MESSAGE, RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.1 X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on smtp1.linux-foundation.org X-Mailman-Approved-At: Fri, 21 Sep 2018 18:17:22 +0000 Subject: Re: [bitcoin-dev] Schnorr signatures BIP X-BeenThere: bitcoin-dev@lists.linuxfoundation.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Bitcoin Protocol Discussion <bitcoin-dev.lists.linuxfoundation.org> List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>, <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe> List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/> List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org> List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help> List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>, <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe> X-List-Received-Date: Thu, 20 Sep 2018 21:13:08 -0000 --0000000000000253cb057653fd1d Content-Type: text/plain; charset="UTF-8" It would be helpful to add the intermediate 'e' values computed to the first four test vectors. On Fri, Jul 6, 2018 at 2:08 PM, Pieter Wuille via bitcoin-dev < bitcoin-dev@lists.linuxfoundation.org> wrote: > Hello everyone, > > Here is a proposed BIP for 64-byte elliptic curve Schnorr signatures, > over the same curve as is currently used in ECDSA: > https://github.com/sipa/bips/blob/bip-schnorr/bip-schnorr.mediawiki > > It is simply a draft specification of the signature scheme itself. It > does not concern consensus rules, aggregation, or any other > integration into Bitcoin - those things are left for other proposals, > which can refer to this scheme if desirable. Standardizing the > signature scheme is a first step towards that, and as it may be useful > in other contexts to have a common Schnorr scheme available, it is its > own informational BIP. > > If accepted, we'll work on more production-ready reference > implementations and tests. > > This is joint work with several people listed in the document. > > Cheers, > > -- > Pieter > _______________________________________________ > bitcoin-dev mailing list > bitcoin-dev@lists.linuxfoundation.org > https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev > --0000000000000253cb057653fd1d Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable <div dir=3D"ltr">It would be helpful to add the intermediate 'e' va= lues computed to the first four test vectors.<br><div><div class=3D"gmail_e= xtra"><br><div class=3D"gmail_quote">On Fri, Jul 6, 2018 at 2:08 PM, Pieter= Wuille via bitcoin-dev <span dir=3D"ltr"><<a href=3D"mailto:bitcoin-dev= @lists.linuxfoundation.org" target=3D"_blank">bitcoin-dev@lists.linuxfounda= tion.org</a>></span> wrote:<br><blockquote class=3D"gmail_quote" style= =3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hello ev= eryone,<br> <br> Here is a proposed BIP for 64-byte elliptic curve Schnorr signatures,<br> over the same curve as is currently used in ECDSA:<br> <a href=3D"https://github.com/sipa/bips/blob/bip-schnorr/bip-schnorr.mediaw= iki" rel=3D"noreferrer" target=3D"_blank">https://github.com/sipa/bips/<wbr= >blob/bip-schnorr/bip-schnorr.<wbr>mediawiki</a><br> <br> It is simply a draft specification of the signature scheme itself. It<br> does not concern consensus rules, aggregation, or any other<br> integration into Bitcoin - those things are left for other proposals,<br> which can refer to this scheme if desirable. Standardizing the<br> signature scheme is a first step towards that, and as it may be useful<br> in other contexts to have a common Schnorr scheme available, it is its<br> own informational BIP.<br> <br> If accepted, we'll work on more production-ready reference<br> implementations and tests.<br> <br> This is joint work with several people listed in the document.<br> <br> Cheers,<br> <span class=3D"HOEnZb"><font color=3D"#888888"><br> -- <br> Pieter<br> ______________________________<wbr>_________________<br> bitcoin-dev mailing list<br> <a href=3D"mailto:bitcoin-dev@lists.linuxfoundation.org">bitcoin-dev@lists.= <wbr>linuxfoundation.org</a><br> <a href=3D"https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev" = rel=3D"noreferrer" target=3D"_blank">https://lists.linuxfoundation.<wbr>org= /mailman/listinfo/bitcoin-<wbr>dev</a><br> </font></span></blockquote></div><br></div></div></div> --0000000000000253cb057653fd1d--