-
Notifications
You must be signed in to change notification settings - Fork 200
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
signature: tracking issue for rand_core
(RandomizedSigner) stabilization
#94
Comments
The name |
rand-preview
(RandomizedSigner) stabilization
Flattens module structure for errors
With |
rand-preview
(RandomizedSigner) stabilizationrand_core
(RandomizedSigner) stabilization
The signature crate contains the
RandomizedSigner
trait which are presently gated under therand-preview
rand_core
feature.Its main purpose is to allow a CSPRNG to be provided at the time a signature is computed. This is useful with algorithms like ECDSA or RSASSA-PSS which require an RNG at signing time.
There are also lingering concerns that deterministic signature algorithms like Ed25519 or ECDSA when implemented deterministically RFC6979 are brittle in the presence of fault attacks and should supplement their deterministic operation with additional randomness/entropy, which a
RandomizedSigner
API would allow for.The main blocker at present is a 1.0 release of the
rand_core
crate.Of all of the traits in the.signature
crate, this one is by far the most underexplored/experimented with. So far there are no crates which actually impl itThe text was updated successfully, but these errors were encountered: