ECDSA vs EDDSA
Kristian Fiskerstrand
kristian.fiskerstrand at sumptuouscapital.com
Mon Nov 10 15:32:54 CET 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On 11/10/2014 01:16 PM, Peter Lebbing wrote:
> I can give two significant differences between ECDSA and EdDSA:
>
> 1) Signature creation is deterministic in EdDSA; ECDSA requires
> high quality randomness for each and every signature to be safe
> (just as regular ol' DSA). If low-quality randomness is used an
> attacker can
This is not necessarily true if [RFC6979]: "Deterministic Usage of the
Digital Signature Algorithm (DSA) and Elliptic Curve Digital Signature
Algorithm (ECDSA)" is used.
References:
[RFC6979] http://tools.ietf.org/rfc/rfc6979.txt
- --
- ----------------------------
Kristian Fiskerstrand
Blog: http://blog.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Public OpenPGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
- ----------------------------
"If the facts don't fit the theory, change the facts"
(Albert Einstein)
-----BEGIN PGP SIGNATURE-----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=RNmo
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list