serai/crypto/dleq
Luke Parker bfe34ea6f8
Make the cross-group DLEq bit components pow 2, not the commitments as a whole
Few percent faster. Enables accumulating the current bit's point 
representation, whereas the blinding keys can't be accumulated. Also 
theoretically enables pre-computation of the bit points, removing 
hundreds of additions from the proof. When tested, this was less 
performant, possibly due to cache/heap allocation.
2022-07-05 05:18:12 -04:00
..
src Make the cross-group DLEq bit components pow 2, not the commitments as a whole 2022-07-05 05:18:12 -04:00
Cargo.toml Make multiexp an optional, yet default, feature for DLEq 2022-07-02 02:48:27 -04:00
LICENSE Implement a DLEq library 2022-06-30 05:42:29 -04:00
README.md Implement a DLEq library 2022-06-30 05:42:29 -04:00

Discrete Log Equality

Implementation of discrete log equality both within a group and across groups, the latter being extremely experimental, for curves implementing the ff/group APIs. This library has not undergone auditing.

The cross-group DLEq is the one described in https://web.getmonero.org/resources/research-lab/pubs/MRL-0010.pdf, augmented with a pair of Schnorr Proof of Knowledges in order to correct for a mistake present in the paper.