Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

broken links #32

Open
kwantam opened this issue Oct 20, 2020 · 4 comments
Open

broken links #32

kwantam opened this issue Oct 20, 2020 · 4 comments

Comments

@kwantam
Copy link
Collaborator

kwantam commented Oct 20, 2020

reported via email:

The first one is in the bibliography of ZCash                                                                                  
(https://tools.ietf.org/html/draft-irtf-cfrg-bls-signature-04#ref-ZCash) which                                                 
points to                                                                                                                      
                                                                                                                               
                                                                                                                               
https://github.com/zkcrypto/pairing/blob/master/src/bls12_381/README.md#serialization.                                         
                                                                                                                               
However, the link returns a 404 error. I suppose that the last version of the                                                  
file is this one                                                                                                               
                                                                                                                               
                                                                                                                               
https://github.com/zkcrypto/pairing/blob/bac16ab134ccebf85e58db2ca82ef56dba73ae56/src/bls12_381/README.md#serialization        
                                                                                                                               
                                                                                                                               
The second is about a reference in the Section 4.2. It is written                                                              
                                                                                                                               
> These ciphersuites use the hash-to-curve suites BLS12381G1_XMD:SHA-                                                          
> 256_SSWU_RO_ and BLS12381G2_XMD:SHA-256_SSWU_RO_ defined in                                                                  
> [I-D.irtf-cfrg-hash-to-curve], Section 8.7.                                                                                  
                                                                                                                               
However, Section 8.7 is about "Suites for secp256k1". I suppose that the                                                       
section you targeted is Section 8.8 about "Suites for BLS12-381".
@lgremy
Copy link

lgremy commented Oct 27, 2020

Hi, another possibility for the first link is to refer to Appendix C of Pairing-Friendly Curves.
If I correctly understand #18, it was one of the point of this issue.
Thanks for your work.

@dot-asm
Copy link

dot-asm commented Dec 28, 2020

another possibility for the first link is to refer to Appendix C of Pairing-Friendly Curves.

One should wonder what is the most appropriate place for specification of the serialization procedure. Arguably the referred draft is probably the least appropriate place. Because draft's subject matter is not actually dependent on serialization format, and appendix can even be omitted from the draft without loosing the overall meaning.

The same line of reasoning can be applied even to this draft. Indeed, can the suggested schemes be implemented with arbitrary serialization format? Unequivocally yes. However, this draft gets pretty "close" to real-life applications, and one can argue that a concrete example of serialization procedure would be appropriate.

In other words, if anything, it would be appropriate to move the serialization specification from draft-irtf-cfrg-pairing-friendly-curves to this draft. As "a concrete example" and not necessarily as absolute requirement.

@dot-asm
Copy link

dot-asm commented Dec 28, 2020

As "a concrete example"

In which case, it would be arguably appropriate to eliminate ambiguity by spelling the following natural constraint in deserialization. Outputs from OS2IP calls should be checked for being less than curve modulus.

@dot-asm
Copy link

dot-asm commented Jan 27, 2021

it would be arguably appropriate to eliminate ambiguity...

To recap. Formally speaking serialization is ultimately an application matter, hence serialization specification doesn't really belong is this draft (let alone "pairing-friendly curves" draft). However, it would be only appropriate to formulate minimum requirements for for serialization format to fulfill. And the quoted line is such minimum requirement. This is irregardless of what happens to reference to Zcash format, moved, omitted, whatever.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@kwantam @dot-asm @lgremy