commit 2280a8724afa7d43a5f72a600967ab85056c48b5
parent a665828bc7566f5d5aed5155eb47a66a235b205f
Author: Schanzenbach, Martin <mschanzenbach@posteo.de>
Date: Fri, 4 Oct 2019 20:26:57 +0200
mod L
Diffstat:
3 files changed, 9 insertions(+), 9 deletions(-)
diff --git a/draft-schanzen-gns.html b/draft-schanzen-gns.html
@@ -1213,7 +1213,7 @@ async function addMetadata(){try{const e=document.styleSheets[0].cssRules;for(le
</dd>
<dt id="section-2-2.7">L</dt>
<dd id="section-2-2.8">
- is the order of edwards25519 in <span>[<a href="#RFC7748" class="xref">RFC7748</a>]</span>.<a href="#section-2-2.8" class="pilcrow">¶</a>
+ is the prime-order subgroup of edwards25519 in <span>[<a href="#RFC7748" class="xref">RFC7748</a>]</span>.<a href="#section-2-2.8" class="pilcrow">¶</a>
</dd>
<dt id="section-2-2.9">zk</dt>
<dd id="section-2-2.10">
@@ -1519,8 +1519,8 @@ async function addMetadata(){try{const e=document.styleSheets[0].cssRules;for(le
<pre>
PRK_h := HKDF-Extract ("key-derivation", zk)
h := HKDF-Expand (PRK_h, label | "gns", 512 / 8)
- d_h := h*d mod p
- zk_h := h*zk mod p
+ d_h := h*d mod L
+ zk_h := h*zk mod L
q := SHA512 (zk_h)
</pre><a href="#section-4.1-1" class="pilcrow">¶</a>
</div>
diff --git a/draft-schanzen-gns.txt b/draft-schanzen-gns.txt
@@ -149,7 +149,7 @@ Internet-Draft The GNU Name System July 2019
B is the group generator (X(P),Y(P)) of edwards25519 as defined in
[RFC7748].
- L is the order of edwards25519 in [RFC7748].
+ L is the prime-order subgroup of edwards25519 in [RFC7748].
zk is the ECDSA public key corresponding to d. It is defined in
[RFC6979] as the curve point d*B where B is the group generator of
@@ -407,8 +407,8 @@ Internet-Draft The GNU Name System July 2019
PRK_h := HKDF-Extract ("key-derivation", zk)
h := HKDF-Expand (PRK_h, label | "gns", 512 / 8)
- d_h := h*d mod p
- zk_h := h*zk mod p
+ d_h := h*d mod L
+ zk_h := h*zk mod L
q := SHA512 (zk_h)
We use a hash-based key derivation function (HKDF) as defined in
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml
@@ -141,7 +141,7 @@
</dd>
<dt>L</dt>
<dd>
- is the order of edwards25519 in <xref target="RFC7748" />.
+ is the prime-order subgroup of edwards25519 in <xref target="RFC7748" />.
</dd>
<dt>zk</dt>
<dd>
@@ -410,8 +410,8 @@
<artwork name="" type="" align="left" alt=""><![CDATA[
PRK_h := HKDF-Extract ("key-derivation", zk)
h := HKDF-Expand (PRK_h, label | "gns", 512 / 8)
- d_h := h*d mod p
- zk_h := h*zk mod p
+ d_h := h*d mod L
+ zk_h := h*zk mod L
q := SHA512 (zk_h)
]]></artwork>
<t>
