diff options
Diffstat (limited to 'draft-schanzen-gns.xml')
-rw-r--r-- | draft-schanzen-gns.xml | 15 |
1 files changed, 8 insertions, 7 deletions
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml index b439b7b..10c95d0 100644 --- a/draft-schanzen-gns.xml +++ b/draft-schanzen-gns.xml | |||
@@ -665,10 +665,10 @@ NONCE := HKDF-Expand (PRK_n, label, 32 / 8) | |||
665 | zk := a * G | 665 | zk := a * G |
666 | PRK_h := HKDF-Extract ("key-derivation", zk) | 666 | PRK_h := HKDF-Extract ("key-derivation", zk) |
667 | h := HKDF-Expand (PRK_h, label | "gns", 512 / 8) | 667 | h := HKDF-Expand (PRK_h, label | "gns", 512 / 8) |
668 | h[0] &= 248; | ||
669 | h[31] &= 127; | ||
670 | h[31] |= 64; | ||
671 | a' := h * a mod L | 668 | a' := h * a mod L |
669 | a'[0] &= 248; | ||
670 | a'[31] &= 127; | ||
671 | a'[31] |= 64; | ||
672 | ]]></artwork> | 672 | ]]></artwork> |
673 | <t> | 673 | <t> |
674 | Equally, given a label, the output of the HDKD-Public function is | 674 | Equally, given a label, the output of the HDKD-Public function is |
@@ -677,10 +677,11 @@ a' := h * a mod L | |||
677 | <artwork name="" type="" align="left" alt=""><![CDATA[ | 677 | <artwork name="" type="" align="left" alt=""><![CDATA[ |
678 | PRK_h := HKDF-Extract ("key-derivation", zk) | 678 | PRK_h := HKDF-Extract ("key-derivation", zk) |
679 | h := HKDF-Expand (PRK_h, label | "gns", 512 / 8) | 679 | h := HKDF-Expand (PRK_h, label | "gns", 512 / 8) |
680 | h[0] &= 248; | 680 | a' = h mod L |
681 | h[31] &= 127; | 681 | a'[0] &= 248; |
682 | h[31] |= 64; | 682 | a'[31] &= 127; |
683 | zk' := h mod L * zk | 683 | a'[31] |= 64; |
684 | zk' := a' * zk | ||
684 | ]]></artwork> | 685 | ]]></artwork> |
685 | <t> | 686 | <t> |
686 | The EDKEY cryptosystem uses a | 687 | The EDKEY cryptosystem uses a |