[Cfrg] seeking feedback on draft-irtf-cfrg-vrf

Sharon Goldberg <goldbe@cs.bu.edu> Mon, 02 July 2018 17:14 UTC

MIME-Version: 1.0
Sender: sharon.goldbe@gmail.com
From: Sharon Goldberg <goldbe@cs.bu.edu>
Date: Mon, 02 Jul 2018 13:13:20 -0400
Message-ID: <CAJHGrrTU8eM1cT0B6Stkh4sj1HoY7wiDVSyFr7ZHnXxjKdmy_g@mail.gmail.com>
To: cfrg@irtf.org, Leonid Reyzin <reyzin@cs.bu.edu>
Cc: jan@ns1.com, Dimitrios Papadopoulos <dipapado@cse.ust.hk>
Content-Type: multipart/alternative; boundary="000000000000e678320570075220"
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/vLaqYcY-i0uTSQZqDshArj6e4Rw>
Subject: [Cfrg] seeking feedback on draft-irtf-cfrg-vrf
Precedence: list

Dear CFRG,

We have a new version of draft-irtf-cfrg-vrf, specifying Verifiable Random
Functions (VRFs).

https://datatracker.ietf.org/doc/draft-irtf-cfrg-vrf/

This revision updates the elliptic curve VRF (ECVRF).  Key changes include

1) Add a new Curve25519 ciphersuite that uses elligator2 for hashing
2) Add domain separation for hashing
3) Make nonce selection deterministic

Here's a slide deck summarizing the update, that we will present at
IETF102.  We also have very specific places where we are seeking feedback
from the RG, which are summarized in the slides. Please have a look.

http://www.cs.bu.edu/~goldbe/papers/VRF_ietf_02.pdf

Thanks,
Sharon Goldberg + Leo Reyzin
Boston University

-- 
Sharon Goldberg
Computer Science, Boston University
http://www.cs.bu.edu/~goldbe

[Cfrg] seeking feedback on draft-irtf-cfrg-vrf Sharon Goldberg