Comments (5)
defuse
commented on July 19, 2024
+1, this will make interactions between the primitives easier to spot, since they'll all be defined near each other. It will also force us to be explicit about the requirements of things like hSig.
from zips.
defuse
commented on July 19, 2024
Data point: I probably wouldn't have found the InternalH collision attack if the instantiations were separated. If I had been asked (and given time) to specifically check if that commitment scheme was binding I might have noticed it, but seeing a bunch of important protocol values (rather than an opaque message to be committed to) going into an 128-bit hash was an important motivator to get me thinking about the potential problems.
That said, since we have zcash/zcash#792 I'm still happy about the separation.
from zips.
daira
commented on July 19, 2024
Yes, I'm concerned that the separation in the Zerocash paper might have been a contributing factor to it having been missed by the authors. I want to see how this change looks in practice before committing to making it for the final spec.
from zips.
daira
commented on July 19, 2024
@defuse and I made a start on this; the work-in-progress is on the https://github.com/zcash/zips/tree/zips27.reorganisation.0 branch.
from zips.
daira
commented on July 19, 2024
Fixed in 2016.0-beta-1.
from zips.
Related Issues (20)
- ZIP 32 should explicitly say that the master seed needs at least 256 bits of entropy
- Update all conformance key word boilerplate to reference BCP 14 rather than RFC 2119
- Add GitHub Actions workflow to render HTML, and remove checked-in HTML files HOT 1
- Add GitHub Actions workflow to run link checker
- `make linkcheck` reports false positives for links into HTML files on GitHub HOT 2
- [protocol spec] Acknowledgements are missing Brian Warner as a contributor to discovery of the Faerie Gold attack on Zerocash HOT 1
- Call for comments: ZSA Swaps base proposal HOT 3
- Rendering/Format Proposal: migrate ZIPs to a single `mdbook` instance.
- Clarify in ZIP 0 and/or the ZIP Guide how Deployment sections should be written
- [protocol spec] Rename ยง4.19.3 "Decryption using a Full Viewing Key (Sapling and Orchard)" in the protocol specification HOT 1
- A typo in transaction consensus rules HOT 1
- Protocol spec version 2024.4.1
- Update protocol spec references in ZSA ZIPs to point to 2023.4.0
- Update psi' to psi^nf in ZSA ZIPs
- [ZIP 321] Add examples that include Unified Addresses
- ZSA UX considerations for AssetId discovery and authentication
- Proposal: for ZIPs proposing consensus changes, require a public persistent feature-gated testnet as a prerequisite for some maturity level. HOT 1
- [ZIP 320] Transparent-source Addresses
- [protocol spec] Spec uses inconsistent terms for ask and ak
- Finalize design of v6 transactions
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from zips.