waxwing on Nostr: "invariable" - meaning what? unjustified choice of generator - is a fascinating piece ...
"invariable" - meaning what?
unjustified choice of generator - is a fascinating piece of trivia, but is not worrying *in itself* when you take into account random self-reducibility.
On the other hand curve25519 is *not prime order* and that is a *huge* deal in practical security, it has bitten so many people.
DJB is incredible and I agree wholeheartedly about the Applebaum case. But he's not a God. You hear this kind of thing constantly, like people thinking "Bitcoin uses ECDSA, it doesn't have deterministic random nonces, lol, how could you be dumb enough not to use the industry standard Ed25519", just showing complete and utter ignorance of what these protocols actually are, and what Bitcoin is and how it changed over the years (sorry slight tangent but it's illustrative of a very ignorant attitude).
Published at
2023-04-30 22:16:43Event JSON
{
"id": "348219ead9bd8fec9fc5f43ec7ce931eb94820e2ab450b30689e3137a4c4050c",
"pubkey": "675b84fe75e216ab947c7438ee519ca7775376ddf05dadfba6278bd012e1d728",
"created_at": 1682893003,
"kind": 1,
"tags": [
[
"e",
"545ada485241cc09b1d98450280138cd3c0cc1fdc73f55cb7eede8358043ea7d",
"",
"root"
],
[
"e",
"bf0a1cfc098cd52547e23c7e022c8cc70a86586ab0a4c2182882533fe217dbad",
"",
"reply"
],
[
"p",
"0000006a13e10fb648049b5e78632a0c2bf09eaf6a9d55d081b82baf86c951be"
],
[
"p",
"82341f882b6eabcd2ba7f1ef90aad961cf074af15b9ef44a09f9d2a8fbfbe6a2"
],
[
"p",
"0000006a13e10fb648049b5e78632a0c2bf09eaf6a9d55d081b82baf86c951be"
],
[
"p",
"52b4a076bcbbbdc3a1aefa3735816cf74993b1b8db202b01c883c58be7fad8bd"
]
],
"content": "\"invariable\" - meaning what?\n\nunjustified choice of generator - is a fascinating piece of trivia, but is not worrying *in itself* when you take into account random self-reducibility.\n\nOn the other hand curve25519 is *not prime order* and that is a *huge* deal in practical security, it has bitten so many people.\n\nDJB is incredible and I agree wholeheartedly about the Applebaum case. But he's not a God. You hear this kind of thing constantly, like people thinking \"Bitcoin uses ECDSA, it doesn't have deterministic random nonces, lol, how could you be dumb enough not to use the industry standard Ed25519\", just showing complete and utter ignorance of what these protocols actually are, and what Bitcoin is and how it changed over the years (sorry slight tangent but it's illustrative of a very ignorant attitude).",
"sig": "e8c227b96dde36f279d27febeb9d6bbbe0dc35ff54bf1bdad11182cfafdd70257a76a9e1fd03129fd60c1ce99d5745845745d0b6c1be740ce05f280e96835a65"
}