I'm interested in Thai's response to this question too, as I would be in any com... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tptacek on April 9, 2020 \| parent \| context \| favorite \| on: Cofactor Explained: Clearing Elliptic Curves' dirt... I'm interested in Thai's response to this question too, as I would be in any comment anyone managed to solicit from him about this topic, but an easy point to make here is that Bernstein was himself involved in RFC 8032, at least as a reviewer and contributor to the process, as you can quickly learn by reading the CFRG mailing list.

loup-vaillant on April 9, 2020 [–]

Oh, so DJB changed his mind then? Makes sense considering the application of EdDSA beyond signatures (I've heard malleability is a problem with zero-knowledge proofs, but I haven't studied that subject).

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact