[noise] Post-Quantum Noise with New Hope
Trevor Perrin
trevp at trevp.net
Sun Jul 17 05:02:33 PDT 2016
On Sun, Jul 17, 2016 at 1:56 PM, Trevor Perrin <trevp at trevp.net> wrote:
>
> * For schemes like NTRU Prime where we can encrypt to a static public
> key, we could double "dhes" so that it calls MixKey() on the DH output,
> then sends an NTRU Prime #2 message and calls MixKey() on the NTRU Prime
> output. Instead of XX, we'd use a pattern like this:
>
> -> e
> <- e, dhee, s
> -> s, dhes
> <- dhes
>
> Note that this pattern is worse than XX, since XX can authenticate
> "faster":
>
> -> e
> <- e, dhee, s, dhse
> -> d, dhse
>
Sorry, typo: "s, dhse" in last line
Trevor
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/noise/attachments/20160717/d2bfc941/attachment.html>
More information about the Noise
mailing list