- From: Kim Hamilton <kimdhamilton@gmail.com>
- Date: Sat, 25 Mar 2017 21:22:03 +0000
- To: Tony Arcieri <bascule@gmail.com>
- Cc: "public-webpayments-ig@w3.org" <public-webpayments-ig@w3.org>
Received on Saturday, 25 March 2017 21:22:46 UTC
Hi Tony, I can't answer on behalf of the wider group. As for Blockcerts, the interest is Bitcoin compatibility, although the Blockcerts specification doesn't require it. Per Manu's advice, I'm moving the PR to the correct source repo: https://github.com/blockchain-certificates/jsonld.js I am curious to hear others' responses to your question. - Kim On Fri, Mar 24, 2017 at 3:11 PM Tony Arcieri <bascule@gmail.com> wrote: I'm sorry if this is a sidebar in this issue, but is there a particular reason why you're using Koblitz signatures and, perhaps more concerning, why you're using ECDSA? The CFRG has selected Ed25519 (RFC 8032) as the next-generation high security curve. If performance is the concern, more modern alternatives like FourQ will exceed e.g. secp256k1's performance. The only reason to choose secp256k1 (I assume?) today is compatibility with Bitcoin. But that's less concerning than this: New protocols should NOT be using ECDSA. ECDSA has repeatedly failed in practice, has many failure modes modern signature schemes are not vulnerable to, and now that the Schnorr patents have expired is completely obsolete. -- Tony Arcieri
Received on Saturday, 25 March 2017 21:22:46 UTC