BitcoinCash/specification
1
Fork 0
Code Issues Pull Requests Releases Activity

Merge remote-tracking branch 'verde/master'

Browse Source
This commit is contained in:
TomZ
2021-05-29 18:00:01 +02:00
parent 5713d9c480 1e73c65b87
commit fbf72937cb
53 changed files with 2701 additions and 198 deletions
Download Patch File Download Diff File Expand all files Collapse all files
protocol/forks/2019-05-15-schnorr.md
+10 -10
View File
@@ -1,12 +1,12 @@
# 2019-MAY-15 Schnorr Signature specification
layout: specification
title: 2019-MAY-15 Schnorr Signature specification
date: 2019-02-15
category: spec
activation: 1557921600
version: 0.5
author: Mark B. Lundeberg
layout: specification
title: 2019-MAY-15 Schnorr Signature specification
date: 2019-02-15
category: spec
activation: 1557921600
version: 0.5
author: Mark B. Lundeberg
# Summary
@@ -36,7 +36,7 @@ The other two ECDSA opcodes, `OP_CHECKMULTISIG` and `OP_CHECKMULTISIGVERIFY`, wi
# Motivation
(for more detail, see Motivation and Applications sections of [Pieter Wuille's Schnorr specification](https://github.com/sipa/bips/blob/bip-schnorr/bip-schnorr.mediawiki))
(for more detail, see Motivation and Applications sections of [Pieter Wuille's Schnorr specification](/protocol/forks/schnorr/bip-schnorr-archive))
Schnorr signatures have some slightly improved properties over the ECDSA signatures currently used in bitcoin:
@@ -79,7 +79,7 @@ The formerly supported ECDSA hybrid keys (see [X9.62 §4.3.6](citeseerx.ist.psu.
## Signature verification algorithm
We follow essentially what is an older variant of Pieter Wuille's [BIP-Schnorr](https://github.com/sipa/bips/blob/bip-schnorr/bip-schnorr.mediawiki).
We follow essentially what is an older variant of Pieter Wuille's [BIP-Schnorr](/protocol/forks/schnorr/bip-schnorr-archive).
Notable design choices:
* Operates on secp256k1 curve.
@@ -245,7 +245,7 @@ Curiously, however, aggregate signatures cannot be "second-party" malleated; pro
The Bitcoin ABC implementation involved a number of Diffs: https://reviews.bitcoinabc.org/T527
Pieter Wuille's specification comes with a handy set of test vectors for checking cryptographic corner cases: https://github.com/sipa/bips/blob/bip-schnorr/bip-schnorr/test-vectors.csv
Pieter Wuille's specification comes with a handy set of test vectors for checking cryptographic corner cases: [test-vectors.csv](/protocol/forks/schnorr/bip-schnorr/test-vectors.csv)
# Acknowledgements