Skip to content

Commit

Permalink
Clarify bls aggregate warning
Browse files Browse the repository at this point in the history
  • Loading branch information
@K1li4nL
K1li4nL committed Sep 9, 2024
1 parent bc982b5 commit 4092ac2
Showing 1 changed file with 4 additions and 3 deletions.
7 changes: 4 additions & 3 deletions sign/bls/bls.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,11 +2,12 @@
// was introduced in the paper "Short Signatures from the Weil Pairing". BLS
// requires pairing-based cryptography.
//
// This version is vulnerable to rogue public-key attack and the
// new version of the protocol should be used to make sure a signature
// When using aggregated signatures, this version is vulnerable to rogue
// public-key attack.
// The new version of the protocol should be used to make sure a signature
// aggregate cannot be verified by a forged key. You can find the protocol
// in kyber/sign/bdn. Note that only the aggregation is broken against the
// attack and a later version will merge bls and asmbls.
// attack and for that reason, the code performing aggregation was removed.
//
// See the paper: https://crypto.stanford.edu/~dabo/pubs/papers/BLSmultisig.html
package bls
Expand Down

0 comments on commit 4092ac2

Please sign in to comment.