--- Log opened Fri Mar 15 00:00:16 2019
00:08 -!- luke-jr [~luke-jr@unaffiliated/luke-jr] has quit [Ping timeout: 250 seconds]
00:30 -!- luke-jr [~luke-jr@unaffiliated/luke-jr] has joined #secp256k1
02:50 < real_or_random> I was wondering whether it's a good idea to use an ephemeral blinding point (derived via a hash from the secret key) for blinding the ecmult_gen when signing and computing secret keys. this would not rely on the user calling _context_randomize and providing good randomness
06:30 -!- luke-jr [~luke-jr@unaffiliated/luke-jr] has quit [Ping timeout: 252 seconds]
07:15 -!- luke-jr [~luke-jr@unaffiliated/luke-jr] has joined #secp256k1
10:14 -!- luke-jr [~luke-jr@unaffiliated/luke-jr] has quit [Ping timeout: 245 seconds]
10:28 -!- luke-jr [~luke-jr@unaffiliated/luke-jr] has joined #secp256k1
12:14 < gmaxwell> real_or_random: know any way for that not to be slow? :P
12:16 < real_or_random> no :P I mean it's probably acceptable for normal signing applications but okay, I just missed that it's expensive
12:17 < gmaxwell> yeah, otherwise sure!
12:17 < sipa> yeah, it's 1.5 point decompressions on average
12:17 < sipa> or 2?
12:17 < sipa> it's 2
12:18 < real_or_random> yes 2
12:18 < gmaxwell> hm the blinding point doesn't need to be uniform, so I think we could make it one.
12:18 < sipa> does it not need to be on the curve?
12:18 < real_or_random> how do you make it one?
12:19 < sipa> i guess you could have a set of (say) 64 precomputed nums points, and then use a hash to select a random subset of them
12:20 < gmaxwell> I was thinking more along the lines of dettman's x-only ecdh.
12:20 < sipa> we still need to end up with a full point, no?
12:24 < gmaxwell> the xonly ecdh sets the point to X*(X^3+7), (X^3+7)^2
13:17 -!- instagibbs [~instagibb@pool-100-15-135-248.washdc.fios.verizon.net] has quit [Ping timeout: 246 seconds]
13:19 -!- instagibbs [~instagibb@pool-100-15-135-248.washdc.fios.verizon.net] has joined #secp256k1
18:03 -!- afk11 [~afk11@79.97.107.223] has joined #secp256k1
18:04 -!- afk11 [~afk11@79.97.107.223] has quit [Client Quit]
18:05 -!- afk11 [~afk11@79.97.107.223] has joined #secp256k1
18:05 -!- afk11 [~afk11@79.97.107.223] has quit [Changing host]
18:05 -!- afk11 [~afk11@unaffiliated/afk11] has joined #secp256k1
19:30 -!- afk11 [~afk11@unaffiliated/afk11] has quit [Remote host closed the connection]
--- Log closed Sat Mar 16 00:00:17 2019