Struct frost_core::batch::Verifier

source · 
pub struct Verifier<C: Ciphersuite> { /* private fields */ }
Expand description

A batch verification context.

Implementations§

source§

impl<C> Verifier<C>where C: Ciphersuite,

source

pub fn new() -> Verifier<C>

Constructs a new batch verifier.

source

pub fn queue<I: Into<Item<C>>>(&mut self, item: I)

Queues an Item for verification.

source

pub fn verify<R: RngCore + CryptoRng>(self, rng: R) -> Result<(), Error<C>>

Performs batch verification, returning Ok(()) if all signatures were valid and Err otherwise.

The batch verification equation is:

h_G * -[sum(z_i * s_i)]P_G + sum([z_i]R_i + [z_i * c_i]VK_i) = 0_G

which we split out into:

h_G * -[sum(z_i * s_i)]P_G + sum([z_i]R_i) + sum([z_i * c_i]VK_i) = 0_G

so that we can use multiscalar multiplication speedups.

where for each signature i,

  • VK_i is the verification key;
  • R_i is the signature’s R value;
  • s_i is the signature’s s value;
  • c_i is the hash of the message and other data;
  • z_i is a random 128-bit Scalar;
  • h_G is the cofactor of the group;
  • P_G is the generator of the subgroup;

As follows elliptic curve scalar multiplication convention, scalar variables are lowercase and group point variables are uppercase. This does not exactly match the RedDSA notation in the protocol specification §B.1.

Trait Implementations§

source§

impl<C> Default for Verifier<C>where C: Ciphersuite,

source§

fn default() -> Self

Returns the “default value” for a type. Read more

Auto Trait Implementations§

§

impl<C> RefUnwindSafe for Verifier<C>where <<C as Ciphersuite>::Group as Group>::Element: RefUnwindSafe, <<<C as Ciphersuite>::Group as Group>::Field as Field>::Scalar: RefUnwindSafe,

§

impl<C> Send for Verifier<C>where <<C as Ciphersuite>::Group as Group>::Element: Send, <<<C as Ciphersuite>::Group as Group>::Field as Field>::Scalar: Send,

§

impl<C> Sync for Verifier<C>where <<C as Ciphersuite>::Group as Group>::Element: Sync, <<<C as Ciphersuite>::Group as Group>::Field as Field>::Scalar: Sync,

§

impl<C> Unpin for Verifier<C>where <<C as Ciphersuite>::Group as Group>::Element: Unpin, <<<C as Ciphersuite>::Group as Group>::Field as Field>::Scalar: Unpin,

§

impl<C> UnwindSafe for Verifier<C>where <<C as Ciphersuite>::Group as Group>::Element: UnwindSafe, <<<C as Ciphersuite>::Group as Group>::Field as Field>::Scalar: UnwindSafe,

Blanket Implementations§

source§

impl<T> Any for Twhere T: 'static + ?Sized,

source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
source§

impl<T> Borrow<T> for Twhere T: ?Sized,

const: unstable · source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
source§

impl<T> BorrowMut<T> for Twhere T: ?Sized,

const: unstable · source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
source§

impl<T> From<T> for T

const: unstable · source§

fn from(t: T) -> T

Returns the argument unchanged.

source§

impl<T, U> Into<U> for Twhere U: From<T>,

const: unstable · source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

source§

impl<T, U> TryFrom<U> for Twhere U: Into<T>,

§

type Error = Infallible

The type returned in the event of a conversion error.
const: unstable · source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
source§

impl<T, U> TryInto<U> for Twhere U: TryFrom<T>,

§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
const: unstable · source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.