Expand description
This module defines the Client
and Server
functionality for a
puncturable partially oblivious pseudorandom function (PPOPRF).
The POPRF that is used is very similar to the design of Tyagi et al., but where H_3 is replaced with a puncturable PRF evaluation (over a small input domain). This allows puncturing metadata tags from PPOPRF server secret keys, which in turn gives forward-security guarantees related to the pseudorandomness of evaluations received by clients.
This construction is primarily used in the STAR protocol for providing secure randomness to clients.
Re-exports
pub use crate::PPRFError;