Struct DelegationToken 

pub struct DelegationToken {
    pub warrant: Vec<u8>,
    pub rw: Point,
    pub sw: Scalar,
    pub b_pub: Point,
}

Delegation token that authorizes a proxy to sign on behalf of the original signer

Fields

warrant: Vec<u8>

Warrant describing the delegation terms

rw: Point

Commitment point Rw = a*G

sw: Scalar

Signature scalar sw = a + e_w*x_A

b_pub: Point

Proxy’s public key (bound to prevent delegation transfer)

Implementations

impl DelegationToken

pub fn warrant_str(&self) -> Result<&str>

Get the warrant as a string slice if it’s valid UTF-8

pub fn warrant_string_lossy(&self) -> Cow<'_, str>

Get the warrant as a string, replacing invalid UTF-8 sequences

pub fn proxy_public_key(&self) -> &Point

Get the proxy’s public key

pub fn create(a_keys: &KeyPair, b_pub: &Point, warrant: &[u8]) -> Result<Self>

Create a delegation token authorizing a specific proxy

Arguments

• a_keys - Original signer’s key pair (only accepts non-proxy KeyPair type)
• b_pub - Proxy’s public key (cryptographically bound to prevent transfer)
• warrant - Bytes describing delegation terms

Returns

A new delegation token bound to the specific proxy

Errors

Returns an error if any cryptographic operation fails

Type Safety

This function only accepts KeyPair, not ProxyKeyPair, preventing proxy-to-proxy redelegation at compile time.

Examples found in repository

examples/demo.rs (line 25)

fn main() -> Result<()> {
    println!("=== Ristretto255 Proxy Signatures Demo ===\n");

    // 1) Key generation
    println!("1. Generating keys...");
    let a = KeyPair::new()?; // Original signer
    let b = KeyPair::new()?; // Proxy signer
    println!(
        "   A's public key: {}",
        Hex::encode_to_string(a.pk).unwrap()
    );
    println!(
        "   B's public key: {}",
        Hex::encode_to_string(b.pk).unwrap()
    );

    // 2) Delegation with warrant
    println!("\n2. Creating delegation...");
    let warrant = b"Proxy: B may sign for A for service XYZ until 2026-12-31";
    let token = DelegationToken::create(&a, &b.pk, warrant)?;
    if !token.verify(&a.pk)? {
        return Err(proxy_signatures::ProxySignatureError::InvalidDelegation);
    }
    println!("   Warrant: {}", std::str::from_utf8(warrant)?);
    println!("   Delegation token created and verified");

    // 3) Proxy key derivation
    println!("\n3. Deriving proxy keys...");
    let keys = proxy_signatures::derive_proxy_keys(&b, &a.pk, &token)?;
    let ctx = ProxyPublicContext {
        warrant: warrant.to_vec(),
        rw: token.rw,
        yp: keys.pk,
    };
    println!(
        "   Proxy public key YP: {}",
        Hex::encode_to_string(keys.pk).unwrap()
    );

    // 4) Proxy signs
    println!("\n4. Creating proxy signature...");
    let msg = b"Pay 10 units to Carol";
    let sig = proxy_signatures::proxy_sign(&keys.sk, msg)?;
    println!("   Message: {}", std::str::from_utf8(msg)?);
    println!("   Signature created");

    // 5) Verify proxy signature
    println!("\n5. Verifying proxy signature...");
    let valid = proxy_signatures::proxy_verify(&a.pk, &b.pk, msg, &sig, &ctx)?;
    println!("   Proxy signature valid? {}", valid);

    // 6) Test with wrong message
    println!("\n6. Testing with wrong message...");
    let wrong_msg = b"Pay 100 units to Carol";
    let invalid = proxy_signatures::proxy_verify(&a.pk, &b.pk, wrong_msg, &sig, &ctx)?;
    println!(
        "   Wrong message signature valid? {} (should be false)",
        invalid
    );

    // 7) Demonstrate revocation by tampering with warrant
    println!("\n7. Testing revocation (modified warrant)...");
    let revoked_ctx = ProxyPublicContext {
        warrant: b"REVOKED: Original warrant no longer valid".to_vec(),
        rw: ctx.rw,
        yp: ctx.yp,
    };
    let revoked = proxy_signatures::proxy_verify(&a.pk, &b.pk, msg, &sig, &revoked_ctx)?;
    println!(
        "   Signature with revoked warrant valid? {} (should be false)",
        revoked
    );

    println!("\n✅ All operations completed successfully!");

    Ok(())
}

pub fn verify(&self, a_pub: &Point) -> Result<bool>

Verify that a delegation token is valid for the given public key and proxy

Arguments

• a_pub - Original signer’s public key

Returns

true if the delegation is valid for this specific proxy, false otherwise

Errors

Returns an error if any cryptographic operation fails

Examples found in repository

examples/demo.rs (line 26)

fn main() -> Result<()> {
    println!("=== Ristretto255 Proxy Signatures Demo ===\n");

    // 1) Key generation
    println!("1. Generating keys...");
    let a = KeyPair::new()?; // Original signer
    let b = KeyPair::new()?; // Proxy signer
    println!(
        "   A's public key: {}",
        Hex::encode_to_string(a.pk).unwrap()
    );
    println!(
        "   B's public key: {}",
        Hex::encode_to_string(b.pk).unwrap()
    );

    // 2) Delegation with warrant
    println!("\n2. Creating delegation...");
    let warrant = b"Proxy: B may sign for A for service XYZ until 2026-12-31";
    let token = DelegationToken::create(&a, &b.pk, warrant)?;
    if !token.verify(&a.pk)? {
        return Err(proxy_signatures::ProxySignatureError::InvalidDelegation);
    }
    println!("   Warrant: {}", std::str::from_utf8(warrant)?);
    println!("   Delegation token created and verified");

    // 3) Proxy key derivation
    println!("\n3. Deriving proxy keys...");
    let keys = proxy_signatures::derive_proxy_keys(&b, &a.pk, &token)?;
    let ctx = ProxyPublicContext {
        warrant: warrant.to_vec(),
        rw: token.rw,
        yp: keys.pk,
    };
    println!(
        "   Proxy public key YP: {}",
        Hex::encode_to_string(keys.pk).unwrap()
    );

    // 4) Proxy signs
    println!("\n4. Creating proxy signature...");
    let msg = b"Pay 10 units to Carol";
    let sig = proxy_signatures::proxy_sign(&keys.sk, msg)?;
    println!("   Message: {}", std::str::from_utf8(msg)?);
    println!("   Signature created");

    // 5) Verify proxy signature
    println!("\n5. Verifying proxy signature...");
    let valid = proxy_signatures::proxy_verify(&a.pk, &b.pk, msg, &sig, &ctx)?;
    println!("   Proxy signature valid? {}", valid);

    // 6) Test with wrong message
    println!("\n6. Testing with wrong message...");
    let wrong_msg = b"Pay 100 units to Carol";
    let invalid = proxy_signatures::proxy_verify(&a.pk, &b.pk, wrong_msg, &sig, &ctx)?;
    println!(
        "   Wrong message signature valid? {} (should be false)",
        invalid
    );

    // 7) Demonstrate revocation by tampering with warrant
    println!("\n7. Testing revocation (modified warrant)...");
    let revoked_ctx = ProxyPublicContext {
        warrant: b"REVOKED: Original warrant no longer valid".to_vec(),
        rw: ctx.rw,
        yp: ctx.yp,
    };
    let revoked = proxy_signatures::proxy_verify(&a.pk, &b.pk, msg, &sig, &revoked_ctx)?;
    println!(
        "   Signature with revoked warrant valid? {} (should be false)",
        revoked
    );

    println!("\n✅ All operations completed successfully!");

    Ok(())
}

Trait Implementations

impl Clone for DelegationToken

fn clone(&self) -> DelegationToken

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for DelegationToken

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Display for DelegationToken

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl PartialEq for DelegationToken

fn eq(&self, other: &DelegationToken) -> bool

Tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl Eq for DelegationToken

impl StructuralPartialEq for DelegationToken