pub fn assert_checksig
[
N : Nat
]
( z : list[bool[2] $post @prover] $pre @public,
pk : ECPointNZ[N, $post, @prover] $pre @public,
S : ECPointNZ[N, $post, @prover] $pre @public,
fixpowers : list[list[UECPointNZ[@public] $pre @public] $pre @public] $pre @public,
ref sizeasserters : list[SizeAsserter[N, $post, @prover] $pre @public] $pre @public
)
-> () $pre @public
where
Field[N],
Convertible[2,N]
This function can be used to check that an ECDSA signature, defined over the P-384 curve, is valid. The arguments to the function are (1) the digest of the message that has been signed, given as the sequence of booleans (i.e. bits) over modulus 2, (2) the public key, which is a point on the elliptic curve, given as a pair of big integers (see
BigInt.zksc), (3) the signature, which is a pair of exponents, given as a pair of big integers, (4) some precomputed powers of the generator of the elliptic curve group, and (5) the size asserters. The precomputed powers are computed with the functioncompute_fixpowersin this module. The function asserts that the signature verifies successfully. The function has been tested (only) with the modulusNfor the arithmetic circuit being equal to the Mersenne prime M61.
pub fn compute_fixpowers
()
-> list[list[UECPointNZ[@public] $pre @public] $pre @public] $pre @public
Computes certain powers of the generator of the P-384 elliptic curve group. These powers are used as constants during the computations for the ECDSA signature verification. One may invoke
compute_fixpowersonce, and use its result for the verification of several signatures.