zk-token-sdk: constant time equality check for elgamal and aes key derivation #27364

samkim-crypto · 2022-08-24T07:36:20Z

Problem

Authenticated encryption and ElGamal secret key can be derived from the signing key for easier key management. Currently, the key derivation function runs in non-constant-time since it uses the vanilla bit-wise equality check.

Summary of Changes

Use the constant time equality provided by the subtle crate for key derivation.

…y derivation

…rivation (#27364) zk-token-sdk: use constant time equality check for elgamal and aes key derivation (cherry picked from commit 5e8b8ab)

…rivation (backport #27364) (#27491) zk-token-sdk: constant time equality check for elgamal and aes key derivation (#27364) zk-token-sdk: use constant time equality check for elgamal and aes key derivation (cherry picked from commit 5e8b8ab) Co-authored-by: samkim-crypto <[email protected]>

zk-token-sdk: use constant time equality check for elgamal and aes ke…

694a568

…y derivation

samkim-crypto merged commit 5e8b8ab into solana-labs:master Aug 24, 2022

samkim-crypto added the v1.11 label Aug 31, 2022

mergify bot mentioned this pull request Aug 31, 2022

zk-token-sdk: constant time equality check for elgamal and aes key derivation (backport #27364) #27491

Merged

samkim-crypto deleted the zk-token-sdk/auth-encryption-constant-time branch December 1, 2022 00:34

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

zk-token-sdk: constant time equality check for elgamal and aes key derivation #27364

zk-token-sdk: constant time equality check for elgamal and aes key derivation #27364

samkim-crypto commented Aug 24, 2022

zk-token-sdk: constant time equality check for elgamal and aes key derivation #27364

zk-token-sdk: constant time equality check for elgamal and aes key derivation #27364

Conversation

samkim-crypto commented Aug 24, 2022

Problem

Summary of Changes