Determine whether or not to replace CryptoKit for signing transactions and messages
bisgardo opened this issue · 1 comments
bisgardo commented
Apple's CryptoKit implementation of Ed25519 (Curve25519.Signing) does not produce deterministic signatures.
There has been some concern internally about whether or not this is a problem.
Alternatives to consider:
swift-crypto- official Apple library, open sourceCryptoSwift- unofficial but very popular, open source
tschudid commented
This should be fine. The non-determinism is likely to protect against fault-attacks. See https://www.ietf.org/id/draft-irtf-cfrg-det-sigs-with-noise-03.html for more details on this type of "hedged" signatures.