-
slave_blockerhello good day,
-
slave_blockeri just finished translating zero to Monero from english to portuguese.
-
slave_blocker:)
-
slave_blockeri dont understand the most of the things of the 2nd part of ztm v2 .
-
slave_blockerso i guess i will force mzself to understand them so i can translate them and expose them verbatim...
-
slave_blockerso i started now with the transaction proofs...
-
slave_blocker(besides that all this was done in lyx and i guess i should somehow merge it to overleaf)
-
slave_blockerso when doing transaction proofs what is a domain separator?
-
slave_blocker(i am mucho more interested in randomx and bulletproofs, but i guess first things first)
-
UkoeHBslave_blocker: I'd say only ch8 is worth translating from the second part. Multisig is way outdated now, and txtangle is pretty impractical.
-
UkoeHBA domain separator is a string you append/prepend to a hash transcript (i.e. string of data to be hashed) so that the hash function behaves like a unique hash function. In practice it means if two separate use-cases of a hash function just so happen to hash the same data (e.g. elliptic curve point), then the output will be different.
-
slave_blockeroh i see
-
UkoeHBIt's considered modern best practice to always domain separate uses of a hash function, even if there are no known attacks/problems that can arise.
-
UkoeHBSome people even go beyond that and embed the transcript serialization details in the hash data (e.g. vector lengths, etc.).
-
moneromoooIt's basically a salt.