Anthony Scarpino
Anthony Scarpino
Thanks for moving the conversion of R and A from the java code into the intrinsic. That certainly reduced the footprint on the java code with regard to performance and...
> If an implementation uses uniformly distributed k's for DSA and ECDSA and does not leak timing information about the nonce then the test selects subsets of signatures with uniformly...
In `ECOperations.java`, if I understand this correctly, it is to replace the existing `PointMultiplier` with montgomery-based PointMuliplier. But when I look at the code, I see both are still options....
> > In `ECOperations.java`, if I understand this correctly, it is to replace the existing `PointMultiplier` with montgomery-based PointMuliplier. But when I look at the code, I see both are...
Did you see the same performance improvement with specjvm2008::crypto.aes? I believe that should be running through this code as well unless there is something particular with RSA or any other...
Is `volatile` a known performance decelerator? I don't see any source control history for that part of the code, so I can only speculate at `previousKey` was to improve benchmarking....
Why is the `algorithm` necessary for this new method? Couldn't the new SecretKey take the algorithm from the original SecretKey stored in the Cipher object?
> One use case for this method is HPKE key export. Obviously, the exported key won't have algorithm name being "HPKE". If `Cipher::init` is passed an AES SecretKey, wouldn't the...
If this is an HPKE operation, shouldn't it be part of an HPKE API? Why part of Cipher?