[Standards] OMEMO Key Agreement v2

Daniel Gultsch daniel at gultsch.de
Wed May 31 19:02:23 UTC 2017

2017-05-31 20:36 GMT+02:00 Remko Tronçon <remko at el-tramo.be>:
> - LibSignal-based clients convert their internal Curve25519 identity key to
> Ed25519 right before the device bundle publish IQ, and convert the peer key
> to Curve25519 when fetching the bundle IQ.
> - On device initialization, non-libsignal clients guarantee a keypair that
> LibSignal can handle by generating identity keypairs until the highest bit
> of the public key is set to 0 (there's a 1 in 2 chance).

Is the Curve25519 to Ed25519 conversion code available in a
significant number of liberally licensed crypto libraries?
If so I guess I could live with that.
(But I don't know if that has influence on the protocol audit.
Determining that goes beyond my limited crypto knowledge)


More information about the Standards mailing list