Thread - Nostr Hypermedia

yes, Polkadot uses sr25519 (ed25519 but with schnorr signatures) and Monero uses ed25519. sr25519 is just objectively a much better signing scheme, but Polkadot is otherwise unremarkable. ed25519 is a standard choice for the extremely paranoid, as SEC (creators of secp256k1) are an arm of Certicom which is probably just fucking filled with CSIS spooks. so there are many good arguments as to why a use of Bernstein and Lange's Edwards curve should be preferred for the security and privacy conscious.

↑ Parent

Replies (2)

weev 2 days ago

if you are laughing at such anti-institutional paranoia, there was an actual incident where the United States NIST was allowed to backdoor an elliptic curve based algorithm, Dual_EC_DRBG, to compromise targets of the United States. This lead to many people abandoning large swaths of NIST curves, including the very popular secp521r1. It's not totally out of left field. EC stuff is spooky and it is hard to say exactly why these institutions picked a specific curve. They employ the brightest minds in the world -- maybe they know something we don't.

1 replies ↓

semisol semisol@nostr.land 2 days ago

My interpretation of that post was non-secp256k1 *Nostr keys*… I love Ed25519 and am still somewhat pissed Nostr doesn’t use it

2 replies ↓