The highest tagged major version is v3.

key

package

v1.0.0 Latest Latest Go to latest Published: May 17, 2021 License: MIT Imports: 6 Imported by: 5

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/iotaledger/iota.go

Links

Open Source Insights

Documentation ¶

Overview ¶

Package key provides functions to derive private keys from the provided entropy, e.g. subseed.

For the IOTA W-OTS, private keys need to be secLvl*6561 trits long. As a 243-trit entropy is used to deterministically derive the key, this entropy needs to be securely extended to the desired length.

Given a cryptographic ternary sponge construction sponge, we can use sponge as an extendable-output function to derive the key:

key := make([]Trit, secLvl*6561)
sponge.Absorb(entropy)
sponge.Squeeze(key)

However, Kerl is not a true cryptographic sponge construction as its used capacity is 0 and every 243-trit block of its output deterministically depends only on the previous block. This breaks the security of the W-OTS. In oder to use the Keccak sponge construction, we must use the SHAKE extendable-output function producing a digest of arbitrary length and convert the result to ternary:

shake.Absorb(convertToBytes(entropy))
for len(key) < secLvl*6561 {
	bytes := make([]byte, 48)
	shake.Squeeze(bytes)
	key = append(key, convertToTrits(bytes))
}

convertToBytes converts a 243-trit balanced ternary integer (little-endian) into a signed 384-bit integer (big-endian) and vice versa. They are defined in more detail here: https://github.com/iotaledger/kerl/blob/master/IOTA-Kerl-spec.md#trits---bytes-encoding

This package implements both options for the key derivation Sponge and Shake, where Sponge should only be used to preserve backward compatibility.

Index ¶

func Shake(entropy Trits, securityLevel SecurityLevel) (Trits, error)
func Sponge(entropy Trits, securityLevel SecurityLevel, spongeFunc sponge.SpongeFunction) (Trits, error)deprecated

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func Shake ¶

func Shake(entropy Trits, securityLevel SecurityLevel) (Trits, error)

Shake derives a private key of the given securityLevel from entropy using the SHAKE256 extendable-output function. The entropy must be a slice of exactly 243 trits where the last trit is zero. Shake derives its security assumptions from the properties of the underlying SHAKE function.

func Sponge deprecated

func Sponge(entropy Trits, securityLevel SecurityLevel, spongeFunc sponge.SpongeFunction) (Trits, error)

Sponge derives a private key of the given securityLevel from entropy using the provided ternary sponge construction. The entropy must be a slice of exactly 243 trits.

Deprecated: Sponge only generates secure keys for sponge constructions, but Kerl is not a true sponge construction. Consider using Shake instead or Sponge with Curl. In case that Kerl must be used in Sponge, it must be assured that no chunk of the private key is ever revealed, as this would allow the reconstruction of successive chunks (also known as "M-bug"). This function only allows the usage of Kerl to provide compatibility to the currently used key derivation.

Types ¶

This section is empty.

Source Files ¶

View all Source files

key.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL