Skip to content

beritani/ring-signatures

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

ring-signatures

This is a pure javascript implementation of ring signatures using the elliptic curve Ed25519 and Keccak for hashing.

N.B: See disclaimer about using this for anything other than testing and learning.

Ring Signatures

Ring signatures allow multiple members of a group to sign a message without revealing which member actually signed it.

Types of ring signatures:

  • SAG (Spontaneous Anonymous Group)
  • bLSAG (Back’s Linkable Spontaneous Anonymous Group)
  • MLSAG (Multilayer Linkable Spontaneous Anonymous Group)
  • CLSAG (Concise Linkable Spontaneous Anonymous Group)

Usage

SAG & bLSAG

import { ed25519 as ed } from "@noble/curves/ed25519";
import * as SAG from "ring-signatures/SAG";
import * as bLSAG from "ring-signatures/bLSAG";
import { Bytes } from "ring-signatures/utils";

// Create Message and Key Pair
const msg = new TextEncoder().encode("Hello World!");
const privateKey = ed.utils.randomPrivateKey();
const publicKey = ed.getPublicKey(privateKey);

// Create Ring
const secretIndex = 2;
const ringLength = 10;

const ring = new Array<Bytes>(ringLength);
for (let i = 0; i < ringLength; i++) {
  // Create Random Public Keys for Testing
  ring[i] = ed.getPublicKey(ed.utils.randomPrivateKey());
}

// Set Public Key
ring[secretIndex] = publicKey;

// SAG Signature
const sagSig = SAG.sign(msg, privateKey, ring, secretIndex);
const sagValid = SAG.verify(sagSig, msg, ring);

// bLSAG Signature and Key Image
const { sig: blsagSig, keyImage } = bLSAG.sign(msg, privateKey, ring, secretIndex);
const blsagValid = bLSAG.verify(blsagSig, msg, ring, keyImage);

MLSAG

import { ed25519 as ed } from "@noble/curves/ed25519";
import * as MLSAG from "ring-signatures/MLSAG";
import { Bytes } from "ring-signatures/utils";

// Create Message and Key Pairs
const msg = new TextEncoder().encode("Hello World!");

const privateKeys: Bytes[] = [];
for (let j = 0; j < 5; j++) {
  privateKeys.push(ed.utils.randomPrivateKey());
}
const publicKeys = privateKeys.map((k) => ed.getPublicKey(k));

// Create Ring
const secretIndex = 2;
const ringLength = 10;

const ring: Bytes[][] = [];
for (let i = 0; i < ringLength; i++) {
  ring[i] = [];
  for (let j = 0; j < privateKeys.length; j++) {
    ring[i].push(ed.getPublicKey(ed.utils.randomPrivateKey()));
  }
}

// Set Public Key
ring[secretIndex] = publicKeys;

// MLSAG Signature
const { sig, keyImages } = MLSAG.sign(msg, privateKeys, ring, secretIndex);
const valid = MLSAG.verify(sig, msg, ring, keyImages);

Resources

Attribution

This library uses the noble cryptographic libraries by @paulmillr. Huge thanks!

Disclaimer

I am a Software Engineer not a Cryptographer.

This library is only to aid in the understanding and the application of ring signatures. It is almost certain to contain errors, inaccuracies and incorrect implementations.

License

MIT License (MIT). Copyright (c) 2023 Sean N. (https://seann.co.uk)

See LICENSE.

Releases

No releases published

Packages

No packages published