Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Documentation on Cryptographic Parameters #232

Open
microstudi opened this issue Feb 10, 2022 · 3 comments
Open

Documentation on Cryptographic Parameters #232

microstudi opened this issue Feb 10, 2022 · 3 comments
Labels
contract: e-voting documentation Improvements or additions to documentation freeze

Comments

@microstudi
Copy link
Contributor

microstudi commented Feb 10, 2022

Some details of the cryptographic defaults used in the main library used to encrypt the election should be available for transparency and clarity.

The following parameters should have a link to where there are defined for easy checks:

The parameter p used to compute the modular arithmetic operations must be a prime number whose discrete logarithm is not solvable in an assumable time in image. This means that p -1 must have a large prime factor which makes the discrete logarithm problem difficult.

The size of this parameter p must be of 4096 bits

The parameter q must be a prime number which divides -1` and its length is 256 bits.

The parameter r must be computed as r=(p -1)/q

The parameter g must be a generator in image. This means that, in image, g can be expressed as a combination (under the group operation) of finitely many elements of the subset and their inverses.

The messages sent from Decidim server and to the BulletinBoard are signed using 4096-bit RSA keys and SHA-256 hashes.

Finally, since the system uses external libraries, links to the bug-reporting pages of those libraries should be available through the documentation.

@andreslucena andreslucena added the documentation Improvements or additions to documentation label Mar 1, 2022
@carolromero carolromero moved this to Issues BB in e-voting Sep 6, 2023
@paarals paarals added the freeze label Nov 30, 2023
@paarals
Copy link
Contributor

paarals commented Nov 30, 2023

we put the freeze tag because we don't have enough knowledge

@paarals
Copy link
Contributor

paarals commented Jan 2, 2024

As agreed with product on December 14, this task is discarded due to lack of resources. To be confirmed by @carolromero @andreslucena

@andreslucena
Copy link
Member

As agreed with product on December 14, this task is discarded due to lack of resources. To be confirmed by @carolromero @andreslucena

Confirmed. We'll leave this open though, as it's something that it's a nice to have that came from the auditory.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
contract: e-voting documentation Improvements or additions to documentation freeze
Projects
No open projects
Status: Issues BB
Development

No branches or pull requests

3 participants