Make Pedersen commitments commit to Contract id #181
Assignees
Labels
*consensus*
Issues affecting distributed concensus
enhancement
New feature or request
*security*
Issues affecting safety/security (include undefined behaviours)
Milestone
Comments
dr-orlovsky
added
enhancement
|
Closed in #182 |
github-project-automation
bot
moved this to Done
in Specification & reference implementation
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
secp256k1-zkp API assumes that Pedersen commitments commits not just to value and blinding factor, but also to some asset or contract id, which is a 32-byte hash. Right now for that purpose we just use fixed value which is a hash of uncompressed generator point G, but it makes much more sense to use Contract Id, which will in future allow better cross-contract interaction and batch verification.
From my understanding this change should not break backward compatibility since today none of contracts can have more than one asset. Shifting the "asset id" from one value (constant) to another (contract id) must still fulfill the
sum(inputs) = sum(outputs)requirement of Pedersen commitments due to homomorphic properties.The text was updated successfully, but these errors were encountered: