From 4743182bf7e57b0ac3187db177eeb5c696432345 Mon Sep 17 00:00:00 2001 From: Paul Miller Date: Tue, 29 Aug 2023 12:36:11 +0000 Subject: [PATCH] README: update security section --- README.md | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/README.md b/README.md index 00602c1..8a92997 100644 --- a/README.md +++ b/README.md @@ -850,12 +850,12 @@ utils.equalBytes(Uint8Array.from([0xde]), Uint8Array.from([0xde])); The library has been independently audited: -- in Feb 2023 by [Trail of Bits](https://www.trailofbits.com): - [PDF](https://github.com/trailofbits/publications/blob/master/reviews/2023-01-ryanshea-noblecurveslibrary-securityreview.pdf). - The audit has been funded by [Ryan Shea](https://www.shea.io). - Audit scope was abstract modules `curve`, `hash-to-curve`, `modular`, `poseidon`, `utils`, `weierstrass`, - and top-level modules `_shortw_utils` and `secp256k1`. - See [changes since v0.7.3 audit](https://github.com/paulmillr/noble-curves/compare/0.7.3..main). +- in Feb 2023, by [Trail of Bits](https://www.trailofbits.com). See + [PDF](https://github.com/trailofbits/publications/blob/master/reviews/2023-01-ryanshea-noblecurveslibrary-securityreview.pdf) + and [changes since audited v0.7.3](https://github.com/paulmillr/noble-curves/compare/0.7.3..main). + - Scope: abstract modules `curve`, `hash-to-curve`, `modular`, `poseidon`, `utils`, `weierstrass` and + top-level modules `_shortw_utils` and `secp256k1` + - The audit has been funded by [Ryan Shea](https://www.shea.io) It is tested against property-based, cross-library and Wycheproof vectors, and has fuzzing by [Guido Vranken's cryptofuzz](https://github.com/guidovranken/cryptofuzz).