Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

daphne_worker: Stabilize the PRF for internal use #390

Merged
merged 1 commit into from
Sep 13, 2023
Merged

daphne_worker: Stabilize the PRF for internal use #390

merged 1 commit into from
Sep 13, 2023

Conversation

cjpatton
Copy link
Contributor

@cjpatton cjpatton commented Sep 7, 2023
edited
Loading

Closes #266.

We currently use cSHAKE128 for deriving ReportsPending and ReportsProcessed shards and for computing the collection job ID for DAP-02. This comes from prio::vdaf::prg::PrgSha3. This API is not stable: the algorithm it uses depends on the VDAF version used, and we have not settled on which XOF to use for VDAF. (In VDAF-07 we have replaced cSHAKE128 with SHAKE128.) To avoid breaking changes for our internal use cases, use ring::hmac::HMAC_SHA256 instead.

The recommended key size for this PRF is 32 bytes. Accordingly, rotate the keys in daphne_worker_test/wrangler.toml.

@cjpatton cjpatton marked this pull request as ready for review September 7, 2023 18:04
mendess
mendess approved these changes Sep 13, 2023
View reviewed changes
daphne_worker/src/config.rs Outdated Show resolved Hide resolved
@cjpatton
daphne_worker: Stabilize the PRF for internal use
290a5fa 
We currently use cSHAKE128 for deriving ReportsPending and
ReportsProcessed shards and for computing the collection job ID for
DAP-02. This comes from `prio::vdaf::prg::PrgSha3`. This API is not
stable: the algorithm it uses depends on the VDAF version used, and we
have not settled on which XOF to use for VDAF. (In VDAF-07 we have
replaced cSHAKE128 with SHAKE128.) To avoid breaking changes for our
internal use cases, use `ring::hmac::HMAC_SHA256` instead.

The recommended key size for this PRF is 32 bytes. Accordingly, rotate
the keys in daphne_worker_test/wrangler.toml.
@cjpatton cjpatton force-pushed the cjpatton/reports-processed-hash branch from 065ee2f to 290a5fa Compare September 13, 2023 20:21
@cjpatton cjpatton merged commit 91df0c4 into main Sep 13, 2023
4 checks passed
@cjpatton cjpatton deleted the cjpatton/reports-processed-hash branch September 13, 2023 20:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mendess mendess mendess approved these changes

@armfazh armfazh Awaiting requested review from armfazh armfazh is a code owner

@bhalleycf bhalleycf Awaiting requested review from bhalleycf bhalleycf is a code owner

@captain-mota captain-mota Awaiting requested review from captain-mota

@chris-wood chris-wood Awaiting requested review from chris-wood

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Stabilize the PRF we use for internal purposes
2 participants
@cjpatton @mendess