BigToBytes takes an *amcl.BIG and returns a []byte representation.

CreateCRI creates the Credential Revocation Information for a certain time period (epoch).

Ecp2FromProto converts a proto struct *ECP2 into an *amcl.ECP2.

Ecp2ToProto converts a *amcl.ECP2 into the proto struct *ECP2.

EcpFromProto converts a proto struct *ECP into an *amcl.ECP.

EcpToProto converts a *amcl.ECP into the proto struct *ECP.

GenerateLongTermRevocationKey generates a long term signing key that will be used for revocation.

GetRand returns a new *amcl.RAND with a fresh seed.

HashModOrder hashes data into 0, ..., GroupOrder-1.

MakeNym creates a new unlinkable pseudonym.

Modadd takes input BIGs a, b, m, and returns a+b modulo m.

Modsub takes input BIGs a, b, m and returns a-b modulo m.

NewCredential issues a new credential, which is the last step of the interactive issuance protocol All attribute values are added by the issuer at this step and then signed together with a commitment to the user's secret key from a credential request.

NewCredRequest creates a new Credential Request, the first message of the interactive credential issuance protocol (from user to issuer).

NewIssuerKey creates a new issuer key pair taking an array of attribute names that will be contained in credentials certified by this issuer (a credential specification) See http://eprint.iacr.org/2016/663.pdf Sec.

NewSignature creates a new idemix pseudonym signature.

NewSignature creates a new idemix signature (Schnorr-type signature) The []byte Disclosure steers which attributes are disclosed: if Disclosure[i] == 0 then attribute i remains hidden and otherwise it is disclosed.

RandModOrder returns a random element in 0, ..., GroupOrder-1.

VerifyEpochPK verifies that the revocation PK for a certain epoch is valid, by checking that it was signed with the long term revocation key.

WBBKeyGen creates a fresh weak-Boneh-Boyen signature key pair (http://ia.cr/2004/171).

WBBSign places a weak Boneh-Boyen signature on message m using secret key sk.

WBBVerify verifies a weak Boneh-Boyen signature sig on message m with public key pk.

FieldBytes is the bytelength of the group order.

GenG1 is a generator of Group G1.

GenG2 is a generator of Group G2.

GenGT is a generator of Group GT.

GroupOrder is the order of the groups.

Credential specifies a credential object that consists of a, b, e, s - signature value attrs - attribute values.

CredRequest specifies a credential request object that consists of nym - a pseudonym, which is a commitment to the user secret issuer_nonce - a random nonce provided by the issuer proof_c, proof_s - a zero-knowledge proof of knowledge of the user secret inside Nym.

ECP is an elliptic curve point specified by its coordinates ECP corresponds to an element of the first group (G1).

ECP2 is an elliptic curve point specified by its coordinates ECP2 corresponds to an element of the second group (G2).

IssuerKey specifies an issuer key pair that consists of ISk - the issuer secret key and IssuerPublicKey - the issuer public key.

IssuerPublicKey specifies an issuer public key that consists of attribute_names - a list of the attribute names of a credential issued by the issuer h_sk, h_rand, h_attrs, w, bar_g1, bar_g2 - group elements corresponding to the signing key, randomness, and attributes proof_c, proof_s compose a zero-knowledge proof of knowledge of the secret key hash is a hash of the public key appended to it.

NonRevocationProof contains proof that the credential is not revoked.

NymSignature specifies a signature object that signs a message with respect to a pseudonym.

Signature specifies a signature object that consists of a_prime, a_bar, b_prime, proof_* - randomized credential signature values and a zero-knowledge proof of knowledge of a credential and the corresponding user secret together with the attribute values nonce - a fresh nonce used for the signature nym - a fresh pseudonym (a commitment to to the user secret).