The above draft has expired. However, if there is still interest in it,
the EdDSA specification will need to be updated based on findings in [1]
and [2]. An erratum to [3] has been filed [4]. Libsodium seems to offer
best checks for batch verification. Currently testing other libraries
that offer support for EdDSA.
1) Chalkias, Garillot, and Nikolaenko "Taming the many EdDSAs"
https://eprint.iacr.org/2020/1244
2) Brendel, Cremers, Jackson, and Zhao "The Provable Security of
Ed25519: Theory and Practice" https://eprint.iacr.org/2020/823
3) https://datatracker.ietf.org/doc/html/rfc8032
4) https://www.rfc-editor.org/errata_search.php?rfc=8032&rec_status=0
_______________________________________________
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls
