SCSVS-CRYPTO-2
S6.2 Signature Verification
Control Objective
Implement cryptographic techniques that ensure the secure verification of signatures and compliance with standards to maintain the integrity of authenticated transactions.
S6.2.A Cryptographic Techniques for Authentication
| SCSVS VR ID |
Requirement |
L1 |
L2 |
L3 |
SWE |
| S6.2.A1 |
Ensure that cryptographic algorithms used for signature verification are secure and follow best practices. |
|
✓ |
✓ |
|
S6.2.B Standard Compliance (e.g., EIP-712)
| SCSVS VR ID |
Requirement |
L1 |
L2 |
L3 |
SWE |
| S6.2.B1 |
Verify that ECDSA signature handling functions, such as ECDSA.recover and ECDSA.tryRecover, properly manage signature formats to prevent signature malleability, especially when handling both traditional 65-byte and EIP-2098 compact signatures. |
|
✓ |
✓ |
|