I’ve created a NUMS key generator and validator following the proposed way in the BIP-0341: H + r*G. The thing that I like the most in this approach is that the resultant key does not looks like a NUMS yet you can prove by revealing r. And I might work on next steps to produce a valid signature without showing r as @sipa mentioned before
1 Like