Verify initial ciphertext

[Wallman]

In the Signal X3DH protocol one of the steps of initiateKeyAgreement is:

An initial ciphertext encrypted with some AEAD encryption scheme using AD as associated data and using an encryption key which is either SK or the output from some cryptographic PRF keyed by SK.

I believe this is not done or mentioned here? I would love an example in the Usage section how that could be done, thanks!

[Wallman]

Also, shouldn't https://github.com/TICESoftware/X3DH/blob/main/Sources/X3DH/X3DH.swift#L75 rather append identityKeyPair.publicKey than prekey?

The Signal protocol says: AD = Encode(IKA) || Encode(IKB)

[Wallman]

@FabioTacke