Why One Key Shouldn't Rule Them All: Threshold Signatures for the Rest of Us
3 days ago
- #security
- #cryptography
- #blockchain
- Private keys are a single point of failure in cryptographic systems.
- Threshold signatures split a private key across multiple parties, requiring a minimum number to cooperate for a valid signature.
- DKLS23 is a modern threshold ECDSA protocol that reduces communication rounds and latency compared to older protocols like GG18 and GG20.
- DKLS23 uses oblivious transfer instead of homomorphic encryption, making it more efficient and practical for mobile devices.
- In a 2-of-2 signing ceremony, parties generate a shared public key without revealing their individual secrets, producing a standard ECDSA signature.
- Threshold signatures enhance security by preventing a single compromised device or insider from forging signatures.
- DKLS23 is production-ready, works with secp256k1 (used by Bitcoin and Ethereum), and has low performance overhead.
- Silence Laboratories offers an open-source, audited Rust implementation of DKLS23 for production use.