Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Explore the potential for using threshold signatures with the Identity Key #101

Open
Tracked by #292
frankhinek opened this issue Jan 19, 2024 · 0 comments
Open
Tracked by #292

Comments

@frankhinek
Copy link
Contributor

I was considering recovery options, particularly for organizations with stringent requirements. One experimental idea to explore is the use of Schnorr threshold signatures for the identity key.

This approach is not as commonly adopted for Ed25519/Ed448 compared to NIST and SECG elliptic curve algorithms. However, there is some research and development in this area. For instance, this IETF draft & reference implementation by Hallam-Baker on threshold signatures and a detailed explanation of threshold Ed25519 in the context of resilience and trust offer valuable insights.

A quick and non-exhaustive search revealed several implementations of Schnorr signatures on the Ed25519 curve for both single and threshold numbers of signers (FROST):

Implementing Schnorr threshold signatures could enhance the security and recovery capabilities of DID DHT identities, aligning with the needs of organizations requiring higher levels of identity assurance and recovery options. In theory, it shouldn't require any spec changes since AFAIK, Schnorr threshold signatures can compatible with RFC8032 signature verification.

Time permitting, we should explore the potential more thoroughly.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants