📅 Original date posted:2020-02-24
📝 Original message:On Sun, 2020-02-23 at 02:27 -0500, Erik Aronesty via bitcoin-dev wrote:
> > Thus, two-phase MuSig is potentially unsafe.
> > https://eprint.iacr.org/2018/417.pdf describes the argument.
>
> One solution is to add a signature timeout to the message (say a
> block height) .
>
> A participant refuses to sign if that time is too far in the future,
> or is at all in the past, or if a message M is the same as any
> previous message within that time window.
>
> Seems to resolve the attacks on 2 round musig.
I don't understand this. Can you elaborate?
Best,
Tim
Tim Ruffing [ARCHIVE] /
npub1cm…dwkls
2023-06-07 18:23:01
in reply to nevent1q…c85m
Author Public Key
npub1cmt6gqyfw3sdngkq0wadtpe3kmgyyeld6ad0g2h5tar3kpzcrmpqddwklsPublished at
2023-06-07 18:23:01Event JSON
{
"id": "a2a2f40883aca7359ab5d52db12d552b94cdf75f4d73a280c5501e2a89a5a260",
"pubkey": "c6d7a400897460d9a2c07bbad58731b6d04267edd75af42af45f471b04581ec2",
"created_at": 1686162181,
"kind": 1,
"tags": [
[
"e",
"e8c6c65caac2b096c8c4e591cab5884fbe40d2edc8cf79af0998c4eb4ef34ad3",
"",
"root"
],
[
"e",
"1e094092991a77272adf62377d343c399320270711f87a906e6146fe192efe8c",
"",
"reply"
],
[
"p",
"22944ce1e29904e3826d25013a614e4665693ec514003efacc1b7586e8e5d0aa"
]
],
"content": "📅 Original date posted:2020-02-24\n📝 Original message:On Sun, 2020-02-23 at 02:27 -0500, Erik Aronesty via bitcoin-dev wrote:\n\u003e \u003e Thus, two-phase MuSig is potentially unsafe.\n\u003e \u003e https://eprint.iacr.org/2018/417.pdf describes the argument.\n\u003e \n\u003e One solution is to add a signature timeout to the message (say a\n\u003e block height) . \n\u003e \n\u003e A participant refuses to sign if that time is too far in the future,\n\u003e or is at all in the past, or if a message M is the same as any\n\u003e previous message within that time window.\n\u003e \n\u003e Seems to resolve the attacks on 2 round musig.\n\nI don't understand this. Can you elaborate?\n\nBest,\nTim",
"sig": "6917259f0958bdae94485b52b522a7ab30dd62e337efef171956c9dd7c10578e8849cef5eae8ef4de709c37bb88745498a2604c07b649d5a1e1cf4cbad4cc30c"
}