Great point they can just interpolate existing keys, but yes i believe the security is weakened - maybe ok in certain contexts. By omitting the commitment round, you allow for a misbehaving participant to bias the distribution of key generation outcomes by selectively complaining/failing (mentioned in FROST paper sec 2.3).
conduition (npub1l6u…zvtg) thanks again for these great posts , wizard_honey_badger (npub160t…yjc9) you might be interested in checking them out:
https://conduition.io/cryptography/shamir/
nick
npub1j8…g26k2
2024-02-13 04:04:16
in reply to nevent1q…z5cv
Author Public Key
npub1j8d6h8mzvc8f2fvysrf09nlkmn7m2ylj32zl5na4tm5e8fd5dqysrg26k2Published at
2024-02-13 04:04:16Event JSON
{
"id": "54acc6ed25ddfee9638c3a599703a5ea6150b939d5e38e8a1db4bc50029283ea",
"pubkey": "91dbab9f62660e95258480d2f2cff6dcfdb513f28a85fa4fb55ee993a5b46809",
"created_at": 1707797056,
"kind": 1,
"tags": [
[
"p",
"feb842e2e624cb58e364f8f7cb363c03407be9519ad48326f518f976b3551059",
"",
"mention"
],
[
"p",
"d3d74124ddfb5bdc61b8f18d17c3335bbb4f8c71182a35ee27314a49a4eb7b1d",
"",
"mention"
],
[
"e",
"a4e04255b4c5aa77d5cf587d4652126c47d068e3800d88ca425d911b433f9a42",
"",
"root"
],
[
"e",
"c694c219086e6a62d8e8b3869af261a5a1d2f72ceceaf6ee0e3429682acb60b0",
"",
"reply"
],
[
"p",
"91dbab9f62660e95258480d2f2cff6dcfdb513f28a85fa4fb55ee993a5b46809"
],
[
"p",
"d987084c48390a290f5d2a34603ae64f55137d9b4affced8c0eae030eb222a25"
],
[
"p",
"d3d74124ddfb5bdc61b8f18d17c3335bbb4f8c71182a35ee27314a49a4eb7b1d"
]
],
"content": "Great point they can just interpolate existing keys, but yes i believe the security is weakened - maybe ok in certain contexts. By omitting the commitment round, you allow for a misbehaving participant to bias the distribution of key generation outcomes by selectively complaining/failing (mentioned in FROST paper sec 2.3).\n nostr:npub1l6uy9chxyn943cmylrmukd3uqdq8h623nt2gxfh4rruhdv64zpvsx6zvtg thanks again for these great posts , nostr:npub160t5zfxalddaccdc7xx30sentwa5lrr3rq4rtm38x99ynf8t0vwsvzyjc9 you might be interested in checking them out:\nhttps://conduition.io/cryptography/shamir/",
"sig": "fc80f813fd8b53271f3452400d33296f83247cb62305216c2b6af1d4d9779ba3d4eab702e2b4055acbc388080aa2820b797dcffcfe47e077bf97c3571f658f32"
}