π
Original date posted:2022-02-18
π Original message:On the topic of half aggregation, Chalkias et al. gave a convincing security
proof last year:
https://eprint.iacr.org/2021/350
As an aside, half aggregation is not exactly the scheme in the OP because that
one is insecure. This does not affect Zmn's conclusion and was already
pointed out in the original half aggregation thread:
https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2017-May/014306.html
It is required that each of the "s"-values are multiplied with a different
unpredictable value, for example like this:
https://github.com/ElementsProject/cross-input-aggregation/blob/master/slides/2021-Q2-halfagg-impl.org#schnorr-signature-half-aggregation-1
Jonas Nick [ARCHIVE] /
npub1atβ¦y3z5a
2023-06-07 23:04:32
in reply to nevent1qβ¦d6c4
Author Public Key
npub1at3pav59gkeqz9kegzqhk2v4j4r435x42ytf23pxs8crt74tuc8s2y3z5aPublished at
2023-06-07 23:04:32Event JSON
{
"id": "1a1cb929912c2893fe8d8d21075ce8166d63104850ea2369c168fd6d2417530e",
"pubkey": "eae21eb28545b20116d940817b2995954758d0d5511695442681f035faabe60f",
"created_at": 1686179072,
"kind": 1,
"tags": [
[
"e",
"5fe4c1ba6946d2f34766b22b464f89bbe95cc399bd5effb836c23d627bbd5700",
"",
"root"
],
[
"e",
"0b3e80e2c26d28e742b2caf673f269a82cfdd043373e93b52f8b78b87b5d9262",
"",
"reply"
],
[
"p",
"4505072744a9d3e490af9262bfe38e6ee5338a77177b565b6b37730b63a7b861"
]
],
"content": "π
Original date posted:2022-02-18\nπ Original message:On the topic of half aggregation, Chalkias et al. gave a convincing security\nproof last year:\nhttps://eprint.iacr.org/2021/350\n\nAs an aside, half aggregation is not exactly the scheme in the OP because that\none is insecure. This does not affect Zmn's conclusion and was already\npointed out in the original half aggregation thread:\nhttps://lists.linuxfoundation.org/pipermail/bitcoin-dev/2017-May/014306.html\n\nIt is required that each of the \"s\"-values are multiplied with a different\nunpredictable value, for example like this:\nhttps://github.com/ElementsProject/cross-input-aggregation/blob/master/slides/2021-Q2-halfagg-impl.org#schnorr-signature-half-aggregation-1",
"sig": "b7b44fae3d1373878ae64929e570d1bc39e540641d13bcdf4c08879338627d701a2e3c4ee8a01a568746adfa7252479a2f576d1c7edeaa7ec3d3ce4b486f53d3"
}