Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Participant identifiers for DKG #78

Open
chelseakomlo opened this issue Apr 9, 2021 · 0 comments
Open

Participant identifiers for DKG #78

chelseakomlo opened this issue Apr 9, 2021 · 0 comments
Assignees
@dconnolly @chelseakomlo
Labels
frost

Comments

@chelseakomlo
Copy link
Collaborator

chelseakomlo commented Apr 9, 2021
edited
Loading

The FROST paper assumes that all participants in the DKG have some unique identifier, without saying how this identifier is determined. While a PKI would be able to provide one such option, in a decentralized setting, we don't want to assume such infrastructure.

Instead, at the beginning of the DKG, we will have all participants perform the following step to generate their identifiers:

participant_i = H(g^(s_i)) || "some domain separator" )

Here, s_i is the secret chosen by the participant while performing the DKG. During the first round of the DKG, when all participants send commitments to each other, they can also send their identifiers.

We might want to additionally think about verification to ensure that the owner of s_i actually corresponds to this identifier, and is not masquerading as another participant. It might be enough that all participants derive each other identifiers in the second round of the DKG, after performing the VSS verification step.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dconnolly dconnolly

@chelseakomlo chelseakomlo

Labels
frost
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@dconnolly @chelseakomlo @upbqdn