go-bls Does/can this implement the Boneh/Drijvers/Neven BLS signature scheme? Or does this require extra steps to protect against rogue key attacks?

Does/can this implement the Boneh/Drijvers/Neven BLS signature scheme? Or does this require extra steps to protect against rogue key attacks?

Open SaleProperly opened this issue 5 years ago • 1 comments

Does/can this implement the Boneh/Drijvers/Neven BLS signature scheme? Or does this require extra steps to protect against rogue key attacks?

See https://crypto.stanford.edu/~dabo/pubs/papers/BLSmultisig.html

It describes an efficient BLS multi sig as well as a scheme resistant to rogue key attacks.

Aug 19 '19 15:08 SaleProperly

Rogue key attacks are guarded by the distinct message requirement. If you want indistinct messages, then that paper would be the way to go. I welcome a PR for this.

Aug 22 '19 02:08 enzoh

go-bls go-bls copied to clipboard

Does/can this implement the Boneh/Drijvers/Neven BLS signature scheme? Or does this require extra steps to protect against rogue key attacks?

go-bls
go-bls copied to clipboard