(question) have you addressed the attack in TS21?

bnb-chain / tss-lib

Threshold Signature Scheme, for ECDSA and EDDSA

MIT License

790 stars 271 forks source link

(question) have you addressed the attack in TS21? #214

Closed weijiguo closed 1 year ago

weijiguo commented 2 years ago

Alpha-Rays: Key Extraction Attacks on Threshold ECDSA Implementations

IACR ePrint Archive 2021/1621

yshurik commented 2 years ago

It says:

The only requirement for mounting a successful attack is to use a small Paillier encryption key. 
The key size check was not specified in the protocol and therefore missing from 
most existing threshold ECDSA implementations, making them vulnerable.

Should be matter to good checks of Paillier encryption key size to close this attack vector?

weijiguo commented 2 years ago

I don't get it. Are you leaving this to library users, or this check has been / will be implemented in the library?