enzoh
commented
5 years ago Rogue key attacks are guarded by the distinct message requirement. If you want indistinct messages, then that paper would be the way to go. I welcome a PR for this.
Open SaleProperly opened 5 years ago
enzoh
commented
5 years ago Rogue key attacks are guarded by the distinct message requirement. If you want indistinct messages, then that paper would be the way to go. I welcome a PR for this.
Does/can this implement the Boneh/Drijvers/Neven BLS signature scheme? Or does this require extra steps to protect against rogue key attacks?
See https://crypto.stanford.edu/~dabo/pubs/papers/BLSmultisig.html
It describes an efficient BLS multi sig as well as a scheme resistant to rogue key attacks.