[Cryptography] A discussion about secret sharing or multi-sig

Adam P. Goucher apgoucher at gmx.com
Tue Jul 27 10:11:34 EDT 2021


> What are your thoughts on this? Would it be efficient? Or it would
> be more efficient to deliver n messages separately instead of
> encapsulating? Both methods require the storage of m public keys
> and verifying individual signatures for n times.

There's an idea called 'cross-input signature aggregation' which
uses Schnorr signatures to allow multiple signatures to be combined
into a single signature (in a more efficient way than concatenation
of signatures!).

Pieter Wuille discusses it here:

https://blockstream.com/2018/01/23/en-musig-key-aggregation-schnorr-signatures/


Best wishes,


Adam P. Goucher


More information about the cryptography mailing list