K-of-N threshhold key generation scheme by limited shared secrets

Jun 20 - Jun 20, 2026

  • The exploration of advanced cryptographic schemes for handling multisignature arrangements reveals significant developments in the domain of secure, distributed signing protocols.

One such advancement is a novel scheme designed for generating a K-of-N threshold public key for N signers, which simplifies the signing protocol by leveraging the existing MuSig2 architecture. This scheme is particularly advantageous when K equals N - 1, as it allows signers to utilize their existing private keys without the necessity of storing any additional shares or secrets created during setup. Instead, the process involves merely the exchange of public keys among the signers. This results in minimal setup requirements and ensures that the actual signing protocol strictly adheres to the MuSig2 standard. Furthermore, this framework supports nested configurations, enabling a k-of-n configuration within an n-of-n setup while maintaining reliance on proven MuSig2-in-MuSig2 schemes.

Another facet of this technology involves the creation of shared secrets that are instrumental in deterministically deriving shachain roots for a proposed "multiple shachain" scheme, enhancing the Lightning network's functionality. These shared secrets are generated through a method where subsets of signers create secrets known only amongst themselves, using combinations dictated by combinatorial calculations (specifically, 'n choose n-k+1'). For instance, in a 4-of-5 scheme, ten distinct secrets would be generated and distributed among various combinations of five signers. In situations where K equals N - 1, the shared secret can be derived using the Elliptic Curve Diffie-Hellman (ECDH) algorithm between two signers. However, for K less than N - 1, a more complex ritual involving multiple parties is required to generate these secrets.

This innovative approach not only facilitates enhanced security by allowing only designated quorums of signers to compute and use specific shared secrets but also directly integrates with the already suggested multiple-shachain scheme for revocation in Lightning networks. Notably, this integration allows for the HMAC derivation of shachain roots from shared secrets, further embedding security and integrity into the transactional processes of decentralized networks. Additionally, practical applications of this scheme, such as the 2-of-3 policy, demonstrate its utility and effectiveness. In this scenario, even without a setup ritual, signers can derive necessary shards solely from the public keys of other participants, provided that the non-blind signer retains mutable persistent storage.

Thus, the development and implementation of these cryptographic enhancements not only streamline the operational aspects of multisignature policies but also fortify the security frameworks essential to modern decentralized digital transactions. The ongoing refinement and adoption of such schemes hold significant promise for the future of secure digital interactions and the broader application of blockchain technologies. For more detailed insights into the technical underpinnings and potential applications of these schemes, one can refer to discussions and developments in specialized forums such as this detailed discussion on delvingbitcoin.org.

Link to Raw Post
Bitcoin Logo

TLDR

Join Our Newsletter

We’ll email you summaries of the latest discussions from high signal bitcoin sources, like bitcoin-dev, lightning-dev, and Delving Bitcoin.

Explore all Products

ChatBTC imageBitcoin searchBitcoin TranscriptsSaving SatoshiDecoding BitcoinWarnet
Built with 🧡 by the Bitcoin Dev Project
View our public visitor count

We'd love to hear your feedback on this project.

Give Feedback