Monero logs

10:47:12 onyx_prot:matrix.org: Built a non-custodial 2-of-3 multisig escrow for XMR — FROST threshold sigs +

10:47:12 onyx_prot:matrix.org: CLSAG, runs in WASM (browser). Live on mainnet.

10:47:12 onyx_prot:matrix.org: looking at FCMP++ adaptation. The FROST DKG should carry over since it's

10:47:12 onyx_prot:matrix.org: Schnorr-based, but the signing part will need rework for the new membership

10:47:12 onyx_prot:matrix.org: proofs.[... more lines follow, see https://mrelay.p2pool.observer/e/4Pnau-IKMEFxR2cz ]

10:52:27 kayabanerve:matrix.org: The cryptography itself is already written in the FCMP++ libraries.

10:54:04 onyx_prot:matrix.org: Good to know. Is there a multisig signing spec/API I should look at?

10:54:04 onyx_prot:matrix.org: My implementation uses a coordination server that facilitates signing rounds

10:54:04 onyx_prot:matrix.org: without holding private keys (derives commitments from public data only).

10:54:04 onyx_prot:matrix.org: Wondering if that pattern maps to the new libs or if the approach is different.

10:55:52 plowsof:matrix.org: is it open source?

11:04:26 syntheticbird: I believe this is used privately

11:05:54 plowsof: then we will wait for spirobel and milestone 3 https://ccs.getmonero.org/proposals/spirobel_monero_browser_wallet.html

11:08:18 onyx_prot:matrix.org: Not currently. It's a commercial product

11:08:18 onyx_prot:matrix.org: But I'm open to discussing the cryptographic approach or contributing

11:08:18 onyx_prot:matrix.org: to Carrot multisig research separately.

11:08:18 onyx_prot:matrix.org: Aware of spirobel's work. Different scope — my focus is escrow infrastructure [... more lines follow, see https://mrelay.p2pool.observer/e/kNSovOIKT2NWQWxp ]

11:54:10 kayabanerve:matrix.org: @onyx_prot:matrix.org: Not to be unappreciative, just to let you know what the landscape is:Monero already has a FROST-inspired signing protocol for CLSAGs, with security proofs, and an audited FOSS implementation.The bones of the implementation are slated for use within FCMP++ which already has the cryptographic protocol defined, and is already slated for review as part of the FCMP++ R&D effort.

11:54:33 kayabanerve:matrix.org: That doesn't comment on how wallets represent these bones but this is already an area of research with a long history.

13:18:17 onyx_prot:matrix.org: Makes sense. My interest is specifically the wallet/coordination layer —

13:18:17 onyx_prot:matrix.org: how to facilitate 2-of-3 signing rounds for escrow without custodying keys.

13:18:17 onyx_prot:matrix.org: I'll follow the FCMP++ R&D and look at the existing FROST implementation.

13:18:17 onyx_prot:matrix.org: Thanks for the context.