[TASK] Remove superfluous/extra encryption in keygen

Question

[TASK] Remove superfluous/extra encryption in keygen

drewstone opened this issue 8 months ago · comments

Issue summary
When we originally modified the Zengo mp-ecdsa, we added additional encryption to P2P messages because we were originally broadcasting/gossiping all messages over our network,

Some old commits which added this extra encryption are:

I think we should remove this and make more explicit how this type of message can be encrypted before the P2P messages hit the wire.

Ivo Kubjas · Answer 1 · Fri Oct 27 2023 20:32:38 GMT+0800 (China Standard Time)

Yup, in CGGMP the assumption is that the channels are authenticated between parties and broadcasts are reliable. Our approach is to use Noise protocol on a higher level which provides authenticated encryption between all parties and allows to use untrusted proxy for relaying messages. See https://github.com/mpc-sdk/framework.