Author: Brandon Black 2022-04-28 15:33:42
Published on: 2022-04-28T15:33:42+00:00
In an email conversation, Jonas and Brandon discuss a fragment of the BIP that describes a shortcut for a specific signer to send their nonces last. According to Brandon, this feature was added in response to an email he and a coworker sent to Jonas. The idea behind this feature is to simplify the implementation of certain protocols by allowing a signer who will always send their nonce last to fully specify all the new optional arguments without generating real randomness. The modifications required to achieve this include making optional arguments required and composing the extra_in argument of all other parties' nonces. The important property of the last signer's nonce is that any variation in any other party's nonce, or other values that contribute to the challenge, must uniformly randomize the last signer's nonce. The result is that the signer doesn't need to provide randomness and also doesn't have to retain state, making it easier to track, restore, and securely delete secret nonces across a signing session.
Updated on: 2023-06-15T18:49:02.652674+00:00