Author: Lloyd Fournier 2019-12-08 06:10:00
Published on: 2019-12-08T06:10:00+00:00
A proposed solution for a composable MuSig is to have a commitment scheme which is composable. However, it would require deeper analysis of the security model to figure out what exactly the MuSig requires of the commitment scheme. The current proposal seems not binding and can be easily attacked by finding another pair that would validate against (R,s).
Updated on: 2023-06-13T22:24:06.016241+00:00