Author: Pieter Wuille 2018-07-09 02:33:06
Published on: 2018-07-09T02:33:06+00:00
On July 8th, 2018, Erik Aronesty wrote on the bitcoin-dev forum that non-interactive signatures are more secure. This statement raises questions about the security of Schnorr signatures and whether they can be considered secure with weaker assumptions. It is important to note that Schnorr signatures are provably secure in the random oracle model under the assumption that the discrete logarithm problem is hard in the group being used.
Updated on: 2023-05-20T17:26:04.761559+00:00