Braydon Fuller on Nostr: From my understanding, Frost provides mitigations to a compromised key by being able ...
From my understanding, Frost provides mitigations to a compromised key by being able to refresh all of the signing keys.
https://frost.zfnd.org/frost.html#refreshing-shares
However, the last set of signing keys remains valid, and those keys can still sign messages. So there is still a risk (see the documentation above for more info). So by generating a new set, the last set isn't invalidated or revoked, and therefore not really a key rotation. Interesting though.
https://frost.zfnd.org/frost.html#refreshing-shares
However, the last set of signing keys remains valid, and those keys can still sign messages. So there is still a risk (see the documentation above for more info). So by generating a new set, the last set isn't invalidated or revoked, and therefore not really a key rotation. Interesting though.