FROST Developer II (2024): Overview

The second FROST Developer Meeting occurred on December 4, 2024. The goal was to introduce FROST to developers and to present them with the opportunity to integrate FROST in 2025 as well as discussing the challenges of integration and revealing use cases that demonstrate how FROST is widely useful for a variety of tasks.

For an intro to FROST, see the FROST page and “A Layperson’s Intro to Schnorr”.

Media

Video:

Presentation Slides

Intro to FROST:	FROST for the Masses:
FROST UNiFFI SDK:	FROST Federations:

For more, also see the rough summary or the raw transcript of the event.

Key Quotes

Quotes are drawn from raw transcripts and may not be entirely precise as a result, but convey many of the major themes of the meeting. See the video for more.

Schnorr Signatures

Overview: “I think the key thing to understand is that it really is all about Schnorr and it allows for quorums and for thresholds.”

Aggregation: “One of the cool things about Schnorr is its ability to aggregate and split keys.”

Legacy: “Schnorr is not applicable to the older legacy signature formats.”

Challenges

Bad Participants: “A misbehaving participant can denial of service a signature. … Because of those privacy things we were just talking about, it makes it harder to identify the misbehaving or non-participating member.”

Communication: “We needed some way for all parties to know that none of the parties is equivocating as in telling a bunch of parties X and telling the other parties Y.”

Complexity: “We’ve made it as simple as we possibly can. It’s still really difficult.”

Mistakes: “If a user messes this up, you can’t really go back a step. … The non-robustness means you have to start from the beginning, which is very, very frustrating.”

UX: “The user experience is bad. The user experience of crypto as a whole is bad. … The features can be as good as they can possibly be. They can be the best in the business. But if it’s so difficult to use, nobody’s going to use it.”

Challenges: “There’s a lot of vocabulary here that the general public … don’t have. … Again, a lot of this is shared with multi-sig in general and with cryptocurrency in general.”

Decentralization

Maximal Privacy: “First of all, I try to make available the most decentralized private version of something to exist. I think that is important to have out there in some capacity. Because then the users can decide how they want to exchange information out of band or whatever.”

Trust: “We don’t want to centralize the trust.”

UX: “Every decision to make UX easier that exists right now often has decentralization or trust trade-offs.”

Distributed Key Generation

Key Creation: “With distributed key generation, DKG, it’s a multi-party protocol to create the key.”

Standardization: “There are a variety of ways to implement the distributed key generation.”

Privacy

FROST Advantages: “You cannot distinguish a quorum signature from an individual signature.”

FROST Secrecy: “You can’t even tell which members of a group signed a threshold unless they reveal a lot of secret info.”

Internet: “Anything that inherently touches the internet is less private.”

Reshares

Changing Participants: “Yes, you can reshare, meaning you can kick some people off, bring some people on, etc. Just completely do the entire scheme. But that doesn’t invalidate old share schemes.”

Rounds

One Round: “I am absolutely interested in any sort of thing that can bring this down to a one round handshake, which is still not great, but it’s better than two.”

Scalability

Size: “Even simple multisigs will be smaller.”

Security

SPOFs: “The key is split. That means the risks of one single point of failure can be radically reduced.”

Trusted Dealers

Transitional: “In many ways, it’s a great transitional technology as we move toward the distributed key generation, which is the next approach.”

Key URLs

Presentation Links

Stack Wallet
ZF FROST
- ZF FROST Book
- UNiFFI SDK
FROST Federation
- FROST Federation Repo

Specifications

Cryptology ePrints:

BIPs: