Post Quantum transaction signature #10

The meeting began with Antonio sharing his screen and checking if Gottfried could see his PDF and tools bar. Participants joined the call, including Matteo Vicari, Alessandro, Benedict, Matteo Vena, Conor, and Miha. Antonio waited for the scheduled presenter to join, expressing uncertainty about their arrival and mentioning the possibility of it being someone else.

Antonio welcomed participants to the tenth post-quantum transaction signature breakout room meeting focused on MPC and multisig topics. The agenda included presentations or demos from two teams: one on quantum-safe MPC using Dilithium version presented by Zigay Nox, and another from River Labs on post-quantum multisig solutions. Antonio noted that Science Lab was expected but had not yet joined the call, so he invited River Labs to begin their presentation.

Matteo Vena presented an update on Riva Labs’ ephemeral keys protocol, highlighting its key components including the rotation mechanism, force recover function, and multichain support. He demonstrated the protocol’s browser extension “NiceTry” which enables users to maintain a stable identity across different Layer 2 networks while remaining post-quantum secure. The team has also developed support for multi-device wallets and introduced multisig functionality through Safe, allowing users to incorporate post-quantum security into existing multisig setups.

Antonio and Matteo discussed plans to standardize their post-quantum signature protocol as an ERC (Ethereum Request for Comment) to establish it as an official Ethereum standard. The team is also exploring the possibility of implementing MPC (Multi-Party Computation) with hash-based signatures, though Benedikt noted this would be challenging due to the lack of algebraic structure in hash-based systems and potential impossibility results. The team plans to continue experimenting with different approaches and aims to have a working demo within a month, with the next call scheduled in two weeks.

Jay demonstrated a distributed key share wallet using MLDSA with two modes: cloud-hosted key share and a hybrid setup combining cloud and phone for two-factor authentication. The system can scale to 2-3 parties efficiently, with theoretical limits around 10 parties before performance degradation. The team is working on publishing two academic papers: one on the MLDSA-MPC algorithm and another on hash-based signature impossibility results, with the code being prepared for open source release.Reno and others discussed concerns about gas costs, with current implementations using SHAKE being expensive due to NIST compliance requirements, though alternatives using Keccak exist to reduce costs. The group debated the trade-offs between maintaining NIST compliance versus adopting industry-standard algorithms like MLDSA, with Reno expressing concerns about creating infrastructure that diverges from global standards.