0 sats \ 3 replies \ @sandbeach123 28 Mar 2023 \ parent \ on: BIP-327 was merged! bitcoin
Great! I thought taproot itself allowed that. Anyway the bottleneck here are not the BIPs but the development of software that can make use of those upgrades.
Taproot enabled Schnorr signatures which can be aggregated this way.
However you have to aggregate the keys with great care. Simply adding the keys together opens you up to rogue key attacks from what I recall. Thus there's been several proposals for aggregation including MuSig, MuSig2, MuSig-DN, etc. It seems this BIP is standardizing MuSig2 for wallets/other applications
reply
Oh I did not know that. I remember listening to tadje dryja talking about that in 2019 on youtube but I guess he skipped that part for the sake of simplicity. Do you know a good resource for learning about signature aggregation and proposals?
reply
For key aggregation (multi-signature applications): https://medium.com/blockstream/musig2-simple-two-round-schnorr-multisignatures-bf9582e99295
For signature aggregation (combining signatures, a potential fork of Bitcoin that could allow you to provide only 1 signature for multiple inputs, reducing fees): https://github.com/BlockstreamResearch/cross-input-aggregation
reply