Breaking the shared key in threshold signature schemes | allinfosecnews.com

Feb. 20, 2024, 3:30 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

By Fredrik Dahlgren

Today we are disclosing a denial-of-service vulnerability that affects the Pedersen distributed key generation (DKG) phase of a number of threshold signature scheme implementations based on the Frost, DMZ21, GG20, and GG18 protocols. The vulnerability allows a single malicious participant to surreptitiously raise the threshold required to reconstruct the shared key, which could cause signatures generated using the shared key to be invalid.

We first became aware of this vulnerability on a client engagement …

breaking dahlgren distributed key malicious protocols service signature single threshold today vulnerability

More from malware.news / Malware Analysis, News and Indicators - Latest topics

6K-plus AI models may be affected by critical RCE vulnerability 34 minutes ago | malware.news

ai models article attacks critical +14

Zscaler annual phishing report finds a near 60% increase in phishing attacks in 2023 an hour ago | malware.news

article attacks link media +6

Microsoft, North Korea, Santander, CISA, Deepfakes, Aaran Leyland & More - SWN #387 3 hours ago | malware.news

amp article cisa deepfakes +8

Exploring Adlumin's Impactful Role in SMB Cybersecurity with CEO Robert Johnson and NightDragon's Dave DeWalt 3 hours ago | malware.news

2024 rsa conference adlumin ceo challenges +22

Malicious Life Podcast: Unmasking Secrets: The Rise of Open-Source Intelligence 3 hours ago | malware.news

airlines data dive episode +19

North Korea IT Worker Scam Brings Malware and Funds Nukes 4 hours ago | malware.news

article department dprk funds +17

2 D-Link router bugs added to CISA’s exploited vulnerabilities catalog 4 hours ago | malware.news

article bugs catalog cisa +16

Unforeseen outcomes of innovation 4 hours ago | malware.news

article digicert digital digital trust +8

CISA official Eric Goldstein to step down next month 6 hours ago | malware.news

agency article assistant cisa +16

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Senior Cloud Security Engineer

@ Hearst | Charlotte, NC, United States

View on infosec-jobs.com

Junior Cybersecurity Analyst

@ SavageOne | Johannesburg, GP, South Africa

View on infosec-jobs.com

Information Security Risk Analyst

@ Take-Two Interactive Software, Inc. | Bengaluru, Karnataka, India

View on infosec-jobs.com