Research

Scalable Post-Quantum Threshold Signatures Secure Decentralized Computation

This MPC-based protocol delivers the first practical, NIST-compatible quantum-safe threshold signature, enabling robust, decentralized, and future-proof asset control.
December 2, 20253 min

A luminous, faceted crystal is secured by white robotic arms within a detailed blue technological apparatus. This apparatus features intricate circuitry and components, evoking advanced computing and data processing
The image displays a close-up of a high-tech electronic connector, featuring a brushed metallic silver body with prominent blue internal components and multiple black cables. Visible within the blue sections are intricate circuit board elements, including rows of small black rectangular chips and gold-colored contacts

Briefing

The core problem addressed is the lack of a scalable, quantum-safe threshold signature scheme compatible with emerging cryptographic standards, which prevents decentralized systems from achieving post-quantum security for shared asset control. The foundational breakthrough is an efficient, multi-party computation (MPC) protocol that realizes a threshold variant of the NIST-standard Module-Lattice-Based Digital Signature Algorithm (ML-DSA). This innovation leverages per-party rejection-based partial signing to aggregate a valid signature without revealing individual key shares. The most important implication is the immediate provision of a practical, quantum-resistant primitive for decentralized finance and public ledgers, securing high-value transactions and governance mechanisms against future quantum attacks.

A sleek, silver-framed device features a large, faceted blue crystal on one side and an exposed mechanical watch movement on the other, resting on a light grey surface. The crystal sits above a stack of coins, while the watch mechanism is integrated into a dark, recessed panel

Context

The established theory of digital signatures, relying on classical assumptions like the difficulty of factoring large numbers (RSA) or discrete logarithms (ECC), is fundamentally threatened by Shor’s algorithm and the advent of quantum computing. While the NIST standardized the quantum-safe ML-DSA (formerly CRYSTALS-Dilithium) to replace these schemes, a practical and scalable threshold version → essential for decentralized key management and fault tolerance → did not exist. This absence created a critical security gap in multi-signature and distributed governance protocols, leaving them vulnerable to a future quantum adversary.

A complex, futuristic mechanical structure is prominently displayed, featuring interconnected white segmented panels that form a spherical, open framework. Transparent blue conduits and glowing elements flow through its intricate core, suggesting active pathways and energy transfer

Analysis

The core mechanism is a novel MPC protocol that adapts the ML-DSA signature process to a threshold setting. This approach fundamentally differs from prior lattice-based attempts by incorporating a “rejection-based partial signing” technique. Each of the $N$ participants computes a partial signature using their private key share, and a threshold $T$ of these partial signatures are aggregated into a single, valid ML-DSA signature.

This ensures that the collective can sign transactions with the security of ML-DSA while maintaining the core threshold property → the private key remains distributed and is never reconstructed by any single party, preserving both quantum resistance and decentralization. The final signature remains compatible with the standard ML-DSA verification process.

A sophisticated, multi-component device showcases transparent blue panels revealing complex internal mechanisms and a prominent silver control button. The modular design features stacked elements, suggesting specialized functionality and robust construction

Parameters

  • Maximum Participants (N) → 6. This is the maximum number of users supported in the current practical implementation.
  • Communication Rounds → 3. This is the low number of sequential messages required to complete the signing protocol.
  • Signature Size (ML-DSA) → 2.4 kB. This is the size of the final, aggregated signature, maintaining compatibility with the NIST standard.
  • Communication Cost Range → 10.5 kB to 525 kB. This represents the total data transferred during the protocol execution, depending on the specific threshold configuration.

A close-up view reveals a modern device featuring a translucent blue casing and a prominent brushed metallic surface. The blue component, with its smooth, rounded contours, rests on a lighter, possibly silver-toned base, suggesting a sophisticated piece of technology

Outlook

This research immediately opens new avenues for creating quantum-safe, decentralized autonomous organizations (DAOs) and high-security institutional custody solutions. In the next 3-5 years, this primitive will likely be integrated into L1 and L2 protocols to secure bridge mechanisms, treasury multi-signatures, and cross-chain communication, establishing a new baseline for cryptographic security in blockchain architecture. Future research will focus on scaling the number of participants far beyond the current six-user limit and reducing the communication cost to enable this threshold scheme in high-latency, wide-area network environments, fully realizing a scalable, post-quantum decentralized web.

The foreground presents a detailed view of a sophisticated, dark blue hardware module, secured with four visible metallic bolts. A prominent circular cutout showcases an intricate white wireframe polyhedron, symbolizing a cryptographic primitive essential for secure transaction processing

Verdict

This scalable, NIST-compatible threshold ML-DSA signature is a foundational cryptographic primitive that closes the most critical quantum-era security gap for decentralized systems.

Post-quantum cryptography, Lattice-based signatures, Threshold signatures, Multi-party computation, Digital signature schemes, Decentralized finance, Cryptographic primitive, Quantum-safe security, Fault tolerance, Distributed key generation, Lattice problems, Signature aggregation, Cryptographic standards, Asymptotic security, Key sharing, Module lattices Signal Acquired from → jpmorganchase.com

Micro Crypto News Feeds

cryptographic standards

Definition ∞ Cryptographic standards are established specifications and protocols that govern the secure creation, management, and use of cryptographic algorithms.

fault tolerance

Definition ∞ Fault tolerance is the property of a system that allows it to continue operating correctly even when one or more of its components fail.

lattice-based

Definition ∞ Lattice-based cryptography relies on the mathematical difficulty of certain computational problems within high-dimensional lattices.

private key

Definition ∞ A private key is a secret string of data used to digitally sign transactions and prove ownership of digital assets on a blockchain.

protocol

Definition ∞ A protocol is a set of rules governing data exchange or communication between systems.

ml-dsa

Definition ∞ ML-DSA refers to Multi-Party Computation with Distributed Ledger Technology and Secure Aggregation, a cryptographic approach for secure data processing.

communication cost

Definition ∞ Communication cost refers to the resources expended for data transmission and reception within a distributed system.

decentralized

Definition ∞ Decentralized describes a system or organization that is not controlled by a single central authority.

cryptographic primitive

Definition ∞ A cryptographic primitive is a fundamental building block of cryptographic systems, such as encryption algorithms or hash functions.

Tags:

Tags: