Research

Scalable Post-Quantum Threshold Signatures Secure Decentralized Computation

This MPC-based protocol delivers the first practical, NIST-compatible quantum-safe threshold signature, enabling robust, decentralized, and future-proof asset control.
December 2, 20253 min

A transparent, flowing conduit connects to a metallic interface, which is securely plugged into a blue, rectangular device. This device is mounted on a dark, textured base, secured by visible screws, suggesting a robust and precise engineering
A futuristic, cylindrical object composed of white and silver metallic segments is depicted against a grey background. Its segmented exterior partially reveals an intricate interior of glowing blue, translucent rectangular blocks

Briefing

The core problem addressed is the lack of a scalable, quantum-safe threshold signature scheme compatible with emerging cryptographic standards, which prevents decentralized systems from achieving post-quantum security for shared asset control. The foundational breakthrough is an efficient, multi-party computation (MPC) protocol that realizes a threshold variant of the NIST-standard Module-Lattice-Based Digital Signature Algorithm (ML-DSA). This innovation leverages per-party rejection-based partial signing to aggregate a valid signature without revealing individual key shares. The most important implication is the immediate provision of a practical, quantum-resistant primitive for decentralized finance and public ledgers, securing high-value transactions and governance mechanisms against future quantum attacks.

A clear cubic prism sits at the focal point, illuminated and reflecting the intricate blue circuitry beneath. White, segmented tubular structures embrace the prism, implying a sophisticated technological framework

Context

The established theory of digital signatures, relying on classical assumptions like the difficulty of factoring large numbers (RSA) or discrete logarithms (ECC), is fundamentally threatened by Shor’s algorithm and the advent of quantum computing. While the NIST standardized the quantum-safe ML-DSA (formerly CRYSTALS-Dilithium) to replace these schemes, a practical and scalable threshold version → essential for decentralized key management and fault tolerance → did not exist. This absence created a critical security gap in multi-signature and distributed governance protocols, leaving them vulnerable to a future quantum adversary.

The image displays a sophisticated, angular device featuring a metallic silver frame and translucent, flowing blue internal components. A distinct white "1" is visible on one of the blue elements

Analysis

The core mechanism is a novel MPC protocol that adapts the ML-DSA signature process to a threshold setting. This approach fundamentally differs from prior lattice-based attempts by incorporating a “rejection-based partial signing” technique. Each of the $N$ participants computes a partial signature using their private key share, and a threshold $T$ of these partial signatures are aggregated into a single, valid ML-DSA signature.

This ensures that the collective can sign transactions with the security of ML-DSA while maintaining the core threshold property → the private key remains distributed and is never reconstructed by any single party, preserving both quantum resistance and decentralization. The final signature remains compatible with the standard ML-DSA verification process.

A polished metallic square plate, featuring a prominent layered circular component, is securely encased within a translucent, wavy, blue-tinted material. The device's sleek, futuristic design suggests advanced technological integration

Parameters

  • Maximum Participants (N) → 6. This is the maximum number of users supported in the current practical implementation.
  • Communication Rounds → 3. This is the low number of sequential messages required to complete the signing protocol.
  • Signature Size (ML-DSA) → 2.4 kB. This is the size of the final, aggregated signature, maintaining compatibility with the NIST standard.
  • Communication Cost Range → 10.5 kB to 525 kB. This represents the total data transferred during the protocol execution, depending on the specific threshold configuration.

A luminous, multifaceted blue crystal structure, shaped like an 'X' or a cross, is depicted with polished metallic components at its intersections. The object appears to be a stylized control mechanism, possibly a valve, set against a blurred background of blues and greys, with frosty textures on the lower left

Outlook

This research immediately opens new avenues for creating quantum-safe, decentralized autonomous organizations (DAOs) and high-security institutional custody solutions. In the next 3-5 years, this primitive will likely be integrated into L1 and L2 protocols to secure bridge mechanisms, treasury multi-signatures, and cross-chain communication, establishing a new baseline for cryptographic security in blockchain architecture. Future research will focus on scaling the number of participants far beyond the current six-user limit and reducing the communication cost to enable this threshold scheme in high-latency, wide-area network environments, fully realizing a scalable, post-quantum decentralized web.

A transparent blue, possibly resin, housing reveals internal metallic components, including a precision-machined connector and a fine metallic pin extending into the material. This sophisticated assembly suggests a specialized hardware device designed for high-security operations

Verdict

This scalable, NIST-compatible threshold ML-DSA signature is a foundational cryptographic primitive that closes the most critical quantum-era security gap for decentralized systems.

Post-quantum cryptography, Lattice-based signatures, Threshold signatures, Multi-party computation, Digital signature schemes, Decentralized finance, Cryptographic primitive, Quantum-safe security, Fault tolerance, Distributed key generation, Lattice problems, Signature aggregation, Cryptographic standards, Asymptotic security, Key sharing, Module lattices Signal Acquired from → jpmorganchase.com

Micro Crypto News Feeds

cryptographic standards

Definition ∞ Cryptographic standards are established specifications and protocols that govern the secure creation, management, and use of cryptographic algorithms.

fault tolerance

Definition ∞ Fault tolerance is the property of a system that allows it to continue operating correctly even when one or more of its components fail.

lattice-based

Definition ∞ Lattice-based cryptography relies on the mathematical difficulty of certain computational problems within high-dimensional lattices.

private key

Definition ∞ A private key is a secret string of data used to digitally sign transactions and prove ownership of digital assets on a blockchain.

protocol

Definition ∞ A protocol is a set of rules governing data exchange or communication between systems.

ml-dsa

Definition ∞ ML-DSA refers to Multi-Party Computation with Distributed Ledger Technology and Secure Aggregation, a cryptographic approach for secure data processing.

communication cost

Definition ∞ Communication cost refers to the resources expended for data transmission and reception within a distributed system.

decentralized

Definition ∞ Decentralized describes a system or organization that is not controlled by a single central authority.

cryptographic primitive

Definition ∞ A cryptographic primitive is a fundamental building block of cryptographic systems, such as encryption algorithms or hash functions.

Tags:

Tags: