Research

Scalable Post-Quantum Threshold Signatures Secure Decentralized Computation

This MPC-based protocol delivers the first practical, NIST-compatible quantum-safe threshold signature, enabling robust, decentralized, and future-proof asset control.
December 2, 20253 min

The image displays a close-up of a sleek, translucent blue object with a prominent brushed metallic band. A small, circular, luminous blue button or indicator is embedded in the center of the metallic band
A clear cubic structure is positioned within a white loop, set against a backdrop of a detailed circuit board illuminated by vibrant blue light. The board is populated with various electronic components, including dark rectangular chips and cylindrical capacitors, illustrating a sophisticated technological landscape

Briefing

The core problem addressed is the lack of a scalable, quantum-safe threshold signature scheme compatible with emerging cryptographic standards, which prevents decentralized systems from achieving post-quantum security for shared asset control. The foundational breakthrough is an efficient, multi-party computation (MPC) protocol that realizes a threshold variant of the NIST-standard Module-Lattice-Based Digital Signature Algorithm (ML-DSA). This innovation leverages per-party rejection-based partial signing to aggregate a valid signature without revealing individual key shares. The most important implication is the immediate provision of a practical, quantum-resistant primitive for decentralized finance and public ledgers, securing high-value transactions and governance mechanisms against future quantum attacks.

A translucent cubic element, symbolizing a quantum bit qubit, is centrally positioned within a metallic ring assembly, all situated on a complex circuit board featuring illuminated blue data traces. This abstract representation delves into the synergistic potential between quantum computation and blockchain architecture

Context

The established theory of digital signatures, relying on classical assumptions like the difficulty of factoring large numbers (RSA) or discrete logarithms (ECC), is fundamentally threatened by Shor’s algorithm and the advent of quantum computing. While the NIST standardized the quantum-safe ML-DSA (formerly CRYSTALS-Dilithium) to replace these schemes, a practical and scalable threshold version → essential for decentralized key management and fault tolerance → did not exist. This absence created a critical security gap in multi-signature and distributed governance protocols, leaving them vulnerable to a future quantum adversary.

A clear cubic prism sits at the focal point, illuminated and reflecting the intricate blue circuitry beneath. White, segmented tubular structures embrace the prism, implying a sophisticated technological framework

Analysis

The core mechanism is a novel MPC protocol that adapts the ML-DSA signature process to a threshold setting. This approach fundamentally differs from prior lattice-based attempts by incorporating a “rejection-based partial signing” technique. Each of the $N$ participants computes a partial signature using their private key share, and a threshold $T$ of these partial signatures are aggregated into a single, valid ML-DSA signature.

This ensures that the collective can sign transactions with the security of ML-DSA while maintaining the core threshold property → the private key remains distributed and is never reconstructed by any single party, preserving both quantum resistance and decentralization. The final signature remains compatible with the standard ML-DSA verification process.

A sophisticated digital rendering displays two futuristic, cylindrical modules, predominantly white with translucent blue sections, linked by a glowing central connector. Intricate geometric patterns and visible internal components characterize these high-tech units, set against a smooth blue-gray background

Parameters

  • Maximum Participants (N) → 6. This is the maximum number of users supported in the current practical implementation.
  • Communication Rounds → 3. This is the low number of sequential messages required to complete the signing protocol.
  • Signature Size (ML-DSA) → 2.4 kB. This is the size of the final, aggregated signature, maintaining compatibility with the NIST standard.
  • Communication Cost Range → 10.5 kB to 525 kB. This represents the total data transferred during the protocol execution, depending on the specific threshold configuration.

The foreground presents a detailed view of a sophisticated, dark blue hardware module, secured with four visible metallic bolts. A prominent circular cutout showcases an intricate white wireframe polyhedron, symbolizing a cryptographic primitive essential for secure transaction processing

Outlook

This research immediately opens new avenues for creating quantum-safe, decentralized autonomous organizations (DAOs) and high-security institutional custody solutions. In the next 3-5 years, this primitive will likely be integrated into L1 and L2 protocols to secure bridge mechanisms, treasury multi-signatures, and cross-chain communication, establishing a new baseline for cryptographic security in blockchain architecture. Future research will focus on scaling the number of participants far beyond the current six-user limit and reducing the communication cost to enable this threshold scheme in high-latency, wide-area network environments, fully realizing a scalable, post-quantum decentralized web.

A striking translucent blue X-shaped object, with faceted edges and internal structures, is prominently displayed. Silver metallic cylindrical connectors are integrated at its center, securing the four arms of the 'X' against a soft, blurred blue and white background

Verdict

This scalable, NIST-compatible threshold ML-DSA signature is a foundational cryptographic primitive that closes the most critical quantum-era security gap for decentralized systems.

Post-quantum cryptography, Lattice-based signatures, Threshold signatures, Multi-party computation, Digital signature schemes, Decentralized finance, Cryptographic primitive, Quantum-safe security, Fault tolerance, Distributed key generation, Lattice problems, Signature aggregation, Cryptographic standards, Asymptotic security, Key sharing, Module lattices Signal Acquired from → jpmorganchase.com

Micro Crypto News Feeds

cryptographic standards

Definition ∞ Cryptographic standards are established specifications and protocols that govern the secure creation, management, and use of cryptographic algorithms.

fault tolerance

Definition ∞ Fault tolerance is the property of a system that allows it to continue operating correctly even when one or more of its components fail.

lattice-based

Definition ∞ Lattice-based cryptography relies on the mathematical difficulty of certain computational problems within high-dimensional lattices.

private key

Definition ∞ A private key is a secret string of data used to digitally sign transactions and prove ownership of digital assets on a blockchain.

protocol

Definition ∞ A protocol is a set of rules governing data exchange or communication between systems.

ml-dsa

Definition ∞ ML-DSA refers to Multi-Party Computation with Distributed Ledger Technology and Secure Aggregation, a cryptographic approach for secure data processing.

communication cost

Definition ∞ Communication cost refers to the resources expended for data transmission and reception within a distributed system.

decentralized

Definition ∞ Decentralized describes a system or organization that is not controlled by a single central authority.

cryptographic primitive

Definition ∞ A cryptographic primitive is a fundamental building block of cryptographic systems, such as encryption algorithms or hash functions.

Tags:

Tags: