Frost resources

Official FROST paper with pseudocode

https://github.com/ElementsProject/secp256k1-zkp/pull/138#issuecomment-982808422 https://eprint.iacr.org/2021/1375.pdf

Possible improvements / simplifications:

• use hashes of pubkey shares as the identities of the lagrange co-efficients
• "Have you considered using hashes of the pubkey shares as identities for Lagrange coefficients (instead of 1, 2, 3, ...). This may be nicer in practice because then you don't need to bother with an ordering of the pubkeys. (I learned this trick from https://blog.trailofbits.com/2021/12/21/disclosing-shamirs-secret-sharing-vulnerabilities-and-announcing-zkdocs/ which explains how to use it properly. Hashing is certainly safe.)"
• https://github.com/ElementsProject/secp256k1-zkp/pull/138#issuecomment-1044255979

official frost spec:

https://datatracker.ietf.org/doc/draft-irtf-cfrg-frost/

https://github.com/cfrg/draft-irtf-cfrg-frost

some multi-sig sprint guide on bitcoin repo (using taproot/thresh-hold):

https://github.com/bitcoin/bitcoin/issues/24861

official spec github:

https://github.com/cfrg/draft-irtf-cfrg-frost