Frost resources
Official FROST paper with pseudocode
https://github.com/ElementsProject/secp256k1-zkp/pull/138#issuecomment-982808422 https://eprint.iacr.org/2021/1375.pdf
Possible improvements / simplifications:
- use hashes of pubkey shares as the identities of the lagrange co-efficients
- "Have you considered using hashes of the pubkey shares as identities for Lagrange coefficients (instead of 1, 2, 3, ...). This may be nicer in practice because then you don't need to bother with an ordering of the pubkeys. (I learned this trick from https://blog.trailofbits.com/2021/12/21/disclosing-shamirs-secret-sharing-vulnerabilities-and-announcing-zkdocs/ which explains how to use it properly. Hashing is certainly safe.)"
- https://github.com/ElementsProject/secp256k1-zkp/pull/138#issuecomment-1044255979
official frost spec:
https://datatracker.ietf.org/doc/draft-irtf-cfrg-frost/
https://github.com/cfrg/draft-irtf-cfrg-frost
some multi-sig sprint guide on bitcoin repo (using taproot/thresh-hold):
https://github.com/bitcoin/bitcoin/issues/24861
official spec github:
https://github.com/cfrg/draft-irtf-cfrg-frost