Secure Multiparty Computation (MPC) API for Cryptocurrencies and Crypto Wallets
Poof is a US-compliant, institutional implementation for MPC, enabling secure non-custodial wallet services for Web3 cryptocurrency wallets, fintech companies, or institutions building out crypto software. The implementation behind Poof MPC was audited by Verichains and Kudelski Security and is secure from TSSHOCK vulnerabilities that commonly affect MPC wallets.
Poof runs multiple isolated servers to perform MPC-CMPC computations using Nitro System chips that provide secure boot, root of trust, hypervisor isolation, and secure memory encryption to protect secure multiparty computation from unauthorized access, tampering, and malicious software. Poof's isolated MPC servers act as a default MPC key share signatories and do not combine any key shares to reveal a private key. The user has access to two of three key shares needed to Sign a transaction, with one key share located as a backup locally, and the other signed through Google Authenticator.
Multi-Party Threshold Signing: A Comprehensive Guide to REST API Implementation for Secure MPC for MPC-CMPC (coming soon).
ECDSA Integration: Based on the "CGGMP" protocol by Canetti et al., our implementation boasts a 4-round "online" and 7-round "presigning" protocols. The versatility is further enhanced with identifiable aborts and compatibility with ECDSA under the curve secp256k1.
Schnorr Signatures: Aligning with Bitcoin's Taproot, we use the efficient FROST protocol. Given Schnorr signatures' linear nature, this protocol is more cost-effective than CMP. Our adjustments guarantee compatibility with Taproot's unique point encoding, conforming to BIP-0340.
Key Features:
BIP-32 Key Derivation: Convert shares of a public key seamlessly into child key shares.
Constant-Time Arithmetic: Ensuring robust security through saferith, we mitigate potential timing-leaks, especially pivotal when executing Paillier encryption and related ZK proofs.
Parallel Processing: Experience faster protocol execution with our parallel processing capabilities.
api/v3/keygen for ECDSA private key generation.
api/v3/signature for blockchain-specific ECDSA signature generation