Can I get the full private key?

Question

Can I get the full private key?

freehere107 opened this issue 6 years ago · 5 comments

freehere107 commented 6 years ago

Answer 1 · 2019-04-26T05:47:12.000Z

Yes, working on it as we speak :)

Answer 2 · 2019-04-26T05:47:26.000Z

I will let you know when I push the code

Answer 3 · 2019-04-27T19:24:19.000Z

@freehere107 This seems to be problematic at the moment : Technically it is very easy but security wise it creates an issue since now we will have API call to extract the secret share of party two. The code is designed in such way that the secret shares are never exposed and all operations on them are done locally (for example you can ask to refresh the private key but you will not get the new key as output, just an object of master key with the new key).

Until we find a solution you can do one of the following:

It is currently possible to serialize master keys - you can serialize them and take the secret shares. This is not supposed to be supported in the future (see #21 )
see this test : https://github.com/KZen-networks/kms-secp256k1/blob/master/src/ecdsa/two_party/test.rs#L46 . Now all operations are possible but one party will run both master keys roles locally

I am open for suggestions as well

Answer 4 · 2019-04-28T03:42:47.000Z

I try it. https://github.com/KZen-networks/kms-secp256k1/blob/master/src/ecdsa/two_party/test.rs#L46 There is a problem, MasterKey1 private field scope is private.It's not possbile to to_encrypted_segment from parity1

Answer 5 · 2019-04-29T04:07:33.000Z

Can you elaborate more? if you want to use the segmented encryption it should be possible on private field. What is the code you are using?