The Application of Ed25519 in Multi-Party Secure Wallets: Enhancing the Signature Security of DApps and Wallets

In recent years, Ed25519 has become one of the important technologies in the Web3 ecosystem. Although popular blockchains like Solana, Near, and Aptos widely adopt Ed25519 due to its efficiency and cryptographic strength, true longer computing (MPC) solutions have not yet been fully applicable to these platforms.

This means that even with continuous advancements in cryptographic technology, wallets using Ed25519 still generally lack a longer level of security, failing to effectively eliminate the risks associated with a single private key. Without the support of MPC technology, these wallets will continue to face the same core vulnerabilities as traditional wallets, leaving room for improvement in the protection of digital assets.

Recently, a project in the Solana ecosystem launched a mobile-friendly trading suite that combines powerful trading features with mobile friendliness and social login capabilities, providing users with the experience of creating tokens.

The Current Status of Ed25519 Wallets

It is very important to understand the vulnerabilities of the current Ed25519 Wallet system. Typically, Wallets use mnemonic phrases to generate private keys, which are then used to sign transactions. However, traditional Wallets are more susceptible to attacks such as social engineering, phishing sites, and malware. Since the private key is the only way to access the Wallet, once an issue arises, recovery or protection becomes extremely difficult.

This is exactly where MPC technology can fundamentally change security. Unlike traditional wallets, MPC Wallets do not store private keys in a single location. Instead, the keys are divided into multiple parts and distributed across different locations. When a transaction needs to be signed, these key parts generate partial signatures, which are then combined using a threshold signature scheme (TSS) to produce the final signature.

Since private keys are never fully exposed on the front end, MPC Wallets can provide better protection against social engineering, malware, and injection attacks, thereby elevating wallet security to a whole new level.

Ed25519 Curve and EdDSA

Ed25519 is the twisted Edwards form of Curve25519, optimized for double-scalar multiplication, which is a key operation in EdDSA signature verification. It is more popular compared to other elliptic curves because it has shorter key and signature lengths, and the signature computation and verification are faster and more efficient while still maintaining a high level of security. Ed25519 uses a 32-byte seed and a 32-byte public key, resulting in a signature size of 64 bytes.

In Ed25519, the seed is hashed using the SHA-512 algorithm, and the first 32 bytes of this hash are extracted to create a private scalar, which is then multiplied by the fixed elliptic point G on the Ed25519 curve to generate the public key.

This relationship can be expressed as: Public Key = G x k

Here k represents a private scalar, and G is the base point of the Ed25519 curve.

How to support Ed25519 in MPC

Some security solution providers do not generate a seed and hash it to obtain a private scalar, but directly generate a private scalar and then calculate the corresponding public key using that scalar, and generate a threshold signature using the FROST algorithm.

The FROST algorithm allows private keys to be shared for independently signing transactions and generating final signatures. Each participant in the signing process generates a random number and makes a commitment to it, which is then shared among all participants. After sharing the commitments, participants can independently sign the transaction and generate the final TSS signature.

The FROST algorithm can generate valid threshold signatures while minimizing the required communication compared to traditional multi-round schemes. It also supports flexible thresholds and allows for non-interactive signing among participants. Once the commitment phase is completed, participants can independently generate signatures without further interaction. At the security level, it can prevent forgery attacks without restricting the concurrency of signature operations, and it can abort the process in the event of participant misconduct.

Using Ed25519 Curve in DApp and Wallet

For developers building DApps or Wallets using the Ed25519 curve, MPC solutions supporting Ed25519 are a significant advancement. This new feature provides new opportunities for building DApps and Wallets with MPC capabilities on popular chains such as Solana, Algorand, Near, and Polkadot.

Some security solutions also provide native support for the Ed25519 curve, which means that non-MPC SDKs based on Shamir's secret sharing can directly use Ed25519 private keys in various solutions, including mobile, gaming, and Web SDKs. Developers can explore how to integrate these security solutions with blockchain platforms such as Solana, Near, and Aptos.

Conclusion

In summary, MPC technology that supports EdDSA signatures provides enhanced security for DApps and Wallets. By leveraging genuine MPC technology, it eliminates the need to expose private keys on the front end, significantly reducing the risk of attacks. In addition to robust security, it also offers seamless, user-friendly login and more efficient account recovery options. The application of this technology will bring a safer and more convenient user experience to the Web3 ecosystem.