Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
View Regular
Hans | Seaside Staking Profile picture
Hans | Seaside Staking
@hans_the_crypto
PhD student on blockchain security and scalability. Co-founder of Seaside Staking for #Cardano, ticker SEA @SeasideStaking. Does #MMA and can't strike.

Jun 18, 2022, 10 tweets

What is Mithril @IOHK_Charles always mentions?
Short answer: It's Pyrros Chaidos and Aggelos Kiayias' proposal for a Stake-based Threshold Multisignature.

Long answer: Read more to learn wtf these words are

#cardano $ada #crypto #IOGresearch
👇1/9

First of all, what is a threshold multisignature?

It's a form of cryptographic signature, just like in wallets when signing a #cardano transaction, except it needs a threshold of say, 2/3 of owners to sign. A threshold multisignature for 3 owners can require 2 signers

👇2/9

This isn't limited to signing transactions, anything digital can be signed if that is useful in some way. For example, blocks in #cardano are actually signed by the stake pools minting them.

👇3/9

Now comes the main innovation of Mithril: Stake-based.

Maybe you don't want the threshold to just count the number of signers, but the proportion of stake that signed. Could be useful for the largest Proof-of-Stake system ever created who knows.

👇4/9

How do we do this?

The obvious way for getting a 50% stake threshold signature is asking every $ada holder to sign until you reach 50% of all $ada. Not great.

Mithril does this much more efficiently thanks to a lot of cryptographic magic

👇5/9

To a sign a message, m possible signers are randomly selected based on their stake. If k out of m sign, a full signature is obtained.
This becomes very much like the previous example of 2 signers out of 3, except it's k out of m and they represent the stake of the network

👇6/10

The parameters for this are very important, as you wouldn't want just 3 holders "representing" the entire network.

The more m signers you pick the better the signature represents the full network, but the process becomes slower. Tradeoffs as always...

👇7/10

A major help in this tradeoff is the logarithmic complexity of Mithril. Depending on your math education this may be gibberish, for our purposes it means how slow Mithril will be with more signers.

The graph shows our logarithmic complexity along with others

👇8/10

Now what is this for? Blockchain checkpoints could be approved by a Mithril signature. Your Daedelus node would just need to fetch the latest checkpoint instead of, you know, freezing you laptop for the next 10 hours.

Other uses could be approving Voltaire-era upgrades

👇9/10

That was a very basic introduction to a very deep rabbit hole of cryptography, hope you learned something! Full paper iohk.io/en/research/li…

Yes I am ripping off @flantoshi's meme format, but doubt he's writing about cryptography 😉

also stake with SEA @SeasideStaking

10/10

Share this Scrolly Tale with your friends.

A Scrolly Tale is a new way to read Twitter threads with a more visually immersive experience.
Discover more beautiful Scrolly Tales like this.

Keep scrolling