There are two failure modes for the cosigner:
- it stops signing. Then your primary spending path is frozen, but if you're in a liana-like setup, that's no big deal.
- it signs things it shouldn't sign. Then you basically fall back to the security model you'd have without the cosigner - for example a single-sig with you hardware wallet.
Unlike on-chain usage of moon math like ZKPs (roll ups, bridges, etc.), where failure is catastrophic, here you'd just fallback to a weaker security model.
Also, I think the fact that all the complexity can be handled in the software wallets (without needing any new features from hardware signers) makes it a lot more likely to happen. It's not easy to build, but once built, it's basically a library that can be used as a black box by software wallets. Bullish!
salvatoshi
npub157…e60gr
2025-04-26 14:31:44 UTC
in reply to nevent1q…z4zr
Author Public Key
npub157y6gz0l0rfhw220rfwnujeff6q2mec33nzkwz23umkrt6482exq8e60grPublished at
2025-04-26 14:31:44 UTCEvent JSON
{
"id": "952e42eadc7783be9e6b1c8ee740baa07ff11c3b5a5fafa13796b839067ce9e5",
"pubkey": "a789a409ff78d377294f1a5d3e4b294e80ade7118cc5670951e6ec35eaa7564c",
"created_at": 1745677904,
"kind": 1,
"tags": [
[
"e",
"1021cdcb8656a2babe094dc34ff0ae9b31ac1b11d6df928fa32d219094c06ffe",
"",
"root"
],
[
"e",
"1b7c95092fc8d3105e6a5a46ccfcf0c3bd98abf8cdfac893b02f21d96e3eb7ba"
],
[
"e",
"611009da0b72b8adacb08032d233f50f5beb4c73ac0fea2a6b31eaddd0154a29",
"",
"reply"
],
[
"p",
"a789a409ff78d377294f1a5d3e4b294e80ade7118cc5670951e6ec35eaa7564c"
],
[
"p",
"33c8e961d628a494cdb37b9753d0c6d1ee7612cd020a412c9df7f38a766f457e"
]
],
"content": "There are two failure modes for the cosigner:\n- it stops signing. Then your primary spending path is frozen, but if you're in a liana-like setup, that's no big deal.\n- it signs things it shouldn't sign. Then you basically fall back to the security model you'd have without the cosigner - for example a single-sig with you hardware wallet.\n\nUnlike on-chain usage of moon math like ZKPs (roll ups, bridges, etc.), where failure is catastrophic, here you'd just fallback to a weaker security model.\n\nAlso, I think the fact that all the complexity can be handled in the software wallets (without needing any new features from hardware signers) makes it a lot more likely to happen. It's not easy to build, but once built, it's basically a library that can be used as a black box by software wallets. Bullish!",
"sig": "df50813406b51a4233ecd93f3195da3bcb4e1f2e679dbc551a81a26189130749ebd60c682973f687e6679d0cd2a89033083fc4babe66a35cae3f4158ea07db67"
}