Skip to content

SigningNonces not zeroized (upstream frost-secp256k1-tr) #53

New issue
New issue
Closed
#64
Closed
SigningNonces not zeroized (upstream frost-secp256k1-tr)#53
#64
Assignees
kwsantiago
Labels
p2PrioritysecuritySecurity-related issues
@kwsantiago

Description

@kwsantiago
kwsantiago
opened on Jan 1, 2026

Problem

SigningNonces from frost-secp256k1-tr doesn't implement Zeroize. FROST nonces are critical—if leaked or reused, the private key can be recovered.

Affected Locations

  • keep-core/src/frost/signing.rs:49-61 - NonceWrapper has empty zeroize() impl
  • keep-core/src/frost/coordinator.rs:16-24 - our_nonces: Option<SigningNonces>

Mitigation Options

  1. File upstream issue with frost-secp256k1-tr maintainers
  2. Consider process isolation for signing sessions
  3. Explicit memory clearing after signing completes

Metadata

Metadata

Assignees

Labels

p2PrioritysecuritySecurity-related issues

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions