Multiparty Trustless DKG Multisig Infrastructure

[poroburu]

1. Can horcrux be used with a trustless distributed key generator to enable multisig validators? The current migration documentation requires a trusted party to distribute the key shares.

Dev (Osmosis) co-authored a handy article that references a 'rust implementation of multiparty Ed25519 signature scheme' repository that supports trustless DKG:

https://medium.com/blockchain-at-berkeley/alternative-signatures-schemes-14a563d9d562
https://github.com/ZenGo-X/multi-party-eddsa

Signing seems to be a blocker for DAO validators. With Interchain Accounts, Juno DAOs can create validator infrastructure on Akash. But how DAOs will securely supply cryptographic keys to the infrastructure for remote signing is not apparent.

2. Can horcrux nodes be geographically distributed? For example, Raspberry Pi nodes running on the edge with the multisig holder. While the sentry full nodes are hosted in the cloud.

[jackzampolin]

1. This would require some cryptography work. Here is a library in go (https://github.com/taurusgroup/frost-ed25519) that could be used to do this. Would require some changes to horcrux that we are happy to collaborate on.
2. Yes you can run them geographically distributed.