During the spring of 2020, Qredo engaged NCC Group Cryptography Services to conduct a security assessment of the Apache Milagro MPC library. This library implements the primitives necessary to instantiate the multi-party ECDSA signature scheme provided in Gennaro and Goldfeder’s Fast Multiparty Threshold ECDSA with Fast Trustless Setup. This assessment occurred over the course of two calendar weeks and was delivered by three consultants over ten person-days. NCC Group assessed commit c5f0733 of the public incubator-milagro-MPC repository.
The Public Report for this audit may be downloaded below.