Schnorr Signature

The Schnorr signature is a digital signature scheme created using the Schnorr Signature Scheme. It is a cryptographic tool that helps in making secure digital transactions and communications. It is efficient and simple, utilizing a hash function to produce a message digest. This digest is then used to generate and verify digital signatures.

The scheme uses elliptic curve cryptography or ECC. The signature combines several signatures into one. This is achieved by expanding the capacity of each block through an increased number of transactions. It takes up less space, too, and hence, is a preventive tool for spam attacks.

The process can be summarized in three parts: key generation, signing, and verification. The user first generates a public and a private key. The public keys carry values of large prime numbers in a way that the second value divides the first value minus one. It shall be noted that the second value is a generator of the group modulo the first value. The private key is an integer taken at random. The next part is signing. The signer will generate a random integer where it is 1 <= random integer <= second value-1 and calculate based on this integer to create the message signature. If the conditions are satisfied, the signature is valid.

Below are some examples to explain the concept better: 

Example #1

Imagine there are three business parties, A, B, and C, who want to transact a high-value payment and authorize it jointly. Initially, they decided to use the traditional ECDSA approach, but it requires three public keys and separate signatures to authorize it. Thus, they use the Schnorr scheme, where they have the option of combining individual public keys of the parties into one aggregate public key. This reduces their data load and improves privacy and computational efficiency.

Example #2

The Internet computer protocol (in short, the ICP) plans to use enhanced threshold cryptography on Bitcoin's base layer. This could unlock the token's smart contract functions and decentralized finance capabilities. Furthermore, the proposal to integrate threshold and Schnorr signatures is expected to enable smart contracts of the protocol to obtain addresses and authenticate transactions into the Bitcoin blockchain directly. Bitcoin schnorr signature with the threshold feature is expected to be rolled out midway through 2024 and help in the authorization and batching of native Bitcoin transactions.

Given below are some of the benefits of the signature scheme:

• It requires the signing of several signatures for a single transaction, enhancing the transaction's security.
• The scheme aggregates the public keys or signatures of several users and devices into one master key or signature. This saves computation resources and space in confirming transaction validity and contributes to better network scalability.
• Time and computation power are reduced through this, which enables batch verification.
• Parties involved cannot modify or alter the signatures for double spending once they are created.
• Merging of keys helps in improving privacy and saves a lot of fees that are otherwise involved in a transaction.
• The Schnorr signature algorithm is simple to implement and prevents attacks, forgery, impersonation, and tampering of transactions.

Given below are some of the limitations of the signature scheme:

• It is computationally intensive and needs large sizes of keys to enhance security.
• It is vulnerable to specific attacks, such as side-channel attacks, and can be subjected to key compromises.
• Enhanced security doesn't prevent others from tracking the transaction.

Given below are some of the differences between these two cryptographic signature schemes: