2 of 3 multisignature transaction vulnerability when one of the private keys is compromised

1

I was wondering if and how multisignature wallets protect the owners from getting robbed.

So in 2 of 3 multisignature scheme, if one of the owners' machines has been compromised (i.e. bad actor possesses the private key and can initiate a transaction without the actual owner knowing about it and the 2nd owner signs the transaction who assumes that transaction request was made by the legitimate owner), does multi-signature wallet protect users from this kind of scenario?

Does it even have a way to protect in this case? Is the assumption that wallet owners will be communicating about the transaction request offline?

kchoi

Posted 2017-11-05T21:58:19.850

Reputation: 113

can you explicitly state who owns all three keys in the 2-of-3. AFAIK, owner owns 1, some 2FA party owns 2, who owns 3?renlord 2017-11-06T02:22:32.737

I mean it does not matter which scheme it is. Let's say it's 3-of-3, and say your mother owns the 3rd key. With a transaction signed by you, owner, 2FA party, and let's assume that she just signs the transaction thinking that you initiated it without talking to you. If the hacker who has your private key, made the transaction request, then you'd lose money right?kchoi 2017-11-06T02:31:13.670

if the other 2 parties are going to blindly sign, then sure, you're going to lose your coins once a hacker steals your key.renlord 2017-11-06T02:33:28.657

what stops them from signing blindly today?kchoi 2017-11-06T02:37:37.557

it depends on the underlying design of the application which uses the multi-sig transaction. Typically, the arrangement would be that all parties involved in the multisig must communicate and agree to sign the transaction. But clearly, there exist applications out there who do not use multisigs that way.renlord 2017-11-06T02:39:29.913

But what kind of communication is required? If they communicate over online channel, hacker can pretend to be owner1, and trick others into signing. It seems that only secure way is if it is done offline. What kind of arrangement is being made in some multisig wallets today?kchoi 2017-11-06T02:43:20.457

Let us continue this discussion in chat.

renlord 2017-11-06T02:43:34.550

Answers

1

does multi-signature wallet protect users from this kind of scenario?

Not necessarily. Ultimately it is dependent on the design of the application which is using multisig transactions.

Does it even have a way to protect in this case?

Assuming that the other 2 key holders will blindly sign once the primary key owner has sign, no. If the primary key is compromised, the transaction will be signed by either/both other parties.

Is the assumption that wallet owners will be communicating about the transaction request offline?

In principle yes, the assumption is that the application requires signatories to decide to sign the transaction on their own accord. Sharing partially signed transaction should be done in a secure private channel between signatories.

renlord

Posted 2017-11-05T21:58:19.850

Reputation: 2 167