Keyshare Distribution and Security
In the Arcium Network, Clusters handle cryptographic key management, beginning with a Distributed Key Generation (DKG) process. In this step, each Arx node in an MXE's Cluster receives a fragment of the overall cryptographic key, known as a key share. These key shares are crucial as they collectively form the key of the MXE in that Cluster, enabling secure, joint computation tasks without revealing individual inputs.
For enhanced security, nodes within a Cluster may optionally employ Trusted Execution Environments (TEEs). TEEs provide a secure area within a processor ensuring that the code and data loaded inside are protected with respect to confidentiality and integrity. The Arcium Network's MPC architecture is designed such that all nodes (N out of N) are required for decryption for a given MXE's data, promoting a highly secure environment. Thus, as long as at least one node remains uncompromised and trustworthy at all times in a given Cluster, the integrity of computations is safeguarded. Therefore configuring Cluster sizes can be used, in accordance with the demands of a given application, to control the security of confidential computations.
Last updated