Skip to content

Add TrustedDealer production warning and DKG security docs #59

New issue
New issue
Closed
#61
Closed
Add TrustedDealer production warning and DKG security docs#59
#61
Assignees
wksantiago
Labels
documentationImprovements or additions to documentationp1PrioritysecuritySecurity-related issues
@kwsantiago

Description

@kwsantiago
kwsantiago
opened on Jan 2, 2026

Summary

TrustedDealer is for testing only but has no warning. Production must use distributed DKG (keep frost network dkg) where the full key never exists.

Tasks

  • Add doc comment warning to TrustedDealer struct
  • Add CLI warning when using keep frost generate
  • Document why distributed DKG is more secure (key never exists as whole)

Key Difference

Trusted Dealer: Full key exists on one machine during ceremony
Distributed DKG: Each device contributes entropy, full key is never computed

Metadata

Metadata

Assignees

Labels

documentationImprovements or additions to documentationp1PrioritysecuritySecurity-related issues

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions