Threshold Signatures (TSS) in THORChain
Threshold Signature Schemes are the cryptographic foundation that allows THORChain to custody assets across many chains without ever exposing a single private key.
The Problem with Traditional Multisig
Traditional multisignature schemes (like Bitcoin's 2-of-3) have significant limitations when used for cross-chain protocols:
- Each chain has different multisig capabilities
- Keys must be generated per chain
- No unified security model across assets
How TSS Solves This
THORChain has used GG20 threshold signature schemes, with later cryptographic migration work discussed in official incident reporting. Details should stay tied to dated sources because the implementation and recovery path can change.
- Distributed key generation: No single node ever holds the full private key
- Threshold signing: A configurable threshold (typically 2/3) of nodes must cooperate to produce a valid signature
- Chain-agnostic: The same TSS keys can be used to generate addresses on many different blockchains
Security Properties
- No intended single point of failure: Correctly implemented threshold signing avoids one node holding a complete private key, but safety depends on the current cryptographic implementation and active incident status.
- Proactive security: Keys are regularly rotated during churn events.
- Accountability: Misbehaving nodes can be identified and penalized through reward slash points or bond slashing, depending on the fault.
Real-World Impact
The May 15, 2026 official exploit report says a newly churned node operator exploited a GG20 TSS vulnerability and drained one vault before automated solvency detection and manual Mimir halts contained further activity. That report should be treated as dated incident evidence, not a timeless statement of current safety.
TSS is what makes true native cross-chain liquidity possible without bridges or wrapped tokens.