Threshold Signature Schemes used by Vultisig
Understanding Vultisig’s TSS Protocols: GG20 and DKLS23
Last updated
Was this helpful?
Understanding Vultisig’s TSS Protocols: GG20 and DKLS23
Last updated
Was this helpful?
The Threshold Signature Scheme (TSS) protects your digital assets by splitting control among multiple devices or parties using multi-party computation (MPC) technology. Rather than using one private key, which could be stolen, TSS divides control so that a minimum number of shares t("threshold") must work together to authorize transactions.
It's like a bank vault that requires three out of five keys to open rather than one master key. If one key is lost or stolen, your assets remain safe because the thief would need additional keys.
Note: If you lose access to enough shares to meet the threshold, you will permanently lose access to your assets. Backing up each device individually is essential.
For your wallet security, TSS means:
No single point of failure
Protection against device loss or theft
The ability to customize your security setup
Vultisig utilizes two TSS protocols: the original GG20 and the newer DKLS23. Both protocols secure your assets, but they do so in different technical ways.
GG20 (developed in 2020) was Vultisig’s first TSS protocol. It’s like a secure but somewhat complex postal system:
How it works: Uses a special type of encryption called “Paillier encryption” that allows mathematical operations on encrypted data
Communication style: Requires 6 rounds of back-and-forth messages between your devices to complete a signature
Security approach: Includes “identifiable abort” - the ability to detect which device might be causing problems
DKLS23 (developed in 2023) is Vultisig’s current, newer protocol. It’s like a streamlined, modern courier service:
How it works: Uses a technique called “oblivious transfer” that’s more efficient than the previous method
Communication style: Requires only 3 rounds of messages (half as many as GG20)
Security approach: Maintains the same strong security but with simpler mechanisms
The upgrade offers:
Faster transactions: Signing operations complete in milliseconds rather than seconds
Better reliability: Fewer communication rounds mean less chance of failure when internet connections are slow
Improved device compatibility: Works efficiently even on smartphones with limited processing power
Enhanced battery life: Less computational work means less drain on your device’s battery
More responsive experience: Security operations happen in the background without noticeable delays
WASM Compatibility: Provides the Vultisig Extension with the same experience as the mobile apps.
This upgrade represents Vultisig’s commitment to implementing the latest advancements in cryptographic security while improving the user experience.
As a Vultisig user, the transition to DKLS23 happens either with creating a fresh vault or migrating your already existing GG20 vault in the settings.
Do I need to migrate to DKLS23?
While the possible improvements for end users of Vultisig are clear, upgrading the existing GG20 vaults to DKLS23 vaults is unnecessary. Vultisig will continue to support both protocols up to this date.
Comparing the Protocols
Signing Speed
Slower
5-10x faster
Quicker transaction approvals
Communication
Rounds
| 6 round | 3 rounds |
Works better on spotty connections
| | Security Level | Very High | Very High | Both protocols provide excellent security | | Network Reliability | More sensitive to delays | More robust | Fewer failed transactions |
: The Enhanced Protocol
In early 2025, Vultisig transitioned from GG20 to DKLS23 to provide users with a better experience while maintaining the highest security standards. This was accomplished in close cooperation with , which developed a customized version of DKLS23 for Vultisig. The open-source protocol can be found on the Silence Laboratories .
If you’re interested in the technical details of these protocols, you can explore the more comprehensive explanation of or \