They don't need to delete. You just rotate the polynomial to a position the leaked key is not part of the polynomial anymore.
Login to reply
Replies (3)
based
OK but can't the old shares still sign things for the same public key?
Maybe I am missing something.
Signers have to agree on a polynomial to sign. My understanding is that once the leaked key signs with the wrong polynomial, the other signers can just reject that share.