Comment by sterlind
5 years ago
your link brings up an excellent point about multisig being a much better option for guarding cryptocurrency (because the shards don't need to be brought together on a single device.)
but sometimes you just have to write down passwords. you can use a password manager, but then you need to guard the master password. you can use a TPM with a PIN, but what if you lose the PIN or get hit by a bus or the TPM gets fried?
so either you write down the whole password in at least one place, or you write down shards. shards seem safer.
Yes, there can be cases. Though many of them can be addressed with encryption, e.g. just creating a two factor auth.
The added threshold part is often not easy to justify vs, something like having two factors (data and key) and backups of each.
It's also the case that my link is specific to Bitcoin where there are really good alternatives.
How could/would two factors (as opposed to SSS) solve e.g. the use case outlined in SLIP-0039?