Changelog
Start typing to search…
Back to All

Builder Vault (TSM) Release 73.0.0

March 26th, 2026 by Michael Bæksvang Østergaard

Versions

Database: 7.14.0
Node Communication: 36.2 (!)
Node Configuration: 28.2 (!)
Client API: 64.2 (!)
Client Communication: 33.1 (!)

Changelog

Database:
	- Remove obsolete tables and columns
Node Communication:
	- Added support for BLS
	- Added support for EC-KCDSA
	- Added support for Aleo (experimental)
	- Added MPCDirectServer. A new method for direct communication between nodes using TCP and WebSockets
	- Changes in the BIP32 hardened derivation methods for DKLs19 and DKLs23
	- Changes in protocol implementation of AES, HMAC, AN10922, RFC5649
	- Removed support for the WRK17 general MPC protocol
	- Removed WebSocket support from the MPCTCPServer
Node Configuration:
	- Added support for BLS
	- Added support for EC-KCDSA
	- Added support for ECDH
	- Added support for Aleo (experimental)
	- Added support for getting randomness from an external device.
	- Added MPCDirectServer to handle both TCP and WebSocket connections
	- The MRZ15 protocol now works with any number of two or more players and any threshold
	- Removed support for the WRK17 general MPC protocol
	- Removed MPCWebSocketServer and removed PacketCommunication from MPCTCPServer
Client API:
	- Added support for BLS
	- Added support for EC-KCDSA
	- Added support for ECDH
	- Added support for Aleo (experimental)
	- Added support for setting the address of a dynamic player
	- Added support for an external decryption function when recovering private keys (Go SDK)
	- Added support for MPC unwrap of RSA and secure (MPC) unwrapping of all keys in the PKCS #11 module
	- WASM: Added the possibility to use an embedded node, e. g. running a node in a browser, or other platforms that support WASM.
	- AES, HMAC: Key generation and import methods now require an additional parameter MinPlayers
	- AES, HMAC: Sensitive input such as plaintexts must now be input as secret shares using the SplitInput method in the SDK
	- BIP32 hardened derivation: Seed generation and import now requires an additional parameter MinPlayers (currently only MinPlayers=3 supported)
	- AN10922, RFC5649: Input sharings must now be computed using the SplitInput method in the SDK
	- Removed NewStaticSessionConfigWithTenant
Client Communication:
	- Added support for BLS
	- Added support for EC-KCDSA
	- Added support for ECDH
	- Added support for Aleo (experimental)
	- AES, HMAC, AN10922, RFC5649: Changes to several endpoints
	- DKLs19, DKLs23: Changes to endpoints for BIP32 hardened derivation
	- Management API: Added endpoints for counting, listing, and deleting keys, and applications.
	- Added support for setting the address of a dynamic player
Patch changes (no effect on compatibility):
	- Audit logging of count and list keys
	- No longer collects metrics when metrics are disabled
	- Update libmpc to fix DKLS23 presignature security issue
	- Upgrade debian bullseye to trixie
	- Allow a mix of message broker and TCP/WS communication in a session.

Details

N/A