splitting keys

Adrian 'Dagurashibanipal' von Bidder avbidder@fortytwo.ch
Mon Mar 3 10:09:01 2003


--=-G6GVKQ/+Tc6MP0x3yOib
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

On Mon, 2003-03-03 at 00:34, Michael H. Warfield wrote:
> On Sat, Mar 01, 2003 at 11:01:30AM +0100, Adrian 'Dagurashibanipal' von B=
idder wrote:

still valid:
> > [no cc:s necessary. Thanks.]

>         That same NDSS paper touches on "t out of k sharing".  They claim
> that standard Shamir secret sharing is inadequate specifically because th=
e
> secret key would have to be reconstructed at a single location in order t=
o
> be used.  They present a method that works for reasonably small k (k < 20=
).
> The paper includes sitations for both Shamir secret key sharing (A. Shami=
r,
> "How to share a secret", Communications of the ACM, Vol 22, 1979, pp 612-=
613)
> and an alternative to their approach (T. Rabin, "A simplified approach to
> threshold and proactive RSA", Proceedings of Crypto '98).  I'm sure there
> are other references to t of k sharing which do not require reconstitutin=
g
> the RSA key.

Thanks a lot - I don't know if I ever have the time to really dig in
here, but the reference has been noted.

cheers
-- vbi


--=20
this email is protected by a digital signature: http://fortytwo.ch/gpg

--=-G6GVKQ/+Tc6MP0x3yOib
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: get my key from http://fortytwo.ch/gpg/92082481

iKcEABECAGcFAj5jG91gGmh0dHA6Ly9mb3J0eXR3by5jaC9sZWdhbC9ncGcvZW1h
aWwuMjAwMjA4MjI/dmVyc2lvbj0xLjMmbWQ1c3VtPTE0Y2E2MTZmMTQ2ODJhODJj
YjljYzI1YzliMzRhMTBkAAoJEIukMYvlp/fWZBIAoJZpX9C9YvDrR0fQx1y98w0Z
4v1wAJ9KtHRavvtSc4aVuRRS6QxbluVfSA==
=K4UH
-----END PGP SIGNATURE-----
Signature policy: http://fortytwo.ch/legal/gpg/email.20020822?version=1.3&md5sum=14ca616f14682a82cb9cc25c9b34a10d

--=-G6GVKQ/+Tc6MP0x3yOib--