Presentation is loading. Please wait.

Presentation is loading. Please wait.

Announcements: SHA due tomorrow SHA due tomorrow Last exam Thursday Last exam Thursday Available for project questions this week Available for project.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Announcements: SHA due tomorrow SHA due tomorrow Last exam Thursday Last exam Thursday Available for project questions this week Available for project."— Presentation transcript:

1 Announcements: SHA due tomorrow SHA due tomorrow Last exam Thursday Last exam Thursday Available for project questions this week Available for project questions this week Next week you will evaluate each other’s presentations. Next week you will evaluate each other’s presentations.Questions? Secret sharing DTTF/NB479: DszquphsbqizDay 33

2 What is secret splitting? I have a secret I want to share To figure it out, you’ll need teamwork. r, M-r (mod n) r 1, r 2, …r i-1, M-Σ i (r i ) (all mod n) 1

3 There are many applications of secret splitting and secret sharing 1.Inheritances 2.Military 3.Government 4.Information security What if I wanted a subset of the people to be able to reconstruct the secret? Secret splitting is trivial Secret sharing is not! 2

4 Threshold schemes require t people of a set of w to compute the secret (t, w) – threshold Scheme If t = w, then all participants are required If t = w, then all participants are required Knowing t or more pieces makes M easily computable t–1 or fewer pieces leaves M completely undetermined

5 Idea: we can use curve fitting to reconstruct a function, and thus a message Secret  3 The y-intercept of the line encodes the secret! Your quiz question is an example of a (2,3) scheme

6 The Shamir threshold scheme uses curve-fitting with higher dimensions Secret  4-5 The y-intercept of the line encodes the secret! Derivation on board

7 Extensions to Shamir Secret  4-5 Multiple shares Multiple groups of people

8 In the Blakely scheme, we represent the secret as the y-coordinate of the intersection of hyperplanes http://en.wikipedia.org/wiki/Secret_sharing 6

9 Back to Shamir Secret  7-9 The y-intercept of the line encodes the secret! Your quiz question is an example of a (4, 6) scheme Solve it and see you Thursday!

10 Mignotte Method (t, n) threshold scheme Uses Chinese remainder theorem Solving a system of equations, mod n

11 Method Construct a Mignotte Sequence Conditions: Pairwise relatively prime Pairwise relatively prime sShares:

12 Reconstruction  Solve:  Using Chinese Remainder Theorem  Unique (mod m 1 *** m n )

Download ppt "Announcements: SHA due tomorrow SHA due tomorrow Last exam Thursday Last exam Thursday Available for project questions this week Available for project."

Similar presentations

The Euler Phi-Function Is Multiplicative (3/3)

The Euler Phi-Function Is Multiplicative (3/3)
COMP 170 L2 Page 1 L06: The RSA Algorithm l Objective: n Present the RSA Cryptosystem n Prove its correctness n Discuss related issues.

COMP 170 L2 Page 1 L06: The RSA Algorithm l Objective: n Present the RSA Cryptosystem n Prove its correctness n Discuss related issues.
How to Collaborate between Threshold Secret Sharing Schemes Daoshun Wang, Ziwei YeXiaobo Li Tsinghua University, ChinaUniversity of Alberta, Canada.

How to Collaborate between Threshold Secret Sharing Schemes Daoshun Wang, Ziwei YeXiaobo Li Tsinghua University, ChinaUniversity of Alberta, Canada.
Ch12. Secret Sharing Schemes

Ch12. Secret Sharing Schemes
Announcements: 1. Congrats on reaching the halfway point once again! 2. DES graded soon 3. Short “pop” quiz on Ch 3. (Thursday at earliest) 4. Reminder:

Announcements: 1. Congrats on reaching the halfway point once again! 2. DES graded soon 3. Short “pop” quiz on Ch 3. (Thursday at earliest) 4. Reminder:
Data encryption with big prime numbers

Data encryption with big prime numbers
Visual Cryptography Jiangyi Hu Jiangyi Hu, Zhiqian Hu2 Visual Cryptography Example Secret sharing Visual cryptography Model Extensions.

Visual Cryptography Jiangyi Hu Jiangyi Hu, Zhiqian Hu2 Visual Cryptography Example Secret sharing Visual cryptography Model Extensions.
Solving Equations. -132 = 4x – 5(6x – 10) -132 = 4x – 30x + 50 -132 = -26x + 50 -182 = -26x 7 = x.

Solving Equations = 4x – 5(6x – 10) -132 = 4x – 30x = -26x = -26x 7 = x.
Announcements: Programming exam next Thursday on breaking codes from chapter 2 Programming exam next Thursday on breaking codes from chapter 2 Written.

Announcements: Programming exam next Thursday on breaking codes from chapter 2 Programming exam next Thursday on breaking codes from chapter 2 Written.
Announcements: Please use pencil on quizzes if possible Please use pencil on quizzes if possible Knuth quotes, part 1 Knuth quotes, part 1Questions?Today:

Announcements: Please use pencil on quizzes if possible Please use pencil on quizzes if possible Knuth quotes, part 1 Knuth quotes, part 1Questions?Today:
Announcements: See schedule for weeks 8 and 9 See schedule for weeks 8 and 9 Project workdays, due dates, exam Project workdays, due dates, exam Projects:

Announcements: See schedule for weeks 8 and 9 See schedule for weeks 8 and 9 Project workdays, due dates, exam Project workdays, due dates, exam Projects:
Announcements: Computer exam next class Computer exam next classQuestions? DTTF/NB479: DszquphsbqizDay 10.

Announcements: Computer exam next class Computer exam next classQuestions? DTTF/NB479: DszquphsbqizDay 10.
Announcements: HW4 – DES due midnight HW4 – DES due midnight So far the record is less than 15 sec on 1 million iters Quiz on ch 3 postponed until after.

Announcements: HW4 – DES due midnight HW4 – DES due midnight So far the record is less than 15 sec on 1 million iters Quiz on ch 3 postponed until after.
Announcements: 1. HW7 due next Tuesday. 2. Inauguration today! Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman,

Announcements: 1. HW7 due next Tuesday. 2. Inauguration today! Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman,
Announcements: Homework 1 returned. Comments from Kevin? Homework 1 returned. Comments from Kevin? Matlab: tutorial available at

Announcements: Homework 1 returned. Comments from Kevin? Homework 1 returned. Comments from Kevin? Matlab: tutorial available at
Announcements: 1. Presentations start Friday 2. Cem Kaner presenting O167 10 th block today. Questions? This week: DSA, Digital Cash DSA, Digital Cash.

Announcements: 1. Presentations start Friday 2. Cem Kaner presenting O th block today. Questions? This week: DSA, Digital Cash DSA, Digital Cash.
Announcements: 1. Short “pop” quiz on Ch 3 (today?) 2. Term project groups and topics due midnight 3. HW6 due Tuesday. Questions? This week: Primality.

Announcements: 1. Short “pop” quiz on Ch 3 (today?) 2. Term project groups and topics due midnight 3. HW6 due Tuesday. Questions? This week: Primality.
Announcements: 1. Short “pop” quiz on Ch 3 (today?) 2. Term project groups and topics formed 3. HW6 due tomorrow. Questions? This week: Discrete Logs,

Announcements: 1. Short “pop” quiz on Ch 3 (today?) 2. Term project groups and topics formed 3. HW6 due tomorrow. Questions? This week: Discrete Logs,
Curve-Fitting Polynomial Interpolation

Curve-Fitting Polynomial Interpolation
Announcements: 1. HW6 due now 2. HW7 posted Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman, ElGamal Hash Functions.

Announcements: 1. HW6 due now 2. HW7 posted Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman, ElGamal Hash Functions.

Similar presentations

Ads by Google