Presentation is loading. Please wait.

Presentation is loading. Please wait.

Announcements: SHA due Tuesday SHA due Tuesday Last exam Thursday Last exam Thursday Available for project questions this week Available for project questions.

Published byDaniel Knight Modified over 8 years ago

Similar presentations

Presentation on theme: "Announcements: SHA due Tuesday SHA due Tuesday Last exam Thursday Last exam Thursday Available for project questions this week Available for project questions."— Presentation transcript:

1 Announcements: SHA due Tuesday SHA due Tuesday Last exam Thursday Last exam Thursday Available for project questions this week Available for project questions this week You will evaluate each other’s presentations during 10 th week. You will evaluate each other’s presentations during 10 th week.Questions? Secret sharing DTTF/NB479: DszquphsbqizDay 31

2 What is secret splitting? 1 r M-r (mod n)

3 There are many applications of secret splitting and secret sharing 1.Inheritances 2.Military 3.Government 4.Information security What if I wanted a subset of the people to be able to reconstruct the secret? Secret splitting is trivial Secret sharing is not! 2

4 (t,w)-threshold schemes require t people from a set of w to compute the secret Knowing t or more pieces makes M easily computable t–1 or fewer pieces leaves M completely undetermined If (3,5) threshold scheme: {a,d,e} can figure out secret {a,d,e} can figure out secret {c,e} cannot {c,e} cannot {a,b,c,d} is redundant {a,b,c,d} is redundant Secret splitting (all participants required) is just a special case: Let t = w Let t = w a b c d e

5 Idea: we can use curve fitting to reconstruct a function, and thus a message Secret  3 The y-intercept of the line encodes the secret! Your quiz question is an example of a (2,3) scheme Here is a (2,4) scheme:

6 The Shamir threshold scheme uses curve-fitting with higher dimensions Secret  4-5 The y-intercept of the line encodes the secret! Derivation on board

7 Extensions to Shamir Secret  4-5 Multiple shares Multiple groups of people

8 In the Blakely scheme, we represent the secret as the y-coordinate of the intersection of hyperplanes http://en.wikipedia.org/wiki/Secret_sharing 6

9 Back to Shamir Secret  7-8 The y-intercept of the line encodes the secret! Your quiz question is an example of a (4, 6) scheme Project workday tomorrow: quiz due at 2:00 pm.

10 Mignotte Method (t, n) threshold scheme Uses Chinese remainder theorem Solving a system of equations, mod n

11 Method Construct a Mignotte Sequence Conditions: Pairwise relatively prime Pairwise relatively prime sShares:

12 Reconstruction  Solve:  Using Chinese Remainder Theorem  Unique (mod m 1 *** m n )

Download ppt "Announcements: SHA due Tuesday SHA due Tuesday Last exam Thursday Last exam Thursday Available for project questions this week Available for project questions."

Similar presentations

The Euler Phi-Function Is Multiplicative (3/3)

The Euler Phi-Function Is Multiplicative (3/3)
COMP 170 L2 Page 1 L06: The RSA Algorithm l Objective: n Present the RSA Cryptosystem n Prove its correctness n Discuss related issues.

COMP 170 L2 Page 1 L06: The RSA Algorithm l Objective: n Present the RSA Cryptosystem n Prove its correctness n Discuss related issues.
How to Collaborate between Threshold Secret Sharing Schemes Daoshun Wang, Ziwei YeXiaobo Li Tsinghua University, ChinaUniversity of Alberta, Canada.

How to Collaborate between Threshold Secret Sharing Schemes Daoshun Wang, Ziwei YeXiaobo Li Tsinghua University, ChinaUniversity of Alberta, Canada.
Ch12. Secret Sharing Schemes

Ch12. Secret Sharing Schemes
Announcements: 1. Congrats on reaching the halfway point once again! 2. DES graded soon 3. Short “pop” quiz on Ch 3. (Thursday at earliest) 4. Reminder:

Announcements: 1. Congrats on reaching the halfway point once again! 2. DES graded soon 3. Short “pop” quiz on Ch 3. (Thursday at earliest) 4. Reminder:
Data encryption with big prime numbers

Data encryption with big prime numbers
Visual Cryptography Jiangyi Hu Jiangyi Hu, Zhiqian Hu2 Visual Cryptography Example Secret sharing Visual cryptography Model Extensions.

Visual Cryptography Jiangyi Hu Jiangyi Hu, Zhiqian Hu2 Visual Cryptography Example Secret sharing Visual cryptography Model Extensions.
Introduction to Modern Cryptography, Lecture 13 Money Related Issues ($$$) and Odds and Ends.

Introduction to Modern Cryptography, Lecture 13 Money Related Issues ($$$) and Odds and Ends.
Announcements: SHA due tomorrow SHA due tomorrow Last exam Thursday Last exam Thursday Available for project questions this week Available for project.

Announcements: SHA due tomorrow SHA due tomorrow Last exam Thursday Last exam Thursday Available for project questions this week Available for project.
Announcements: Please use pencil on quizzes if possible Please use pencil on quizzes if possible Knuth quotes, part 1 Knuth quotes, part 1Questions?Today:

Announcements: Please use pencil on quizzes if possible Please use pencil on quizzes if possible Knuth quotes, part 1 Knuth quotes, part 1Questions?Today:
Announcements: See schedule for weeks 8 and 9 See schedule for weeks 8 and 9 Project workdays, due dates, exam Project workdays, due dates, exam Projects:

Announcements: See schedule for weeks 8 and 9 See schedule for weeks 8 and 9 Project workdays, due dates, exam Project workdays, due dates, exam Projects:
Lecture 6 Intersection of Hyperplanes and Matrix Inverse Shang-Hua Teng.

Lecture 6 Intersection of Hyperplanes and Matrix Inverse Shang-Hua Teng.
Announcements: HW4 – DES due midnight HW4 – DES due midnight So far the record is less than 15 sec on 1 million iters Quiz on ch 3 postponed until after.

Announcements: HW4 – DES due midnight HW4 – DES due midnight So far the record is less than 15 sec on 1 million iters Quiz on ch 3 postponed until after.
Announcements: 1. HW7 due next Tuesday. 2. Inauguration today! Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman,

Announcements: 1. HW7 due next Tuesday. 2. Inauguration today! Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman,
Announcements: Homework 1 returned. Comments from Kevin? Homework 1 returned. Comments from Kevin? Matlab: tutorial available at

Announcements: Homework 1 returned. Comments from Kevin? Homework 1 returned. Comments from Kevin? Matlab: tutorial available at
Announcements: 1. Short “pop” quiz on Ch 3 (today?) 2. Term project groups and topics due midnight 3. HW6 due Tuesday. Questions? This week: Primality.

Announcements: 1. Short “pop” quiz on Ch 3 (today?) 2. Term project groups and topics due midnight 3. HW6 due Tuesday. Questions? This week: Primality.
Announcements: 1. Short “pop” quiz on Ch 3 (today?) 2. Term project groups and topics formed 3. HW6 due tomorrow. Questions? This week: Discrete Logs,

Announcements: 1. Short “pop” quiz on Ch 3 (today?) 2. Term project groups and topics formed 3. HW6 due tomorrow. Questions? This week: Discrete Logs,
Curve-Fitting Polynomial Interpolation

Curve-Fitting Polynomial Interpolation
Announcements: 1. HW6 due now 2. HW7 posted Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman, ElGamal Hash Functions.

Announcements: 1. HW6 due now 2. HW7 posted Questions? This week: Discrete Logs, Diffie-Hellman, ElGamal Discrete Logs, Diffie-Hellman, ElGamal Hash Functions.
Announcements: 1. Today: digital cash 2. Tomorrow: quiz on ch. 6-9 1.8 questions 3. Thursday: presentations Elliptic curves MD5 vulnerabilities 4. Friday:

Announcements: 1. Today: digital cash 2. Tomorrow: quiz on ch questions 3. Thursday: presentations Elliptic curves MD5 vulnerabilities 4. Friday:

Similar presentations

Ads by Google