[already sent this to Steve... but forgot to include the list]
Steve,
Do you mean like the Blakley-Shamir key-splitting that we do in PGP? The
source code for this is in 6.5.1 from www.pgpi.com.
(We break up the passphrase of a private key into n shares, and then share
holders can get a portion of the n shares, where the share files are either
symmetrically encrypted or encrypted using a pre-existing public key. You
can then reconstitute the key -- for decrypting or signing -- either by
sneaker-net or by our built in TLS key reconstitution feature.)
Noah Salzman
[EMAIL PROTECTED]
PGP QA Manager
408.346.5186
-----Original Message-----
From: Steve Bellovin [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 28, 2000 7:53 PM
To: [EMAIL PROTECTED]
Subject: secret-sharing code
Are there any freely-available secret-sharing packages around?
Specifically,
I need to be able to set up modestly complex policies to protect a sensitive
signature key.
While source code would be best, I'd also be interested in smart card-based
products.
--Steve Bellovin
