Richard Levitte wrote:
Rafael Cividanes writes:
Hi,
I'm looking for a secure implementation of Shamir Secret Sharing
algorithm in OpenSSL Project. I coudn't find anything in the page
(www.openssl.org).
Is there any free implementation like that of Shamir's algorithm?
We did talk about it a few years ago. However, when I thought about it,
I was disturbed by the fact that you have to put together the secret,
THEN decipher whatever you need to decipher. In a distributed or
otherwise potentially hostile environment, it means that someone will
get the secret, and then, the sharing scheme is moot.
Well, it's the straightforward way to use Shamir technique.
Maybe not the most useful for handling private key shares.
It's easy to use Shamir scheme for ElGamal private key
resulting in decryption by a quorum of key share holders
without giving any one power to decrypt.
The same apply for RSA. However, generating private key in shares
is a bit tricky for this scheme
There was some further talk about a scheme where the message could be
partially deciphered with each secret share. I don't remember all the
details, and the documents I had disappeared in a disk crash (yeah, I'm
much better at keeping backups these days :-)).
http://www.mail-archive.com/openssl-users@openssl.org/msg26707.html
http://www.mail-archive.com/openssl-users@openssl.org/msg26787.html
http://www.mail-archive.com/openssl-users@openssl.org/msg26702.html
Anyway, that's how far we got...
Cheers,
Richard
-----
Please consider sponsoring my work on free software.
See http://www.free.lp.se/sponsoring.html for details.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
