SECRET SHARING SCHEME

BY

ISHITA PANDEY

1^st YEAR

AIM

• Our main is to divide our SECRET into say “n” pieces D1,D2,D3,……,Dn
• Now these pieces are divided in such a way that knowledge of any “k” or more pieces of our SECRET will make our SECRET easily decoded.
• BUT if we have KNOWLEDGE of “k-1” pieces or less then that then our SECRET is totally UNCOMPUTABLE.
• (k,n) =THRESHOLD SCHEME

​

​

PROCEDURE

1)Choose how many parts you require to open any secret. Let say (k-1) coefficients a₁,a_2,a₃,……….,a_k-1

 2)f(x)=a₀+a₁*x+a₂*x²+………+a_k-1*x^k-1

3)Let substitute a₀ by secret “S”

4) f(x)=S+a₁*x+a₂*x²+………+a_k-1*x^k-1

5)Now we can construct [1,f(i)] where i=1,2,3,…..,n

​

EXAMPLE

• Let S=6583
• N=6 and k=3
• Choose random integers a1=108 and a2=43
• F(x)=6583+108*x+43*x2
• Secret share points
• (1,6734),(2,6971),(3,7294),(4,7703),(5,8198),(6,8779)
• Now we give each participant a different single point [both “x” and f(x)]

RECONSTRUCTING THE SECRET

• In order to reconstruct the original secret from any k-out-of-n parts, we need to recreate the polynomial that we defined in the beginning. This can be achieved with the Lagrange Polynomial Interpolation.

​

​

• So now applying this in our example we randomly select 3 out of 6 parts.
• We can easily reconstruct the secret.

​

​

Application

• Yao’s Millionaire Problem-The Millionaires' Problem is an important problem in cryptography, the solution of which is used in e-commerce and data mining. Commercial applications sometimes have to compare numbers which are confidential and whose security is important.
• A set of parties with private inputs wish to compute some joint function of their input.

References

• https://en.wikipedia.org/wiki/Yao%27s_Millionaires%27_Problem – Wikipedia
• https://medium.com/@apogiatzis/shamirs-secret-sharing-a-numeric-example-walkthrough-a59b288c34c4
•  Yao, Andrew C. (November 1982). "Protocols for secure computations".
• Shamir, Adi (1 November 1979). "How to share a secret"

THANK-YOU !!