词条 | Publicly Verifiable Secret Sharing |
释义 |
In cryptography, a secret sharing scheme is publicly verifiable (PVSS) if it is a verifiable secret sharing scheme and if any party involved can verify the validity of the shares distributed by the dealer. {{quotation|In verifiable secret sharing (VSS) the object is to resist malicious players, such as own shares, but that anybody can verify that the participants received correct shares. Hence, it is explicitly required that can be verified publicly. |Berry Schoenmakers. A Simple Publicly Verifiable Secret Sharing Scheme and its Application to Electronic Voting .}} The method introduced here according to the paper by Chunming Tang, Dingyi Pei, Zhuo Liu, and Yong He is non-interactive and maintains this property throughout the protocol. InitializationThe PVSS scheme dictates an initialization process in which:
Excluding the initialization process, the PVSS consists of two phases: Distribution1.Distribution of secret shares is performed by the dealer , which does the following:
(note: guarantees that the reconstruction protocol will result in the same . 2. Verification of the shares:
Reconstruction1. Decryption of the shares:
(note: fault-tolerance can be allowed here: it's not required that all participants succeed in decrypting as long as a qualified set of participants are successful to decrypt ).
2. Pooling the shares:
Chaum-Pedersen ProtocolA proposed protocol proving: :
Denote this protocol as: A generalization of is denoted as: where as: and :
The Chaum-Pedersen protocol is an interactive method and needs some modification to be used in a non-interactive way: Replacing the randomly chosen by a 'secure hash' function with as input value. See also
References
1 : Applications of cryptography |
随便看 |
|
开放百科全书收录14589846条英语、德语、日语等多语种百科知识,基本涵盖了大多数领域的百科知识,是一部内容自由、开放的电子版国际百科全书。