[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Key Sharing Protocols



> 
> I'm working on an internal protocol for securing company records
> and I'd like to solicit some net.wisdom.
> (...)
> 
> To allow for loss of a passphrase, for whatever reason, use a
> secret sharing protocol to split the secret key of the user into
> several pieces, held by designated security officers.
> Reconstruction of the key will require cooperation by "n"
> security officers. I have some problems with this.
> 

Sorry, I should have done some more reading before I posted. What I'm
after is a "Fair Cryptosystem". I'm not happy with the whole idea of
escrowed keys, but in this case, it's the best solution which will be
accepted by this organization.

Micali describes how the user can generate their own key and create
verifiable pieces for the escrow agents. Does anyone know of code which
implements this scheme?


-------------------------------------------------------------------------
To find out more about the anon service, send mail to [email protected].
Due to the double-blind, any mail replies to this message will be anonymized,
and an anonymous id will be allocated automatically. You have been warned.
Please report any problems, inappropriate use etc. to [email protected].