The highest tagged major version is v4.

share

package

v0.0.0-...-ffb7191 Latest Latest Go to latest Published: Jan 25, 2019 License: MPL-2.0 Imports: 7 Imported by: 12

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/dedis/kyber

Links

Open Source Insights

Documentation ¶

Overview ¶

Package share implements Shamir secret sharing and polynomial commitments. Shamir's scheme allows you to split a secret value into multiple parts, so called shares, by evaluating a secret sharing polynomial at certain indices. The shared secret can only be reconstructed (via Lagrange interpolation) if a threshold of the participants provide their shares. A polynomial commitment scheme allows a committer to commit to a secret sharing polynomial so that a verifier can check the claimed evaluations of the committed polynomial. Both schemes of this package are core building blocks for more advanced secret sharing techniques.

Index ¶

func RecoverCommit(g kyber.Group, shares []*PubShare, t, n int) (kyber.Point, error)
func RecoverSecret(g kyber.Group, shares []*PriShare, t, n int) (kyber.Scalar, error)
type PriPoly
type PriShare
- func (p *PriShare) Hash(s kyber.HashFactory) []byte
- func (p *PriShare) String() string
type PubPoly
- func NewPubPoly(g kyber.Group, b kyber.Point, commits []kyber.Point) *PubPoly
- func RecoverPubPoly(g kyber.Group, shares []*PubShare, t, n int) (*PubPoly, error)
type PubShare
- func (p *PubShare) Hash(s kyber.HashFactory) []byte

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func RecoverCommit ¶

func RecoverCommit(g kyber.Group, shares []*PubShare, t, n int) (kyber.Point, error)

RecoverCommit reconstructs the secret commitment p(0) from a list of public shares using Lagrange interpolation.

func RecoverSecret ¶

func RecoverSecret(g kyber.Group, shares []*PriShare, t, n int) (kyber.Scalar, error)

RecoverSecret reconstructs the shared secret p(0) from a list of private shares using Lagrange interpolation.

Types ¶

type PriPoly ¶

type PriPoly struct {
	// contains filtered or unexported fields
}

PriPoly represents a secret sharing polynomial.

func CoefficientsToPriPoly ¶

func CoefficientsToPriPoly(g kyber.Group, coeffs []kyber.Scalar) *PriPoly

CoefficientsToPriPoly returns a PriPoly based on the given coefficients

func NewPriPoly ¶

func NewPriPoly(group kyber.Group, t int, s kyber.Scalar, rand cipher.Stream) *PriPoly

NewPriPoly creates a new secret sharing polynomial using the provided cryptographic group, the secret sharing threshold t, and the secret to be shared s. If s is nil, a new s is chosen using the provided randomness stream rand.

func RecoverPriPoly ¶

func RecoverPriPoly(g kyber.Group, shares []*PriShare, t, n int) (*PriPoly, error)

RecoverPriPoly takes a list of shares and the parameters t and n to reconstruct the secret polynomial completely, i.e., all private coefficients. It is up to the caller to make sure that there are enough shares to correctly re-construct the polynomial. There must be at least t shares.

func (*PriPoly) Add ¶

func (p *PriPoly) Add(q *PriPoly) (*PriPoly, error)

Add computes the component-wise sum of the polynomials p and q and returns it as a new polynomial.

func (*PriPoly) Coefficients ¶

func (p *PriPoly) Coefficients() []kyber.Scalar

Coefficients return the list of coefficients representing p. This information is generally PRIVATE and should not be revealed to a third party lightly.

func (*PriPoly) Commit ¶

func (p *PriPoly) Commit(b kyber.Point) *PubPoly

Commit creates a public commitment polynomial for the given base point b or the standard base if b == nil.

func (*PriPoly) Equal ¶

func (p *PriPoly) Equal(q *PriPoly) bool

Equal checks equality of two secret sharing polynomials p and q. If p and q are trivially unequal (e.g., due to mismatching cryptographic groups or polynomial size), this routine returns in variable time. Otherwise it runs in constant time regardless of whether it eventually returns true or false.

func (*PriPoly) Eval ¶

func (p *PriPoly) Eval(i int) *PriShare

Eval computes the private share v = p(i).

func (*PriPoly) Mul ¶

func (p *PriPoly) Mul(q *PriPoly) *PriPoly

Mul multiples p and q together. The result is a polynomial of the sum of the two degrees of p and q. NOTE: it does not check for null coefficients after the multiplication, so the degree of the polynomial is "always" as described above. This is only for use in secret sharing schemes. It is not a general polynomial multiplication routine.

func (*PriPoly) Secret ¶

func (p *PriPoly) Secret() kyber.Scalar

Secret returns the shared secret p(0), i.e., the constant term of the polynomial.

func (*PriPoly) Shares ¶

func (p *PriPoly) Shares(n int) []*PriShare

Shares creates a list of n private shares p(1),...,p(n).

func (*PriPoly) String ¶

func (p *PriPoly) String() string

func (*PriPoly) Threshold ¶

func (p *PriPoly) Threshold() int

Threshold returns the secret sharing threshold.

type PriShare ¶

type PriShare struct {
	I int          // Index of the private share
	V kyber.Scalar // Value of the private share
}

PriShare represents a private share.

func (*PriShare) Hash ¶

func (p *PriShare) Hash(s kyber.HashFactory) []byte

Hash returns the hash representation of this share

func (*PriShare) String ¶

func (p *PriShare) String() string

type PubPoly ¶

type PubPoly struct {
	// contains filtered or unexported fields
}

PubPoly represents a public commitment polynomial to a secret sharing polynomial.

func NewPubPoly ¶

func NewPubPoly(g kyber.Group, b kyber.Point, commits []kyber.Point) *PubPoly

NewPubPoly creates a new public commitment polynomial.

func RecoverPubPoly ¶

func RecoverPubPoly(g kyber.Group, shares []*PubShare, t, n int) (*PubPoly, error)

RecoverPubPoly reconstructs the full public polynomial from a set of public shares using Lagrange interpolation.

func (*PubPoly) Add ¶

func (p *PubPoly) Add(q *PubPoly) (*PubPoly, error)

Add computes the component-wise sum of the polynomials p and q and returns it as a new polynomial. NOTE: If the base points p.b and q.b are different then the base point of the resulting PubPoly cannot be computed without knowing the discrete logarithm between p.b and q.b. In this particular case, we are using p.b as a default value which of course does not correspond to the correct base point and thus should not be used in further computations.

func (*PubPoly) Check ¶

func (p *PubPoly) Check(s *PriShare) bool

Check a private share against a public commitment polynomial.

func (*PubPoly) Commit ¶

func (p *PubPoly) Commit() kyber.Point

Commit returns the secret commitment p(0), i.e., the constant term of the polynomial.

func (*PubPoly) Equal ¶

func (p *PubPoly) Equal(q *PubPoly) bool

Equal checks equality of two public commitment polynomials p and q. If p and q are trivially unequal (e.g., due to mismatching cryptographic groups), this routine returns in variable time. Otherwise it runs in constant time regardless of whether it eventually returns true or false.

func (*PubPoly) Eval ¶

func (p *PubPoly) Eval(i int) *PubShare

Eval computes the public share v = p(i).

func (*PubPoly) Info ¶

func (p *PubPoly) Info() (base kyber.Point, commits []kyber.Point)

Info returns the base point and the commitments to the polynomial coefficients.

func (*PubPoly) Shares ¶

func (p *PubPoly) Shares(n int) []*PubShare

Shares creates a list of n public commitment shares p(1),...,p(n).

func (*PubPoly) Threshold ¶

func (p *PubPoly) Threshold() int

Threshold returns the secret sharing threshold.

type PubShare ¶

type PubShare struct {
	I int         // Index of the public share
	V kyber.Point // Value of the public share
}

PubShare represents a public share.

func (*PubShare) Hash ¶

func (p *PubShare) Hash(s kyber.HashFactory) []byte

Hash returns the hash representation of this share.

Source Files ¶

View all Source files

poly.go

Directories ¶

Path	Synopsis
dkg
pedersen Package dkg implements a general distributed key generation (DKG) framework.	Package dkg implements a general distributed key generation (DKG) framework.
rabin Package dkg implements the protocol described in "Secure Distributed Key Generation for Discrete-Log Based Cryptosystems" by R. Gennaro, S. Jarecki, H. Krawczyk, and T. Rabin.	Package dkg implements the protocol described in "Secure Distributed Key Generation for Discrete-Log Based Cryptosystems" by R. Gennaro, S. Jarecki, H. Krawczyk, and T. Rabin.
pvss Package pvss implements public verifiable secret sharing as introduced in "A Simple Publicly Verifiable Secret Sharing Scheme and its Application to Electronic Voting" by Berry Schoenmakers.	Package pvss implements public verifiable secret sharing as introduced in "A Simple Publicly Verifiable Secret Sharing Scheme and its Application to Electronic Voting" by Berry Schoenmakers.
vss
pedersen Package vss implements the verifiable secret sharing scheme from "Non-Interactive and Information-Theoretic Secure Verifiable Secret Sharing" by Torben Pryds Pedersen.	Package vss implements the verifiable secret sharing scheme from "Non-Interactive and Information-Theoretic Secure Verifiable Secret Sharing" by Torben Pryds Pedersen.
rabin Package vss implements the verifiable secret sharing scheme from the paper "Provably Secure Distributed Schnorr Signatures and a (t, n) Threshold Scheme for Implicit Certificates".	Package vss implements the verifiable secret sharing scheme from the paper "Provably Secure Distributed Schnorr Signatures and a (t, n) Threshold Scheme for Implicit Certificates".

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL