## Cryptology ePrint Archive: Report 2017/1099

Security Analysis of a Dynamic Threshold Secret Sharing Scheme Using Linear Subspace Method

Abstract: A dealer-free and non-interactive dynamic threshold secret sharing scheme has been proposed by Harn et.al., in 2015. In this scheme, a (t; n) secret sharing scheme in secret reconstruction phase can turn into a (m; n) scheme in secret reconstruction phase, where m is the number of participanting shareholders. It has been claimed that the secrecy of shares and the secrecy of the secret are unconditionally preserved if $m \in (t; 1 + t(t + 1)=2]$. This paper provides a security analysis of this scheme in two directions. Firstly, we show that this scheme does not have the dynamic property, i.e. any t + 1 released values are sufficient to reconstruct the secret, even the agreed updated threshold is larger. Secondly, we show that any t + 1 released values are sufficient to forge the released value of a non-participating shareholder. The technique that we enjoyed for our analysis is the linear subspace method, which basically measures the information leaked by the known parameters of the scheme by computing the dimension of the linear subspace spanned by these parameter. This method has shown to be capable of cryptanalysis of some secret sharing based schemes, whose security relies on keeping the coefficients of the underlying polynomial(s) secret.

Category / Keywords: cryptographic protocols / Dynamic threshold, Linear subspace, Forging, Secret reconstruction

Date: received 12 Nov 2017

Contact author: zahraahmadian at yahoo com

Available format(s): PDF | BibTeX Citation

Short URL: ia.cr/2017/1099

[ Cryptology ePrint archive ]