## Cryptology ePrint Archive: Report 2017/948

Evolving Secret Sharing: Dynamic Thresholds and Robustness

Abstract: Threshold secret sharing schemes enable a dealer to share a secret among $n$ parties such that only subsets of parties of cardinality at least $k = k(n)$ can reconstruct the secret. Komargodski, Naor and Yogev (TCC 2016-B) proposed an efficient scheme for sharing a secret among an unbounded number of parties such that only subsets of $k$ parties can recover the secret, where $k$ is any fixed constant. This access structure is known as $k$-threshold. They left open the possibility of an efficient scheme for the dynamic threshold access structure, in which the qualified sets are of increasing size as the number of parties increases. We resolve this open problem and present a construction in which the share size of the $t$-th party is $O(t^4\cdot \log t)$ bits.

Furthermore, we show how to generically translate any scheme for $k$-threshold into a scheme which is robust, where a shared secret can be recovered even if some parties hand-in incorrect shares. This answers another open problem of Komargodski et al. Our construction is based on the construction of robust (classical) secret sharing schemes of Cramer et al. (EUROCRYPT 2008) using algebraic manipulation detection codes.

Category / Keywords: secret sharing, evolving access structure, robustness, threshold secret sharing, AMD codes

Original Publication (in the same form): IACR-TCC-2017

Date: received 27 Sep 2017, last revised 27 Sep 2017

Contact author: komargodski at cornell edu

Available format(s): PDF | BibTeX Citation

Short URL: ia.cr/2017/948

[ Cryptology ePrint archive ]