Method and apparatus for secure key management using multi-threshold secret sharing
US7787619B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jan 29, 2002 |
| Grant date | Aug 31, 2010 |
| Priority date | — |
| Expiry date | Apr 19, 2029 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/085
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and apparatus are disclosed for managing components of a secret key according to a secret sharing scheme. The disclosed secret sharing scheme divides a secret value, R, into n secret components (R1, R2, . . . , Rn) and one super component, S, in such a way that R can be computed from (i) any k or more Ri components (k<n); or (ii) S and any one component of Ri. The secret components (R1, R2, . . . , Rn) are distributed to a number of authorized users. A multiple threshold secret sharing scheme assigns various users in a group into one of a number of classes. Each user class has a corresponding threshold level that indicates the number of users that must come together with their assigned components to obtain access to the shared secret. The multiple threshold scheme divides the secret into n components each having an assigned threshold level (i.e., the number of such components that are required to obtain the secret). Any component having a lower threshold level can satisfy the role of a component having a higher threshold level. The multiple threshold scheme provides a hierarchical scheme that allows the secret, R, to be shared among different groups of people with differen…
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.