Method for secure key management using multi-threshold secret sharing
US8259950B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 12, 2010 |
| Grant date | Sep 4, 2012 |
| Priority date | — |
| Expiry date | Jul 15, 2030 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/085
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and apparatus are disclosed for managing components of a secret key according to a secret sharing scheme. The disclosed secret sharing scheme divides a secret value, R, into n secret components (R1, R2, . . . , Rn) and one super component, S, in such a way that R can be computed from (i) any k or more R1 components (k<n); or (ii) S and any one component of Rl. The secret components (R1 ,R2, . . . , Rn) are distributed to a number of authorized users. A multiple threshold secret sharing scheme assigns various users in a group into one of a number of classes. Each user class has a corresponding threshold level that indicates the number of users that must come together with their assigned components to obtain access to the shared secret. The multiple threshold scheme divides the secret into n components each having an assigned threshold level (i.e., the number of such components that are required to obtain the secret). Any component having a lower threshold level can satisfy the role of a component having a higher threshold level. The multiple threshold scheme provides a hierarchical scheme that allows the secret, R, to be shared among different groups of people with differen…
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.