improvements on distributed key generation
play

Improvements on Distributed Key Generation Bachelor Project Kopiga - PowerPoint PPT Presentation

Sep 01, 2023 •337 likes •634 views

Improvements on Distributed Key Generation Bachelor Project Kopiga Rasiah Responsible Supervisor Bryan Ford Nicolas Gailly 1 Improvements on Distributed Key Generation Objective: Bringing improvements in order to enhance the security of

  1. Improvements on Distributed Key Generation Bachelor Project Kopiga Rasiah Responsible Supervisor Bryan Ford Nicolas Gailly 1

  2. Improvements on Distributed Key Generation • Objective: Bringing improvements in order to enhance the security of the protocol 2

  3. Outline • Background: • What is DKG • Shamir’s secret • Feldman’s VSS • How DKG works • My work: Proactive secret sharing • Implementation • Conclusion 3

  4. Distributed Key Generation • Set of n participants who collectively generate a shared private/public key • Each node have a share of the secret (private key) • No single point failure: attacker needs to break into multiple location to have access to the secret. • DKG is mostly used in group digital signature, or decrypt shared ciphertexts. 4

  5. Shamir’s secret sharing dealer 5

  6. Shamir’s secret sharing dealer 6

  7. Shamir’s secret sharing • f(x) = s + a 1 x + a 2 x 2 + … + a t-1 x t-1 , t < n • f(0) = secret • construct n points out of it (shares) and distributes to the nodes 7

  8. Shamir’s secret sharing f(1) f(2) f(3) f(4) f(5) • t points are sufficient to reconstruct a t-1 degree polynomial function 1 2 3 4 5

  9. Shamir’s secret sharing 1 2 3 4 5 9

  10. Feldman’s verifiable secret sharing • Based on Shamir’s secret sharing nodes can verify if their shares are consistent • • dealer broadcasts F( • ) = f( • ) * g • F(i) == s i * g 10

  11. Distributed Key Generation • Based on Feldman’s VSS • System without any trusted party • Executes n VSS instances in parallel: every node is a dealer • Each node generates f i (x) = z i + a 1 x + a 2 x 2 +…+ a t-1 x t-1 , where z i is random 11

  12. Distributed Key Generation f 1 (1) f 1 (2) 2 1 f 1 (4) f 1 (3) 3 4 12

  13. Distributed Key Generation f 1 (1) f 1 (2) f 2 (2) 2 1 f 2 (1) f 2 (3) f 1 (4) f 1 (3) f 2 (4) 3 4 13

  14. Distributed Key Generation f 1 (1) f 1 (2) +f 2 (1) +f 2 (2) +f 3 (1) +f 3 (2) +f 4 (1) +f 4 (2) 1 2 = s 1 = s 2 f 1 (3) f 1 (4) +f 2 (3) +f 2 (4) +f 3 (3) +f 3 (4) +f 4 (3) +f 4 (4) 3 4 = s 3 = s 4 14

  15. Distributed Key Generation f 1 (1) f 1 (2) +f 2 (1) +f 2 (2) +f 3 (1) +f 3 (2) +f 4 (1) +f 4 (2) 1 2 = s 1 = s 2 s = ∑ j f j (0) S = ∑ j F j (0) = s * g f 1 (3) f 1 (4) +f 2 (3) +f 2 (4) +f 3 (3) +f 3 (4) +f 4 (3) +f 4 (4) 3 4 = s 3 = s 4 15

  16. Proactive secret sharing • Given enough time, an attacker can gradually break into more than t servers • Not practical to change the secret • Solution: Proactive secret sharing. • We only focus on refreshing the shares 16

  17. Proactive secret sharing • Why refreshing ? • Refreshing the shares makes the underlying polynomial change ! • Old stolen information become useless 17

  18. The idea • Let’s assume that the initial DKG round has been done • Each node generates new intermediate random polynomials g i (x) • g i (x) = 0 + b 1,i x + b 2,i x 2 +…+ b t-1,i x t-1 • They execute again the DKG protocol: • distributions of the intermediate shares 18

  19. Distributed Key Generation g 1 (1) g 2 (2) g 1 (2) g 1 (x) g 2 (x) g 2 (1) 1 2 g 2 (4) g 1 (3) g 2 (3) g 1 (4) g 3 (x) g 4 (x) 3 4 19

  20. Proactive secret sharing s i = ∑ j f j (i) for node i s i ’ = ∑ j g j (i) 20

  21. Proactive secret sharing s i = ∑ j f j (i) + s i ’ = ∑ j g j (i) <— 2 nd round DKG r i = ∑ j h j (i) 21

  22. Proactive secret sharing s i = ∑ j f j (i) + s i ’ = ∑ j g j (i) r i = ∑ j h j (i) 22

  23. Proactive secret sharing s i = ∑ j f j (i) s = ∑ j f j (0) = 0 + s i ’ = ∑ j g j (i) + s i ’ = ∑ j g j (0) s = ∑ j h j (0) r i = ∑ j h j (i) g i (x) = 0 + b 1,i x + b 2,i x 2 +…+ b t-1,i x t-1 23

  24. Distributed Key Generation s 2 s 1 + ∑ j g j (2) + ∑ j g j (1) = r 2 = r 1 1 2 s 3 s 4 + ∑ j g j (3) + ∑ j g j (4) = r 3 = r 4 3 4 24

  25. Distributed Key Generation s 2 s 1 + ∑ j g j (2) + ∑ j g j (1) = r 2 = r 1 1 2 renewed share s 3 s 4 + ∑ j g j (3) + ∑ j g j (4) = r 3 = r 4 3 4 25

  26. Proactive secret sharing • The attacker’s time is now restricted between the updating process • He need to break into servers at the same period 26

  27. Implementation 2 nd round of DKG for updating the shares: • • Renew function adds 2 shares according to their indices: • check if G(0) = 0 ( = 0 * g) • check share1.index == share2.index 27

  28. Conclusion • enhances security of the protocol • much more interesting if periodicity is implemented Future work • Implement the periodicity • Implement the share recovering process Current work • Drand (distributed randomness beacon daemon) where • nodes collectively produces random values 28

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Improvements to the Co-simulation Interface for Geographically Distributed Real-time Simulation

Improvements to the Co-simulation Interface for Geographically Distributed Real-time Simulation

Improvements to the Co-simulation Interface for Geographically Distributed Real-time Simulation 45th Annual Conference of the IEEE Industrial Electronics Society (IECON) 15th 17th October 2019, Lisbon Paper: LD-029874 1 Improvements to the

317 views • 20 slides
Overview of Draft Distributed Generation Regulation Mark A. Prettyman Environmental Scientist,

Overview of Draft Distributed Generation Regulation Mark A. Prettyman Environmental Scientist,

Overview of Draft Distributed Generation Regulation Mark A. Prettyman Environmental Scientist, Air Quality Management Distributed Generation Regulation Development Workgroup Meeting June 16, 2004 Distributed Generation Regulation The

691 views • 17 slides
FAST DISTRIBUTED RSA KEY GENERATION FOR FAST DISTRIBUTED RSA KEY GENERATION FOR semi-honest

FAST DISTRIBUTED RSA KEY GENERATION FOR FAST DISTRIBUTED RSA KEY GENERATION FOR semi-honest

Making malicious security orders of magnitude more efficient than previous efficient than previous FAST DISTRIBUTED RSA KEY GENERATION FOR FAST DISTRIBUTED RSA KEY GENERATION FOR semi-honest SEMI-HONEST AND MALICIOUS ADVERSARIES Tore

458 views • 26 slides
Mixed Generation Interconnection, Metering &amp; Settlement Netmetering Eligible, Class 1

Mixed Generation Interconnection, Metering &amp; Settlement Netmetering Eligible, Class 1

8/13/2014 Mixed Generation Interconnection, Metering &amp; Settlement Netmetering Eligible, Class 1 Renewable Energy Generation Combined with Other Distributed Generation/Storage 1 System Impact Issues Traditional Distributed Generation

242 views • 9 slides
Overview of Draft 2 of the Distributed Generation Regulation Mark A. Prettyman Environmental

Overview of Draft 2 of the Distributed Generation Regulation Mark A. Prettyman Environmental

Overview of Draft 2 of the Distributed Generation Regulation Mark A. Prettyman Environmental Scientist, Air Quality Management Distributed Generation Regulation Development Workgroup Meeting August 16, 2004 Overview Discussion of

777 views • 50 slides
Distributed Generation Contracts Program History RI Public Utilities Commission Presentation

Distributed Generation Contracts Program History RI Public Utilities Commission Presentation

Distributed Generation Contracts Program History RI Public Utilities Commission Presentation Monday, February 24, 2014 Briefing Distributed Generation &amp; the RI DG Law DG Program Performance: 2011 today Questions

357 views • 17 slides
2012 and 2013 Distributed 2012 and 2013 Distributed Generation Contracts Program

2012 and 2013 Distributed 2012 and 2013 Distributed Generation Contracts Program

2012 and 2013 Distributed 2012 and 2013 Distributed Generation Contracts Program Generation Contracts Program Updates and Next Steps Updates and Next Steps Office of Energy Resources Marion Gold, Administrator September 7, 2012

328 views • 11 slides
Residential Price Structure For Distributed Generation Customers The Issue Price Structure Must

Residential Price Structure For Distributed Generation Customers The Issue Price Structure Must

Residential Price Structure For Distributed Generation Customers The Issue Price Structure Must Reflect the Cost to Serve Previously, cost of service at the individual level was relatively unimportant Because distributed generation

449 views • 17 slides
&amp; Overview of Distributed Generation Projects Presentation Outline Optimum Renewables

&amp; Overview of Distributed Generation Projects Presentation Outline Optimum Renewables

Introduction to Optimum Renewables, LLC &amp; Overview of Distributed Generation Projects Presentation Outline Optimum Renewables Mission &amp; Management Team Overview of Distributed Generation (DG) Projects Complexities of DG projects

519 views • 17 slides
Working Group U P D A T E T O V S P C 1 2 / 1 1 / 1 3 Background Stakeholders have

Working Group U P D A T E T O V S P C 1 2 / 1 1 / 1 3 Background Stakeholders have

ISO-NE Distributed Generation Working Group U P D A T E T O V S P C 1 2 / 1 1 / 1 3 Background Stakeholders have encouraged ISO-NE to include the impacts of Distributed Generation (DG) in RSP Goal Interim forecast to be included

338 views • 12 slides
Stochastic Simulation Independent, uniformly distributed RN Generation of random variables

Stochastic Simulation Independent, uniformly distributed RN Generation of random variables

Plan W1.1-2 Plan W1.1-2 Random number generation Stochastic Simulation Independent, uniformly distributed RN Generation of random variables Distribution Continuous sample space Independent Random variable Bo Friis Nielsen Model Institute

587 views • 7 slides
Presentation outline Introductory Remarks Mobile Power (MP) and Distributed Generation

Presentation outline Introductory Remarks Mobile Power (MP) and Distributed Generation

Mobile Power and Distributed Generation: a Viable Component to Power Pools Presented by Vic Abrahamian Pratt &amp; Whitney Power Systems, Windsor, CT - USA 15 th Congress of UPDEA June 7, 2005 Accra, Ghana Presentation outline

447 views • 9 slides
Distributed Generation HV &amp; EHV Workshop 4 March 2020 Welcome and Introduction Steffan

Distributed Generation HV &amp; EHV Workshop 4 March 2020 Welcome and Introduction Steffan

Distributed Generation HV &amp; EHV Workshop 4 March 2020 Welcome and Introduction Steffan Jones 2 Domestic Arrangements Dont forget to sign in! Toilets situated in main reception area Planned fire alarm test at 3pm Floor

1.18k views • 105 slides
Key State Policies Supporting Distributed Generation in New York 2 NYS PSCs Reforming the

Key State Policies Supporting Distributed Generation in New York 2 NYS PSCs Reforming the

Key State Policies Supporting Distributed Generation in New York 2 NYS PSCs Reforming the Energy Vision Proceeding (14-M-0101) is About: to Achieve Higher through Animating Empowering System Efficiency, Lower Customers to Better

598 views • 23 slides
Utility central baseload plus distributed Solar peak generation Rooftop Solar enhances Utility

Utility central baseload plus distributed Solar peak generation Rooftop Solar enhances Utility

Utility central baseload plus distributed Solar peak generation Rooftop Solar enhances Utility economics Distributed rooftop Solar from residential customers Safe, easy, and affordable Unstoppable national trend (42 states ahead of

580 views • 38 slides
YFS 1.0 is the next generation distributed file system for secure private, public and hybrid

YFS 1.0 is the next generation distributed file system for secure private, public and hybrid

YFS 1.0 is the next generation distributed file system for secure private, public and hybrid cloud storage deployments. YFS 1.0 is not a hardware appliance. Backward compatible with IBM AFS 3.6 and OpenAFS. No flag day required

359 views • 16 slides
Medtech Marketing : rethinking customer engagement Claudia Orrell Product &amp; Engagement Director

Medtech Marketing : rethinking customer engagement Claudia Orrell Product &amp; Engagement Director

Medtech Marketing : rethinking customer engagement Claudia Orrell Product &amp; Engagement Director www.medtechengine.com &quot; Your brand is a story unfolding across all customer touchpoints .&quot; Jonah Sachs AGENDA Audience segmentation and

223 views • 19 slides
REFRESHING YOUR CLUBS PUBLIC IMAGE Charles Bruce Watterson, Rome Seven Hills Rotary

REFRESHING YOUR CLUBS PUBLIC IMAGE Charles Bruce Watterson, Rome Seven Hills Rotary

REFRESHING YOUR CLUBS PUBLIC IMAGE Charles Bruce Watterson, Rome Seven Hills Rotary Discussion Leader #1 Image Essential Encourage your Clubs President and Public Image Chairperson to develop a PR plan and work to revitalize your

804 views • 30 slides
Setting the Strategic direction: Refreshing Everybodys Business The Police Reform and Social

Setting the Strategic direction: Refreshing Everybodys Business The Police Reform and Social

Setting the Strategic direction: Refreshing Everybodys Business The Police Reform and Social Responsibility Act (2011) That Police and Crime Plans should include the following: the PCCs police and crime objectives, this includes the

434 views • 11 slides
Flipping Bits in Memory Without Accessing Them: An Experimental Study of DRAM Disturbance Errors

Flipping Bits in Memory Without Accessing Them: An Experimental Study of DRAM Disturbance Errors

Flipping Bits in Memory Without Accessing Them: An Experimental Study of DRAM Disturbance Errors ISCA 2014 Yoongu Kim 1 Ross Daly 1 Jeremie Kim 1 Chris Fallin 1 Ji Hye Lee 1 Donghyuk Lee 1 Chris Wilkerson 2 Konrad Lai Onur Mutlu 1 1 Carnegie

413 views • 28 slides
! ! ! SHEPHERD PARK COMMUNITY CENTER ! ! Community Meeting ! May 23, 2019 ! AGENDA 1. !

! ! ! SHEPHERD PARK COMMUNITY CENTER ! ! Community Meeting ! May 23, 2019 ! AGENDA 1. !

! ! ! ! SHEPHERD PARK COMMUNITY CENTER ! ! Community Meeting ! May 23, 2019 ! AGENDA 1. ! Welcome + Introductions 2. ! Project Overview 3. ! Design Presentation 4. ! School v. Community Use 5. ! Construction Impact Plan 6. !

233 views • 21 slides
An intimate and confidential haven, steps away from the legendary village of Saint-Tropez The

An intimate and confidential haven, steps away from the legendary village of Saint-Tropez The

An intimate and confidential haven, steps away from the legendary village of Saint-Tropez The only hotel in Saint-Tropez with its own beach 140 Ambassadeurs for 30 rooms and suites A new design concept imagined by Jean-Michel Wilmotte

345 views • 20 slides
Council Staff Public comments accepted by 5pm on May 17 , 2019 Public Listening Session Schedule

Council Staff Public comments accepted by 5pm on May 17 , 2019 Public Listening Session Schedule

Council Staff Public comments accepted by 5pm on May 17 , 2019 Public Listening Session Schedule (2 hour duration each session) Seabrook, NH Thursday, April 4, Seabrook Public Library, 5:45pm Avalon, NJ Monday, April 8, ICONA Golden Inn

242 views • 8 slides
Riverside Avenue Reconstruction Pa r king , T r a ffic a nd Biking F e a tur e s AGENDA

Riverside Avenue Reconstruction Pa r king , T r a ffic a nd Biking F e a tur e s AGENDA

Riverside Avenue Reconstruction Pa r king , T r a ffic a nd Biking F e a tur e s AGENDA This presentation shares the following: Project Background Why a project on Riverside, and what is included? Bicycle Network Bike

619 views • 24 slides

More recommend