Vadim Fedukovich wrote: > > Papers/Authors/URLs list might be rather long. I do remember a paper > of Boneh and Franklin on key-share generation and there was ITTS project > with nice pointers to read futher. "Alternative" secret exponent > calculation code suitable for key-share generator was here on this list > a year ago and no errors was found since that. Please use it for OpenSSL > if it fits somewhere.
The ITTC project: http://crypto.stanford.edu/~dabo/ITTC/ The idea was to split RSA private keys into additive shares. Each server used its share to perform a partial decrypt/sign operation, and the results were combined to obtain a result, without reconstructing the private key in any one location. One of the papers covered shared key generation, and the other discussed applications. We implemented both a CA and a HTTPS server that supported m-out-of-n sharing for their private keys. > One will likely need to come up with suitable (agreed?) format for > such a shares. CRT numbers are probably irrelevant for shares of > RSA key and two other numbers (share index and number of shares) > should be saved for a basic sharing scheme. > > hope this helps, > Vadim > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] Tom -- Tom Wu Principal Software Engineer Arcot Systems (408) 969-6124 "The Borg? Sounds Swedish..." ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]