Mikkel Krøigård <m...@cs.au.dk> writes: Hi everybody
> Indeed it should satisfy those properties. Say if you Shamir share > something, the adversary might get t shares in order. If it can guess > the next bit with non-negligible advantage, this will completely break > our claim that the adversary has no information on the secret. > > Luckily it should not be hard to replace. I think we knew about this > earlier but just forgot, actually. No, we did not forget it -- it was designed from the start with an aim towards making tests reproducible. This is why VIFF announces the random seed when it starts and why the seed is chosen as a small integer. -- Martin Geisler Mercurial links: http://mercurial.ch/
pgpBdiC07ULeT.pgp
Description: PGP signature
_______________________________________________ viff-devel mailing list (http://viff.dk/) viff-devel@viff.dk http://lists.viff.dk/listinfo.cgi/viff-devel-viff.dk
