Security in Storage Workshop, International IEEE (2002)
Dec. 11, 2002 to Dec. 11, 2002
Theodore M. Wong , Carnegie Mellon University
Chenxi Wang , Carnegie Mellon University
Jeannette M. Wing , Carnegie Mellon University
We present a new verifiable secret redistribution protocol or threshold sharing schemes that forms a key component of a proposed archival storage system. Our protocol supports redistribution from (m,n) to (m,n) threshold sharing schemes without requiring reconstruction of the original data. The design is motivated by archive systems or which the added security of threshold sharing of data must be accompanied by the flexibility of dynamic shareholder changes. Our protocol enables the dynamic addition or removal of shareholders, and also guards against mobile adversaries. We observe that existing protocols either cannot be extended readily to allow redistribution between different access structures, or have vulnerabilities that allow faulty old shareholders to distribute invalid shares to new share- holders. Our primary contribution is that in our protocol, new shareholders can verify the validity of their shares after redistribution between different access structures.
J. M. Wing, C. Wang and T. M. Wong, "Verifiable Secret Redistribution for Archive Systems," Proceedings First International IEEE Security in Storage Workshop(SISW), Greenbelt, MD, USA, 2002, pp. 94.