On Secret Sharing with Nonlinear Product Reconstruction
Multiplicative linear secret sharing is a fundamental notion in the area of secure multiparty computation and, since recently, in the area of two-party cryptography as well. In a nutshell, this notion guarantees that the product of two secrets is obtained as a linear function of the vector consistin...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Other Authors: | |
| Format: | Article |
| Language: | English |
| Published: |
2015
|
| Subjects: | |
| Online Access: | https://hdl.handle.net/10356/80963 http://hdl.handle.net/10220/39034 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| id |
sg-ntu-dr.10356-80963 |
|---|---|
| record_format |
dspace |
| spelling |
sg-ntu-dr.10356-809632023-02-28T19:29:54Z On Secret Sharing with Nonlinear Product Reconstruction Cascudo, Ignacio Cramer, Ronald Mirandola, Diego Padró, Carles Xing, Chaoping School of Physical and Mathematical Sciences (arithmetic) secret sharing Multiplicative linear secret sharing is a fundamental notion in the area of secure multiparty computation and, since recently, in the area of two-party cryptography as well. In a nutshell, this notion guarantees that the product of two secrets is obtained as a linear function of the vector consisting of the coordinatewise product of two respective share-vectors. This paper focuses on the following foundational question, which is novel to the best of our knowledge. Suppose we abandon the latter linearity condition and instead require that this product is obtained by some, not-necessarily-linear “product reconstruction function.” Is the resulting notion equivalent to multiplicative linear secret sharing? We show the (perhaps somewhat counterintuitive) result that this relaxed notion is strictly more general. Concretely, fix a finite field F_q as the base field over which linear secret sharing is considered. Then we show there exists an (exotic) linear secret sharing scheme with an unbounded number of players n such that it has t-privacy with t = Omega(n) and such that it does admit a product reconstruction function, yet this function is necessarily nonlinear. In addition, we determine the minimum number of players for which those exotic schemes exist. Our proof is based on combinatorial arguments involving quadratic forms. It extends to similar separation results for important variations, such as strongly multiplicative secret sharing. Published version 2015-12-10T07:05:16Z 2019-12-06T14:18:25Z 2015-12-10T07:05:16Z 2019-12-06T14:18:25Z 2015 Journal Article Cascudo, I., Cramer, R., Mirandola, D., Padró, C., & Xing, C. (2015). On Secret Sharing with Nonlinear Product Reconstruction. SIAM Journal on Discrete Mathematics, 29(2), 1114-1131. 0895-4801 https://hdl.handle.net/10356/80963 http://hdl.handle.net/10220/39034 10.1137/130931886 en SIAM Journal on Discrete Mathematics © 2015 Society for Industrial and Applied Mathematics. This paper was published in SIAM Journal on Discrete Mathematics and is made available as an electronic reprint (preprint) with permission of Society for Industrial and Applied Mathematics. The published version is available at: [http://dx.doi.org/10.1137/130931886]. One print or electronic copy may be made for personal use only. Systematic or multiple reproduction, distribution to multiple locations via electronic or other means, duplication of any material in this paper for a fee or for commercial purposes, or modification of the content of the paper is prohibited and is subject to penalties under law. 18 p. application/pdf |
| institution |
Nanyang Technological University |
| building |
NTU Library |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
NTU Library |
| collection |
DR-NTU |
| language |
English |
| topic |
(arithmetic) secret sharing |
| spellingShingle |
(arithmetic) secret sharing Cascudo, Ignacio Cramer, Ronald Mirandola, Diego Padró, Carles Xing, Chaoping On Secret Sharing with Nonlinear Product Reconstruction |
| description |
Multiplicative linear secret sharing is a fundamental notion in the area of secure multiparty computation and, since recently, in the area of two-party cryptography as well. In a nutshell, this notion guarantees that the product of two secrets is obtained as a linear function of the vector consisting of the coordinatewise product of two respective share-vectors. This paper focuses on the following foundational question, which is novel to the best of our knowledge. Suppose we abandon the latter linearity condition and instead require that this product is obtained by some, not-necessarily-linear “product reconstruction function.” Is the resulting notion equivalent to multiplicative linear secret sharing? We show the (perhaps somewhat counterintuitive) result that this relaxed notion is strictly more general. Concretely, fix a finite field F_q as the base field over which linear secret sharing is considered. Then we show there exists an (exotic) linear secret sharing scheme with an unbounded number of players n such that it has t-privacy with t = Omega(n) and such that it does admit a product reconstruction function, yet this function is necessarily nonlinear. In addition, we determine the minimum number of players for which those exotic schemes exist. Our proof is based on combinatorial arguments involving quadratic forms. It extends to similar separation results for important variations, such as strongly multiplicative secret sharing. |
| author2 |
School of Physical and Mathematical Sciences |
| author_facet |
School of Physical and Mathematical Sciences Cascudo, Ignacio Cramer, Ronald Mirandola, Diego Padró, Carles Xing, Chaoping |
| format |
Article |
| author |
Cascudo, Ignacio Cramer, Ronald Mirandola, Diego Padró, Carles Xing, Chaoping |
| author_sort |
Cascudo, Ignacio |
| title |
On Secret Sharing with Nonlinear Product Reconstruction |
| title_short |
On Secret Sharing with Nonlinear Product Reconstruction |
| title_full |
On Secret Sharing with Nonlinear Product Reconstruction |
| title_fullStr |
On Secret Sharing with Nonlinear Product Reconstruction |
| title_full_unstemmed |
On Secret Sharing with Nonlinear Product Reconstruction |
| title_sort |
on secret sharing with nonlinear product reconstruction |
| publishDate |
2015 |
| url |
https://hdl.handle.net/10356/80963 http://hdl.handle.net/10220/39034 |
| _version_ |
1759854576152870912 |