[Cryptography] Shamir’s secret sharing

Jerry Leichter leichter at lrw.com
Wed Jun 19 22:16:48 EDT 2019

> Can anyone point me to any papers dealing with the issue of whether Shamir’s Secret Sharing scheme is quantum crypto resistant.  In particular if it is resistant does the resistance improve if the complexity of the scheme increases.  That is, with n out of t, is 2 out of 3 keys less resistant that say 11 out of 21?
Shamir Secret Sharing is information-theoretically secure:  For n total shares required, given n-1 of the shares, for any possible secret, there is a unique n'th share that produces exactly that secret.  That is, knowing n-1 shares gives you no information at all about the secret.  Quantum computation doesn't help in recovering what isn't there to begin with.  There's no difference in "resistance" regardless of n and t.

                                                        -- Jerry

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.metzdowd.com/pipermail/cryptography/attachments/20190619/3e946b2c/attachment.html>

More information about the cryptography mailing list