Content deleted Content added
m Not seeing the necessity of manually placing the TOC |
→Threshold implementations: fixed a typo |
||
Line 215:
For even greater security, it is possible to [[Threshold cryptosystem|thresholdize the server]], such that the secret ('''S''') is not held by any individual server, and so the compromise of any single server, or set of servers below some defined threshold, will not expose the secret.
This can be done by having each server be a shareholder in a [[Secret sharing|secret sharing scheme]]. Instead of using it's secret to compute the result, each server uses
The client then takes some subset of the server's computed results, and combines them, for example by computing a protocol known as ''interpolation in the exponent''. This recovers the same result as had the client interacted with a single server which has the full secret.
| |||