meerkat-java/destributed-key-generation/src/main/java/ShamirSecretSharing/SecretSharing.java

package ShamirSecretSharing;


import Communication.Network;
import Communication.User;
import meerkat.protobuf.DKGMessages;

import java.math.BigInteger;
import java.util.Random;

/**
 * Created by Tzlil on 1/27/2016.
 * an implementation of Shamire's secret sharing scheme
 */
public class SecretSharing{
    protected final int t;
    protected final int n;
    protected final BigInteger q;
    protected final Polynomial polynomial;

    /**
     * constructor
     * @param q      a large prime.
     * @param t      threshold. Any t+1 share holders can recover the secret,
     *               but any set of at most t share holders cannot
     * @param n      number of share holders
     * @param x      secret, chosen from Zq
     * @param random use for generate random polynomial
     */
    public SecretSharing(int t, int n, BigInteger x, Random random, BigInteger q) {
        this.q = q;
        this.t = t;
        this.n = n;
        this.polynomial = generateRandomPolynomial(x,random);
    }

    /**
     * @param x
     * @param random
     * @return new Polynomial polynomial of degree t ,such that
     *         1. polynomial(0) = x
     *         2. polynomial coefficients randomly chosen from Zq (except of coefficients[0] = x)
     */
    private Polynomial generateRandomPolynomial(BigInteger x, Random random) {
        BigInteger[] coefficients = new BigInteger[t + 1];
        coefficients[0] = x.mod(q);
        int bits = q.bitLength();
        for (int i = 1 ; i <= t; i++ ){
            coefficients[i] = new BigInteger(bits,random).mod(q);
        }
        return new Polynomial(coefficients);
    }

    /**
     * @param i in range of [1,...n]
     *
     * @return polynomial.image(i)%q
     */
    public Polynomial.Point getShare(int i){
        assert (i > 0 && i <= n);
        return new Polynomial.Point(BigInteger.valueOf(i), polynomial, q);
    }

    /**
     * @param shares - subset of the original shares
     *
     * @return  image of interpolation(shares) at x = 0
     */
    public static BigInteger restoreSecrete(Polynomial.Point[] shares) throws Exception {
        Polynomial polynomial = Polynomial.interpolation(shares);
        return polynomial.image(BigInteger.ZERO);
    }

    /**
     * getter
     * @return threshold
     */
    public int getT() {
        return t;
    }

    /**
     * getter
     * @return number of share holders
     */
    public int getN() {
        return n;
    }

    /**
     * getter
     * @return the prime was given in the constructor
     */
    public BigInteger getQ() {
        return q;
    }


    /**
     * getter
     * @return the polynomial was generated in constructor
     */
    public Polynomial getPolynomial() {
        return polynomial;
    }
}
secure dkg without stage 4 2016-02-17 15:58:20 -05:00			`package ShamirSecretSharing;`
Feldman's VSS 2016-01-27 06:41:24 -05:00

secure dkg without stage 4 2016-02-17 15:58:20 -05:00			`import Communication.Network;`
			`import Communication.User;`
			`import meerkat.protobuf.DKGMessages;`

Feldman's VSS 2016-01-27 06:41:24 -05:00			`import java.math.BigInteger;`
			`import java.util.Random;`

			`/**`
			`* Created by Tzlil on 1/27/2016.`
feldmanVSS documention 2016-01-28 06:57:47 -05:00			`* an implementation of Shamire's secret sharing scheme`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`*/`
SDKG tested for non coruppted parties 2016-02-23 12:02:49 -05:00			`public class SecretSharing{`
joint feldman with protos 2016-02-08 08:20:43 -05:00			`protected final int t;`
			`protected final int n;`
			`protected final BigInteger q;`
SDKG tested for non coruppted parties 2016-02-23 12:02:49 -05:00			`protected final Polynomial polynomial;`
Feldman's VSS 2016-01-27 06:41:24 -05:00
feldmanVSS documention 2016-01-28 06:57:47 -05:00			`/**`
			`* constructor`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`* @param q a large prime.`
feldmanVSS documention 2016-01-28 06:57:47 -05:00			`* @param t threshold. Any t+1 share holders can recover the secret,`
			`* but any set of at most t share holders cannot`
			`* @param n number of share holders`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`* @param x secret, chosen from Zq`
feldmanVSS documention 2016-01-28 06:57:47 -05:00			`* @param random use for generate random polynomial`
			`*/`
SDKG tested for non coruppted parties 2016-02-23 12:02:49 -05:00			`public SecretSharing(int t, int n, BigInteger x, Random random, BigInteger q) {`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`this.q = q;`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`this.t = t;`
			`this.n = n;`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`this.polynomial = generateRandomPolynomial(x,random);`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`}`

feldmanVSS documention 2016-01-28 06:57:47 -05:00			`/**`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`* @param x`
feldmanVSS documention 2016-01-28 06:57:47 -05:00			`* @param random`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`* @return new Polynomial polynomial of degree t ,such that`
			`* 1. polynomial(0) = x`
			`* 2. polynomial coefficients randomly chosen from Zq (except of coefficients[0] = x)`
feldmanVSS documention 2016-01-28 06:57:47 -05:00			`*/`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`private Polynomial generateRandomPolynomial(BigInteger x, Random random) {`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`BigInteger[] coefficients = new BigInteger[t + 1];`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`coefficients[0] = x.mod(q);`
			`int bits = q.bitLength();`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`for (int i = 1 ; i <= t; i++ ){`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`coefficients[i] = new BigInteger(bits,random).mod(q);`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`}`
			`return new Polynomial(coefficients);`
			`}`

feldmanVSS documention 2016-01-28 06:57:47 -05:00			`/**`
			`* @param i in range of [1,...n]`
			`*`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`* @return polynomial.image(i)%q`
feldmanVSS documention 2016-01-28 06:57:47 -05:00			`*/`
secure dkg without stage 4 2016-02-17 15:58:20 -05:00			`public Polynomial.Point getShare(int i){`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`assert (i > 0 && i <= n);`
			`return new Polynomial.Point(BigInteger.valueOf(i), polynomial, q);`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`}`

feldmanVSS documention 2016-01-28 06:57:47 -05:00			`/**`
			`* @param shares - subset of the original shares`
			`*`
			`* @return image of interpolation(shares) at x = 0`
			`*/`
SDKG tested for non coruppted parties 2016-02-23 12:02:49 -05:00			`public static BigInteger restoreSecrete(Polynomial.Point[] shares) throws Exception {`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`Polynomial polynomial = Polynomial.interpolation(shares);`
			`return polynomial.image(BigInteger.ZERO);`
			`}`

feldmanVSS documention 2016-01-28 06:57:47 -05:00			`/**`
			`* getter`
			`* @return threshold`
			`*/`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`public int getT() {`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`return t;`
			`}`

feldmanVSS documention 2016-01-28 06:57:47 -05:00			`/**`
			`* getter`
			`* @return number of share holders`
			`*/`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`public int getN() {`
			`return n;`
			`}`

FeldmanVSS tests 2016-01-29 15:08:13 -05:00			`/**`
			`* getter`
			`* @return the prime was given in the constructor`
			`*/`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`public BigInteger getQ() {`
			`return q;`
			`}`


SDKG tested for non coruppted parties 2016-02-23 12:02:49 -05:00			`/**`
			`* getter`
			`* @return the polynomial was generated in constructor`
			`*/`
			`public Polynomial getPolynomial() {`
sketch of JointFeldmanProtocol 2016-02-05 06:30:16 -05:00			`return polynomial;`
FeldmanVSS tests 2016-01-29 15:08:13 -05:00			`}`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`}`