meerkat-java/destributed-key-generation/src/main/java/FeldmanVerifiableSecretSharing/VerifiableSecretSharing.java

package FeldmanVerifiableSecretSharing;

import ShamirSecretSharing.SecretSharing;
import org.bouncycastle.util.Arrays;
import org.factcenter.qilin.primitives.CyclicGroup;
import org.factcenter.qilin.primitives.concrete.Zpstar;

import java.math.BigInteger;
import java.util.Random;

/**
 * Created by Tzlil on 1/27/2016.
 */
public class VerifiableSecretSharing extends SecretSharing {

    private final CyclicGroup<BigInteger> group;
    private final BigInteger g; // public generator of group
    private final BigInteger[] commitments;


    /**
     * @param group a cyclic group of prime order p.
     *              it must be chosen such that computing discrete logarithms is hard in this group.
     */
    public VerifiableSecretSharing(CyclicGroup<BigInteger> group, int t, int n, BigInteger s, Random random) {
        super(group.orderUpperBound(), t, n, s, random);
        this.group = group;
        this.g = group.getGenerator();
        this.commitments = generateCommitments();
    }

    /**
     * @return commitments[i] = g ^ polynomial.coefficients[i]
     */
    private BigInteger[] generateCommitments() {
        BigInteger[] coefficients = polynomial.getCoefficients();
        BigInteger[] commitments = new BigInteger[coefficients.length];
        for (int i = 0 ; i < commitments.length;i++){
            commitments[i] = group.multiply(g,coefficients[i]);
        }
        return commitments;
    }

    /**
     * @param i share holder id
     * @param commitments
     * @param group
     *
     * @return product of commitments[j] ^ (i ^ j) == g ^ polynomial(i)
     */
    public static BigInteger verify(int i,BigInteger[] commitments,CyclicGroup<BigInteger> group) {
        BigInteger v = group.zero();
        int power = 1;
        for (int j = 0 ; j < commitments.length ; j ++){
            v = group.add(v,commitments[i].pow(power));
            power *=i;
        }
        return v;
    }


    /**
     * getter
     * @return generator of group
     */
    public BigInteger getGenerator() {
        return g;
    }

    /**
     * getter
     * @return copy of commitments
     */
    public BigInteger[] getCommitments() {
        return Arrays.clone(commitments);
    }
}
Feldman's VSS 2016-01-27 06:41:24 -05:00			`package FeldmanVerifiableSecretSharing;`

			`import ShamirSecretSharing.SecretSharing;`
			`import org.bouncycastle.util.Arrays;`
tested interpolation 2016-01-27 18:47:07 -05:00			`import org.factcenter.qilin.primitives.CyclicGroup;`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`import org.factcenter.qilin.primitives.concrete.Zpstar;`

			`import java.math.BigInteger;`
			`import java.util.Random;`

			`/**`
			`* Created by Tzlil on 1/27/2016.`
			`*/`
			`public class VerifiableSecretSharing extends SecretSharing {`

feldmanVSS documention 2016-01-28 06:57:47 -05:00			`private final CyclicGroup<BigInteger> group;`
			`private final BigInteger g; // public generator of group`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`private final BigInteger[] commitments;`

feldmanVSS documention 2016-01-28 06:57:47 -05:00
			`/**`
			`* @param group a cyclic group of prime order p.`
			`* it must be chosen such that computing discrete logarithms is hard in this group.`
			`*/`
tested interpolation 2016-01-27 18:47:07 -05:00			`public VerifiableSecretSharing(CyclicGroup<BigInteger> group, int t, int n, BigInteger s, Random random) {`
feldmanVSS documention 2016-01-28 06:57:47 -05:00			`super(group.orderUpperBound(), t, n, s, random);`
			`this.group = group;`
tested interpolation 2016-01-27 18:47:07 -05:00			`this.g = group.getGenerator();`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`this.commitments = generateCommitments();`
			`}`

feldmanVSS documention 2016-01-28 06:57:47 -05:00			`/**`
			`* @return commitments[i] = g ^ polynomial.coefficients[i]`
			`*/`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`private BigInteger[] generateCommitments() {`
			`BigInteger[] coefficients = polynomial.getCoefficients();`
			`BigInteger[] commitments = new BigInteger[coefficients.length];`
			`for (int i = 0 ; i < commitments.length;i++){`
feldmanVSS documention 2016-01-28 06:57:47 -05:00			`commitments[i] = group.multiply(g,coefficients[i]);`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`}`
			`return commitments;`
			`}`

feldmanVSS documention 2016-01-28 06:57:47 -05:00			`/**`
			`* @param i share holder id`
			`* @param commitments`
			`* @param group`
			`*`
			`* @return product of commitments[j] ^ (i ^ j) == g ^ polynomial(i)`
			`*/`
			`public static BigInteger verify(int i,BigInteger[] commitments,CyclicGroup<BigInteger> group) {`
tested interpolation 2016-01-27 18:47:07 -05:00			`BigInteger v = group.zero();`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`int power = 1;`
			`for (int j = 0 ; j < commitments.length ; j ++){`
tested interpolation 2016-01-27 18:47:07 -05:00			`v = group.add(v,commitments[i].pow(power));`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`power *=i;`
			`}`
feldmanVSS documention 2016-01-28 06:57:47 -05:00			`return v;`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`}`


feldmanVSS documention 2016-01-28 06:57:47 -05:00			`/**`
			`* getter`
			`* @return generator of group`
			`*/`
			`public BigInteger getGenerator() {`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`return g;`
			`}`

feldmanVSS documention 2016-01-28 06:57:47 -05:00			`/**`
			`* getter`
			`* @return copy of commitments`
			`*/`
Feldman's VSS 2016-01-27 06:41:24 -05:00			`public BigInteger[] getCommitments() {`
			`return Arrays.clone(commitments);`
			`}`
			`}`