Security

Practical Yet Universally Composable Two-Server Password-Authenticated Secret Sharing

Free registration required

Executive Summary

Password-Authenticated Secret Sharing (PASS) schemes, first introduced by Bagherzandi et al. at CCS 2011, allow users to distribute data among several servers so that the data can be recovered using a single human-memorizable password, but no single server (or collusion of servers up to a certain size) can mount an off-line dictionary attack on the password or learn anything about the data. The authors propose a new, Universally Composable (UC) security definition for the two-server case (2PASS) in the public-key setting that addresses a number of relevant limitations of the previous, non-UC definition.

  • Format: PDF
  • Size: 535.5 KB