Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Very minor Shamir split count leakage #2608

Closed
grocid opened this issue Apr 18, 2017 · 1 comment
Closed

Very minor Shamir split count leakage #2608

grocid opened this issue Apr 18, 2017 · 1 comment

Comments

@grocid
Copy link

grocid commented Apr 18, 2017
edited
Loading

In Vault, a set of n splits of a byte is generated as X = {1, 2, 3, ..., n} and Y = {p(1), p(2), p(3), ... , p(n)}, where the x coordinate is appended to the end of each split. Observing a split 0xAB05 gives a lower bound on how many splits being generated (n ≥ 5), which might leak some information about the infrastructure in which Vault is deployed, depending on the scenario. A very simple fix is to generate a random set of x coordinates instead of sequential coordinates.

Although this is by no means a significant leakage, it can be mitigated very easily, and leaking information is never a good thing :-)
@jefferai jefferai added this to the near-term milestone Apr 18, 2017
@chrishoffman chrishoffman mentioned this issue Apr 20, 2017
Merged
@v6
Copy link
Contributor

v6 commented Oct 15, 2018

// , Can you give an example of the kind of info. this might leak, or of one of the scenarios?

@pbernal pbernal removed this from the near-term milestone May 15, 2020
@AaronFeickert AaronFeickert mentioned this issue Aug 10, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@jefferai @grocid @pbernal @v6