Bitcoin Forum
November 30, 2025, 10:25:36 PM *
News: Latest Bitcoin Core release: 30.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Bitcoin > Bitcoin Technical Support > *Deterministic* solution (i.e. no SSSS) to turn a secret into 6 shards…
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: *Deterministic* solution (i.e. no SSSS) to turn a secret into 6 shards…  (Read 103 times)
Fearless_F (OP)
Newbie
*
Offline Offline

Activity: 8
Merit: 1


View Profile
August 01, 2024, 01:52:00 PM
 #1
What's the best *deterministic* algorithm/solution (i.e. no Shamir Secret Sharing Scheme) to turn a secret into 6 shards—with any 2 of these shards rebuilding the secret?
Charles-Tim
Legendary
*
Offline Offline

Activity: 2114
Merit: 6087


Leading Crypto Sports Betting & Casino Platform


View Profile
August 01, 2024, 02:03:48 PM
 #2
The best is still the Slip39 mnemonic shares. It is available on wallet like Electrum and Trezor hardware wallet.
..Stake.com..   ▄████████████████████████████████████▄
   ██ ▄▄▄▄▄▄▄▄▄▄            ▄▄▄▄▄▄▄▄▄▄ ██  ▄████▄
   ██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██  ██████
   ██ ██████████ ██      ██ ██████████ ██   ▀██▀
   ██ ██      ██ ██████  ██ ██      ██ ██    ██
   ██ ██████  ██ █████  ███ ██████  ██ ████▄ ██
   ██ █████  ███ ████  ████ █████  ███ ████████
   ██ ████  ████ ██████████ ████  ████ ████▀
   ██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██
   ██            ▀▀▀▀▀▀▀▀▀▀            ██ 
   ▀█████████▀ ▄████████████▄ ▀█████████▀
  ▄▄▄▄▄▄▄▄▄▄▄▄███  ██  ██  ███▄▄▄▄▄▄▄▄▄▄▄▄
 ██████████████████████████████████████████		▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█  ▄▀▄             █▀▀█▀▄▄
█  █▀█             █  ▐  ▐▌
█       ▄██▄       █  ▌  █
█     ▄██████▄     █  ▌ ▐▌
█    ██████████    █ ▐  █
█   ▐██████████▌   █ ▐ ▐▌
█    ▀▀██████▀▀    █ ▌ █
█     ▄▄▄██▄▄▄     █ ▌▐▌
█                  █▐ █
█                  █▐▐▌
█                  █▐█
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█
▄▄█████████▄▄
▄██▀▀▀▀█████▀▀▀▀██▄
▄█▀       ▐█▌       ▀█▄
██         ▐█▌         ██
████▄     ▄█████▄     ▄████
████████▄███████████▄████████
███▀    █████████████    ▀███
██       ███████████       ██
▀█▄       █████████       ▄█▀
▀█▄    ▄██▀▀▀▀▀▀▀██▄  ▄▄▄█▀
▀███████         ███████▀
▀█████▄       ▄█████▀
▀▀▀███▄▄▄███▀▀▀
..PLAY NOW..
odolvlobo
Legendary
*
Offline Offline

Activity: 4872
Merit: 3739



View Profile
August 01, 2024, 06:23:06 PM
 #3
Quote from: Fearless_F on August 01, 2024, 01:52:00 PM
What's the best *deterministic* algorithm/solution (i.e. no Shamir Secret Sharing Scheme) to turn a secret into 6 shards—with any 2 of these shards rebuilding the secret?

Please forgive my ignorance, but what's wrong with SSS and what do you mean by "*deterministic*"?
Join an anti-signature campaign: Click ignore on the members of signature campaigns.
PGP Fingerprint: 6B6BC26599EC24EF7E29A405EAF050539D0B2925 Signing address: 13GAVJo8YaAuenj6keiEykwxWUZ7jMoSLt
ranochigo
Legendary
*
Offline Offline

Activity: 3178
Merit: 4511


View Profile
August 02, 2024, 03:09:40 AM
Merited by pooya87 (2), ABCbits (2)
 #4
I'm assuming you're more concerned with having multiple entities hold shares of a secret, and in the context of Bitcoin to sign transactions.

SLIP39 which is an implementation of SSS is a good one, though it has never been formalized into a Bitcoin standard. Blakley's scheme is another form of secret sharing, though I prefer Shamir's, partly because of SLIP39's existence and also that it doesn't offer additional benefits. As far as information-theoric secure, I believe these are the two main ones.

Recently, there's a scheme called Multi-Party Computation as well. If you're going with that then might as well use Multi-sig since the latter is formalized into a standard.
ABCbits
Legendary
*
Offline Offline

Activity: 3444
Merit: 9398



View Profile
August 02, 2024, 09:53:38 AM
 #5
Quote from: odolvlobo on August 01, 2024, 06:23:06 PM
Quote from: Fearless_F on August 01, 2024, 01:52:00 PM
What's the best *deterministic* algorithm/solution (i.e. no Shamir Secret Sharing Scheme) to turn a secret into 6 shards—with any 2 of these shards rebuilding the secret?

Please forgive my ignorance, but what's wrong with SSS and what do you mean by "*deterministic*"?

I believe he means the output is always same. AFAIK some SSS tool (such as https://iancoleman.io/shamir/) would generate different output if you use exactly same input on different occasion.
pooya87
Legendary
*
Offline Offline

Activity: 4018
Merit: 12059



View Profile
August 02, 2024, 02:12:03 PM
 #6
Is deterministic Secret Sharing Scheme even possible? As far as I know these algorithms rely on randomness and if their randomness is "guessable" they lose their purpose.
odolvlobo
Legendary
*
Offline Offline

Activity: 4872
Merit: 3739



View Profile
August 03, 2024, 02:24:28 AM
 #7
Quote from: ABCbits on August 02, 2024, 09:53:38 AM
Quote from: odolvlobo on August 01, 2024, 06:23:06 PM
Quote from: Fearless_F on August 01, 2024, 01:52:00 PM
What's the best *deterministic* algorithm/solution (i.e. no Shamir Secret Sharing Scheme) to turn a secret into 6 shards—with any 2 of these shards rebuilding the secret?
Please forgive my ignorance, but what's wrong with SSS and what do you mean by "*deterministic*"?
I believe he means the output is always same. AFAIK some SSS tool (such as https://iancoleman.io/shamir/) would generate different output if you use exactly same input on different occasion.

Then the solution is simply to use non-random inputs, though as pooya87 pointed out, that would introduce weaknesses.
Join an anti-signature campaign: Click ignore on the members of signature campaigns.
PGP Fingerprint: 6B6BC26599EC24EF7E29A405EAF050539D0B2925 Signing address: 13GAVJo8YaAuenj6keiEykwxWUZ7jMoSLt
Pages: [1]
  Print  
Bitcoin Forum > Bitcoin > Bitcoin Technical Support > *Deterministic* solution (i.e. no SSSS) to turn a secret into 6 shards…
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!