CHURP: Dynamic-Committee Proactive Secret Sharing

SKD Maram*, F. Zhang*, L. Wang, A. Low, Y. Zhang, A. Juels, and D. Song

ACM CCS 2019

TL;DR by AI

CHURP enables proactive secret sharing for dynamic committees in blockchains with low communication complexity.

Abstract

We introduce CHURP (CHUrn-Robust Proactive secret sharing). CHURP enables secure secret-sharing in dynamic settings, where the committee of nodes storing a secret changes over time. Designed for blockchains, CHURP has lower communication complexity than previous schemes: O(n) on-chain and O(n^2) off-chain in the optimistic case of no node failures. CHURP includes several technical innovations: An efficient new proactivization scheme of independent interest, a technique (using asymmetric bivariate polynomials) for efficiently changing secret-sharing thresholds, and a hedge against setup failures in an efficient polynomial commitment scheme. We also introduce a general new technique for inexpensive off-chain communication across the peer-to-peer networks of permissionless blockchains. We formally prove the security of CHURP, report on an implementation, and present performance measurements.

Highlights

Featured in a MIT Tech Review China report by MIT Tech Review China on May 27, 2019.

Publicity

Invited talk at ACM CCS'19, London, UK.
Invited talk at IC3 Bootcamp, Ithaca, NY.