Paper 2025/368

Polynomial Secret Sharing Schemes and Algebraic Matroids

Amos Beimel, Ben-Gurion University of the Negev
Oriol Farràs, Rovira i Virgili University
Adriana Moya, Rovira i Virgili University
Abstract

In a secret sharing scheme with polynomial sharing, the secret is an element of a finite field, and the shares are obtained by evaluating polynomials on the secret and some random field elements, i.e., for every party there is a set of polynomials that computes the share of the party. These schemes generalize the linear ones, adding more expressivity and giving room for more efficient schemes. To identify the access structures for which this efficiency gain is relevant, we need a systematic method to identify the access structure of polynomial schemes; i.e., to identify which sets can reconstruct the secret in the scheme. As a first step, we study ideal polynomial secret sharing schemes where there is a single polynomial for each party. Ideal schemes have optimal share size because the size of each share is the size of the secret. Our goal is to generalize results of linear secret sharing schemes, i.e., schemes in which the shares are computed by applying linear mappings and the linear dependency of these mappings determines their access structures. To achieve this goal, we study the connection between the algebraic dependency of the sharing polynomials and the access structure of the polynomial scheme. Our first result shows that if the degree of the sharing polynomials is not too big compared to the size of the field, then the algebraic dependence of the sharing polynomials determines the access structure of the scheme. This contributes to the characterization of ideal polynomial schemes and establishes a new connection between families of ideal schemes and algebraic matroids. Conversely, we ask the question: If we associate a polynomial with each party and the dealer, can we use these polynomials to realize the access structure determined by the algebraic dependency of the polynomials? Our second result shows that these access structures admit statistical schemes with small shares. Finally, we extend this result to the general case where each party may have more than one polynomial.

Metadata
Available format(s)
PDF
Category
Foundations
Publication info
Preprint.
Keywords
Secret sharingPolynomial secret sharingMatroid
Contact author(s)
amos beimel @ gmail com
oriol farras @ urv cat
adriana moya @ urv cat
History
2025-03-04: approved
2025-02-26: received
See all versions
Short URL
https://ia.cr/2025/368
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2025/368,
      author = {Amos Beimel and Oriol Farràs and Adriana Moya},
      title = {Polynomial Secret Sharing Schemes and Algebraic Matroids},
      howpublished = {Cryptology {ePrint} Archive, Paper 2025/368},
      year = {2025},
      url = {https://eprint.iacr.org/2025/368}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.