Public Key Cryptography - PKC 2005

Volume 3386 of the series Lecture Notes in Computer Science pp 120-137

Optimizing Robustness While Generating Shared Secret Safe Primes

  • Emil OngAffiliated withUniversity of California
  • , John KubiatowiczAffiliated withUniversity of California


We develop a method for generating shared, secret, safe primes applicable to use in threshold RSA signature schemes such as the one developed by Shoup. We would like a scheme usable in practical settings, so our protocol is robust and efficient in asynchronous, hostile environments. We show that the techniques used for robustness need special care when they must be efficient. Specifically, we show optimizations that minimize the number and size of the proofs of knowledge used. We also develop optimizations based on computer arithmetic algorithms, in particular, precomputation and Montgomery modular multiplication.


Distributed key generation safe primes threshold RSA signatures