| 摘要 |
An improved technique involves storing current and one previous version of the secret shares in their respective databases. Along these lines, authentication servers split the proactivization process into several phases, during which they communicate a failure or success to complete that phase. During one of these phases, the authentication servers delete a previous version of their secret share and label the current version as the previous version. At another phase, the authentication servers generate a new version of each secret share (via one way deterministic transform) and store that new version alongside that previous version. Accordingly, when a user submits secret shares for authentication to the authentication servers, each authentication server determines the state of the corresponding authentication server and chooses the secret share according to that state. |
| 主权项 |
1. A method of synchronizing a set of authentication servers, the method comprising:
receiving, by a first authentication server of the set of authentication servers, a request from a second authentication server of the set of authentication servers to perform a first proactivization operation, each authentication server of the set of authentication servers being configured to verify a secret share of a secret received from a client against a version of a secret share stored in a respective database of that authentication server, the first proactivization operation serving to generate, by the first authentication server, a new version of a first secret share, a version of the first secret share serving to reveal the secret when combined with that version of a second secret share stored in a respective database of a second authentication server of the set of authentication servers; sending, from the first authentication server, a notification to the second authentication server to begin performing a second proactivization operation, the second proactivization operation serving to generate, by the second authentication server, a new version of the second secret share; performing, by the first authentication server, the first proactivization operation; and while performing the first proactivization operation, storing, by the first authentication server, a previous version of the first secret share on the respective database while generating the new version of the first secret share; wherein receiving the request from the second authentication server includes:
obtaining, from the request, an authentication identifier and a public key of the second authentication server;generating a private key/public key pair;producing, from the private key of the private key/public key pair and the public key of the second authentication server, a first random number;producing, from the first random number and the authentication identifier, a first check number; andsending the public key of the private key/public key pair and the first check number to the second authentication server, the second authentication server being configured to i) generate a second random number from the public key of the private key/public key pair and the private key of the second authentication server, ii) generate a second check number from the second random number and the authentication identifier, and iii) verify whether the second check number matches the first check number. |
