Pages:
Author

Topic: Heritage/Insurance Encapsuled Encryption System - page 2. (Read 336 times)

member
Activity: 90
Merit: 91

I got your point but I do not agree.

SSS's core is about:
1) threshold agreement, a sort of "tuneable cooperation enforcement" (very useful, because... what in your schema if one of the guys knowing one answer die with you in a car crash? Of course POTUS & VP never travel together by-law, but what for all of us, poor guys?  Wink ) ;
2) freedom from a specific order in key/answers provisioning.
It's not about participants before-hand coordination and/or knowledge of the goal.

Here is a schema you could use:

1) create a random secret s  for your AES-encoded "message for the future"
2) split s via SSS in, for example,  3 parts: s1, s2, s3
3) serialize s1, s2, s3, aka from now consider them just as bits-sequences
4) choose 3 questions q1, q2, q3 and their 3 answers a1, a2, a3 each known by your heirs
5) hash the answers obtaining h1=hash(a1), h2=hash(a2), h3=hash(a3)
6) calculate the (let me introduce a bit of fun in this sadness Wink ) magic numbers: m1=s1 XOR h1, m2=s2 XOR h2, m3=s3 XOR h3

the instruction given to each of your heir AFTER your death will be:
1) answer q_i (the question you have chosen to ask to heir i)
2) calculate h_i as hash of answer a_i
3) calculate s_i=h_i XOR m_i
4) provide s_i to a procedure which will collect all of them and then will apply SSS reconstruction of secret s
5) decode the message

Of course, for the sake of simplicity, I have omitted quorum threshold choice and one more technical stuff about s_i and h_i needing to be the same size in bits, but nothing impossible to deal with imho.

Of course you could object the after-death instruction are quite complicated, but of course they can be "web-ized" no more no less than your original program

member
Activity: 183
Merit: 43
Shamir's system, which is pair to multi-sign, doesn't requires all parties to cooperate, also requires the parties to know before hand what they're holding and its use.
This system doesn't require to inform anyone or you can inform a third unrelated party (custodian) of its existence to summon the needed parties when it becomes needed.
 
member
Activity: 90
Merit: 91

Hi! Thanks for sharing,

but

if you are intererest in this topics, I suggest you to read about Shamir Secret Sharing: it seems more general than your solution (I don't see any benefit in questions/answers strict order or in multi question per heir/ess ) and I guess more deeply analyzed before production:
https://en.wikipedia.org/wiki/Shamir%27s_Secret_Sharing

And for wider perspective:
https://www.smartcustody.com
or:
https://www.amazon.com/Cryptoasset-Inheritance-Planning-Simple-Owners/dp/1947910116

member
Activity: 183
Merit: 43
Solves the problem when you want your assets to be accessed only by cooperation of a set of people (if you've more than one heir that is).
Isn't any "traces wipe out system" as a dead man's switch, it's the opposite, it's to provide your heirs access to what's normally encrypted.
legendary
Activity: 1904
Merit: 1563
One thing that bothers everyone that has cryptoassets is on how to leave them once we die or if some accident happens that leaves us unable to respond. This can be handy too if we suffer from memory loss.
So I came up with this idea, a set of questions posed to several people, where each answer is the key to another AES encrypted layer.
~

Download link: https://www.asw.pt/EES.zip

Wait upon only by reading, I'm a little confused on what problem does that program really solves? I mean yeah it has multi layered encryption which each and every answer are the key to the other, but on what case we must use this instead of just using native encryptions and store such data in either a hardware wallet or simply in a piece of paper hidden in a vault? Also, there are programs that can run and encrypt everything on your device once a certain condition doesn't met its scheduled response, try looking for Dead Man's Switch scripts. Such programs are helpful once there would be incident but you'd still wanted to have an assurance that no one could see either your assets or just your personal files. Hence, what would make us download and try this one?
member
Activity: 183
Merit: 43
One thing that bothers everyone that has cryptoassets is on how to leave them once we die or if some accident happens that leaves us unable to respond. This can be handy too if we suffer from memory loss.
So I came up with this idea, a set of questions posed to several people, where each answer is the key to another AES encrypted layer.

Let's say you want to put your questions to Paul, Sue and John in a set of 3 questions each. The system will start by asking Paul one question, then Sue, then John, then Paul again, Sue, John, Paul, Sue, John. There's no way one can answer his 3 questions without the other two answer their questions too. Paul won't be able to see his questions if Sue and John doesn't answer first, nor Sue if John and Paul don't answer in between, and won't even be able to know what questions are those...

The system is purely JS and HTML. And I'm sorry if it's a bit sketchy, just got this idea a couple of days ago.

Code:
WHAT IT DOES?

This system encrypts a message under several layers of AES encryption.
The ideia is that you be able to leave a message in case of your death or any accident that leaves you unable to respond that can be opened only by a group of persons you know by answering a set of questions you made.

TIPS:

The system has two vectors, informatics and human. The informatics vector is covered under a well known strong encryption algorithm (Advanced Encryption Standard), in CBC mode with PKCS7 padding.
For the human vector, you should select well the persons and the questions, try to not be too obvious, like "what's your favorite color?", or provide questions whose answers could be easily guess by other participants.
Try to be personal, ask things those persons wouldn't tell anyone over any casual chat, and things that you know only you and that person could possibly know, like "When we first met?", "Where we first kiss/make love?", etc.
You can also use a third party you trust, and unrelated to the question targets, to keep the message safe.

In combination, if you want to leave many data, you can strongly encrypt a True/VeroCrypt partition or file container and leave its password as message here.

This system REQUIRES NO INTERNET CONNECTION. For safety you should do it OFFLINE.


INSTRUCTIONS:

Open the Maker module (maker.html) with your browser (the system was made and tested using Firefox 83.0 for 64 bit Linux) and fill the form, some fields are dynamical and will appear only after other actions are done.
You must set:
- A welcome message, that will display in the header of the Viewer Module.
- A message to encrypt
- A final question and its answer (will be used as password to AES encrypt the message itself)
- The number of people you want to be answering your questions, and their names.
- The number of questions to pose each of those persons.

Once done, press the Generate Code button, it will provide you a file to download named msg.js - download it to the same folder of the "Viewer Module".

To use it:

Open the Message.html file, once the msg.js is in that same folder, at the Viewer module and start to roll the questions.


THIRD PARTY SOFTWARE USED:

CryptoJS v3.1.2
jQuery v3.5.1

Download link: https://www.asw.pt/EES.zip
Pages:
Jump to: