[Cider9986]

Here is Ente's implementation: (https://2of3.ente.com/)

[emmelaich]

There's an implementation packaged up for most Linux distros: http://point-at-infinity.org/ssss

[Ajedi32]

This is my favorite one yet, very user friendly. I only wish it was a bit more configurable. Ideally I'd be able to set up something like:

  3 of 4: A B C D
  - OR -
    2 of 3: E F G
    - AND -
    1 of 1: H

Or any similar combination. Maybe also with a way to name the cards so it's clear exactly what's needed when restoring.

Though there's something to be said for the simplicity of the current design.

[compsciphd]

that's just 3 shamir secret sharings.

key is protected by a 3 of 3 keys.

1 protected by 3 of 4 (i.e. SSS the key into a 3 of 4) 1 protected by 2 of 3 (i.e. SSS the key into a 2 of 3) 1 that just is.

so you take your original key and SSS into a 3 of 3.

you take part 1 and SSS into a 3 of 4, and take part 2 and SSS into a 2 of 3.

[Ajedi32]

Yes, but a 3 of 4 SSS is not possible with the linked web page. It's also not user-friendly to expect non-technical users to manually go through multiple rounds of SSS in order to restore the original secret. Ideally it'd just be one page that clearly explains exactly what they need to provide and then restores the secret for them.

[ahazred8ta]

There are several browser-based versions which can be used online or downloaded to use offline.

https://bs.parity.io/ -- http://passguardian.com/ -- https://iancoleman.io/shamir/

[davidcollantes]

I have noticed that not one of them is compatible with the other. I generated shares using `ssss` (https://manpages.ubuntu.com/manpages/trusty/man1/ssss-split....), and couldn't combine them on any of the three sites linked. That is a downside, isn't it? Do you know of a way to bypass that hurdle, other than packing resources together with the shares?

[ahazred8ta]

SSSS is not the official canonical file format for SSS. Shamir did not specify an official file format when he described his technique. Each implementation knows how to recombine its own shares. The web apps can be saved and used on any device.