secretsharing 1.0.0 → 2.0.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 5f098c9c10d0baf1c9fe59f3e78ac25fd328b562
-  data.tar.gz: 066705c6051aece363ef1fc94cc52afe74e84837
+  metadata.gz: ed7cefd0fcae8cc2d1d8224c76e57ece7adf7d5f
+  data.tar.gz: bbc9761d15c080aabecf6ddbcae363aaf80d6770
 SHA512:
-  metadata.gz: 658a169db761f026d7521bf8def8ca80ca93d599d99f062ddcd49a4da163a72b204532bb05ef186988d3c200fbc0d2b5bbef407fda5926210f1bd69380de5ad1
-  data.tar.gz: 2c267a45c04ff7dbb20d00b393c418a523645b5596a3a1b1090fec1f812ef87e7af6861032cba297dccf9ce673a0383905d5a0db7137e0d1ad7db079d0066996
+  metadata.gz: c77bec8f6362df45d14202354dce567063451343c10909cb5199c09b161864b065d81d4102f3495c243ff9650b59a7a95484859158994e48b9c114917ef817b2
+  data.tar.gz: 6e6b76852a12212eb81ef863cf360766aea8867323d0a0ebc6fcb25b6a36ca4696d522f3427a0ab40f986223c1c62c005fceeffe63548a2f55c0a7e6c7576d40

data/.rubocop.yml

@@ -27,3 +27,6 @@ AbcSize:
 
 GuardClause:
   MinBodyLength: 5
+
+NumericLiterals:
+  Enabled: false

data/.travis.yml

@@ -3,14 +3,17 @@ language: ruby
 gemfile: gemfiles/Gemfile.ci
 
 rvm:
-  - 2.2.0
-  - 2.1.5
   - 2.0.0
-  - 1.9.3
-  - 1.9.2
-  - 1.8.7
+  - 2.1.4
+  - 2.2.2
+  - ruby-head
+  - jruby
   - jruby-head
-  - jruby-19mode
-  - jruby-18mode
-  - rbx-2.4.1
-  - ree
+  - rbx-2
+
+matrix:
+  fast_finish: true
+  allow_failures:
+    - rvm: ruby-head
+    - rvm: jruby-head
+    - rvm: rbx-2

data/CHANGES.md

@@ -0,0 +1,40 @@
+# CHANGELOG
+
+## v2.0.1
+
+- Update gemspec description, no longer maintained.
+
+## v2.0.0
+
+- Use RbNaCl for SHA-512 hash and HMAC SHA-256. Backward incompatible change with previous use of SHA-256.
+- Refactored to eliminate use of OpenSSL::BN in favor of Ruby Bignum. Its better documented and the code is more intentional. As of [Ruby 2.1](http://globaldev.co.uk/2014/05/ruby-2-1-in-detail/) Bignum uses the GNU Multiple Precision Arithmetic Library (GMP) to improve performance.
+- New internal prime number generation using Miller-Rabin primality tests which eliminates previous OpenSSL::BN#generate_prime bugs.
+- Use RbNaCl to generate random numbers.
+- Change the list of supported Ruby VMs to match RbNaCl.
+- Use backports gem to support Bignum#bit_length which was introduced in Ruby 2.1
+- Fixed all Rubocop warnings.
+- 100% code test coverage as measured with COCO.
+- Use RbNaCl secure constant-time comparison for comparing secret objects to one another.
+- Added additional tests for utility functions.
+
+## v1.0.0
+
+- Version 1.0.0 is an almost complete rewrite of the original code.
+   This version is NOT backwards compatible with the shares generated
+   with previous version. The API for this version is significantly
+   changed as well. You will need to make some (hopefully simple)
+   code changes to use this newer version. See the README.md file
+   for details.
+
+## v0.3
+
+- Added support for setting your own secret using the set_fixed_secret() method.
+
+## v0.2
+
+- Bugfix in Langrange interpolation, which broke 2/2 sharing.
+- Added secret_password method to represent the secret in Base64.
+
+## v0.1
+
+- Initial version

data/README.md

@@ -1,87 +1,126 @@
 # SecretSharing
 
+# IMPORTANT NEWS
+
+**April 2016 - THIS GEM IS NO LONGER MAINTAINED**
+
+**Good news?** There is a newer better one!
+
+I have created a new `tss` [https://github.com/grempe/tss-rb](https://github.com/grempe/tss-rb)
+Ruby Gem (with CLI) that implements Threshold Secret Sharing.
+
+The new version is based on a mature specification, written by a professional
+Cryptogropher, and is compatible with at least one other Python implementation
+of that spec at the share level. It is **NOT** compatible with this
+`secretsharing` gem. There are a number of features of the new code which make
+it a better choice not the least of which are:
+
+* MUCH cleaner API, only two entry points (`TSS.split`, `TSS.combine`)
+* Split any arbitrary UTF-8 or US-ASCII String
+* SHA256 or SHA1 verification of every secret recovered
+* Verification hash is split along with the secret, the hash is not known to an attacker
+* A binary header with a unique identifier, and the threshold number of shares needed, no more guessing
+* More effective sanitization of args, and verification of share formats
+* Much cleaner codebase, which closely follows the spec as documented
+* Fewer dependencies
+* Cryptographically Signed Gem and repository
+* Binary and Text share format
+* Great test coverage.
+
+You can find the new code at:
+
+[GitHub : https://github.com/grempe/tss-rb](https://github.com/grempe/tss-rb)
+
+[RubyGems : https://rubygems.org/gems/tss](https://rubygems.org/gems/tss)
+
+
 ## Description
-A Ruby gem for sharing secrets in an information-theoretically secure way.
+A Ruby gem for sharing secrets using [Shamir's Secret Sharing](http://en.wikipedia.org/wiki/Shamir's_Secret_Sharing), which is an [information-theoretic](https://en.wikipedia.org/wiki/Information-theoretic_security) secure method to share secrets between trusted parties.
 
-It uses Shamir's secret sharing to enable sharing a (random) secret
-between n persons where k <= n shares are enough to recover the secret.
+Shamir's Secret Sharing is an algorithm in cryptography created by Adi Shamir. It is a form of secret sharing, where a secret is divided into parts, giving each participant its own unique part, where some of the parts or all of them are needed in order to reconstruct the secret.
 
-k-1 secret share holders learn nothing about the secret when they combine their shares.
+Counting on all participants to combine together the secret might be impractical, and therefore sometimes the threshold scheme is used where any `k` of the total shares `n` are sufficient to reconstruct the original secret.
 
-Learn More about [Shamir's Secret Sharing](http://en.wikipedia.org/wiki/Shamir's_Secret_Sharing)
+`k - 1` secret share holders can learn *nothing* about the secret, even when they combine their shares with others. Only once the `k` threshold of shares combined is reached will the original secret be revealed.
 
 ## Development History
 
-This library is based on the OpenXPKI::Crypto::Secret::Split Perl module
-used in the open source PKI software OpenXPKI, which was written by
-Alexander Klink for the OpenXPKI project in 2006.
+This library was originally developed by Alexander Klink and later significantly enhanced by Glenn Rempe. You may find the [original source code](http://repo.or.cz/w/secretsharing.git) for Alexander's version still online.
+
+The canonical home for the Gem is now at [grempe/secretsharing](https://github.com/grempe/secretsharing).
 
-The original source code for Alexander Klink's 'secretsharing' gem
-can be found at <http://repo.or.cz/w/secretsharing.git>
+WARNING : The major release versions of the Gem may not be API or file compatible with each other.
 
-It has been further enhanced, modularized, and a full test suite
-has been added by Glenn Rempe (<glenn@rempe.us>) and can be found
-at <https://github.com/grempe/secretsharing> which is the new canonical
-repository for the gem.
+## Is it safe?
 
-WARNING : The public API and the Share String format of the current version
-of the Gem are *not* backwards compatible with 'secretsharing'
-versions <= '0.3'.
+This code has not yet been tested in production by the author. It is well tested though with a full Minitest suite and 100% test code coverage. By all appearances it is working well for what it was designed to do. The code also undergoes a continuous integration test run on many different Ruby runtimes after every push.
 
-## Should I use it?
+The mathematics of the code, which are critical to its operation, and its suitability for use as a security product have not yet been vetted by security minded experts. If you want to help with this please do get in touch.
 
-This code has not yet been tested in production.  It is seemingly well tested though with a full Minitest suite and 100% test code coverage and appears to be working well for what it was designed to do.  The code also undergoes a continuous integration test run on many different Ruby runtimes upon every push.
+## Supported platforms
 
-The mathematics of the code, which is critical to its operation, and its suitability for use as a security product have not yet been tested or verified by security minded folks. `Yet`. If you are one of those strongly mathematically or security minded folks please do get in touch if you think you can help validate the current implementation. Suggestions or concerns welcome.
+You should be able to use `secretsharing` anywhere that [RbNaCl](https://github.com/cryptosphere/rbnacl) is supported and we do continuous integration testing on the following Rubies:
+
+* MRI 2.0.0, 2.1.4, 2.2.2, HEAD
+* JRuby
+* JRuby HEAD
+* Rubinius
 
 ## Installation
 
-Add this line to your application's Gemfile:
+Add this to your application's Gemfile:
 
     gem 'secretsharing'
 
-And then execute:
+And then:
 
     $ bundle
 
-Or install it yourself as:
+Or install it directly:
 
     $ gem install secretsharing
 
-## Usage in a Ruby/Rails project.
+Installation also adds a `secretsharing` binary which you can use as a simple CLI for creating and restoring secret shares.
+
+## Example usage in a Ruby program
 
     require 'secretsharing'
 
-    # create an object for 3 out of 5 secret sharing
+    # create a container (c1) for 3 out of 5 secret sharing
     c1 = SecretSharing::Shamir::Container.new(5,3)
 
-    # create a random secret (returns the secret)
+    # create a default secret object with a 32 Byte (256 bit) random secret embedded
     c1.secret = SecretSharing::Shamir::Secret.new
 
-    # (or create a fixed secret of your choice by passing in an OpenSSL::BN object in the :secret arg)
-    c1.secret = SecretSharing::Shamir::Secret.new(:secret => OpenSSL::BN.new('123456789'))
+    # or create a fixed secret of your choice by passing in a sufficiently
+    # large, cryptographically secure, Integer in the :secret arg
+    c1.secret = SecretSharing::Shamir::Secret.new(:secret => 123456789)
 
-    # show secret
+    # show the internal secret (a Bignum), as a Base64 encoded String
     puts c1.secret
 
-    # show shares
+    # show the Base64 encoded shares generated from that secret
     c1.shares.each { |share| puts share }
 
-    # recover secret from shares by using a new Container
-    # where the number of Shares expected is the same.
+    # recover secret from shares by using a new Container (c2)
+    # where the number of Shares expected is the same (passing a single
+    # argument sets both `n` and `k` to the same value).
     c2 = SecretSharing::Shamir::Container.new(3)
 
-    # Accepts SecretSharing::Shamir::Share objects or
-    # string representations thereof
-    c2 << c1.shares[0]
-    c2 << c1.shares[2]
-    c2 << c1.shares[4]
+    # the container accepts pushing any SecretSharing::Shamir::Share objects or Strings
+    # `c2` will return `false` each time until a valid secret is recovered.
+    c2 << c1.shares[0]    #=> false
+    c2 << c1.shares[2]    #=> false
+    c2 << c1.shares[4]    #=> #<SecretSharing::Shamir::Secret ...>
 
+    # when enough shares are present, the secret will be populated.
     c2.secret? #=> true
+
+    # show the recovered secret (Base64 encoded)
     puts c2.secret
 
-    # Test that the secret used to generate the HMAC
-    # matches the HMAC of the secret that was re-constructed
+    # test that the newly recovered secret matches the original secret used to create
+    # the shares by comparing the embedded HMAC SHA-512 of both.
     c2.secret.valid_hmac? #=> true
 
 ## Usage via the command line CLI
@@ -89,7 +128,7 @@ Or install it yourself as:
 First, use the `secretsharing` program to generate a set of Shares from a Secret
 
 ````
-➜  secretsharing git:(master) ✗ secretsharing
+$ secretsharing
 
 Shamir's Secret Sharing
 
@@ -98,47 +137,43 @@ Would you like to 'encode' a new secret as shares, or 'decode' one from existing
 2. decode
 Action? 1
 
-Would you like to create a 'random' secret, or will you provide a 'fixed' one?
+Would you like to create a random 32 Byte secret, or will you provide your own (large Integer)?
 1. random
 2. fixed
-Type? 1
+Type? 2
+Enter your numeric password:  123456789
 How many total shares (n) do you want to distribute?  5
-How many of the total shares (k) are required to reveal the secret?  3
+How many of the total shares are required to reveal the secret (k)?  3
 
 ========================================
-Encoded Secret:
+Secret Split Complete
 
 (k) Value: 3
 (n) Value: 5
 
 Secret (Bignum):
-179040077567401061920833455639501686558874997550289562553628622313673068089718
+123456789
 
 Secret (Base64 Compacted & URL Safe):
-OXY1eHdod3N0NXJ1MWEzZXBuMjgxZnN1Y2Y4dXI1bWRyNG40dTl2Zmk1MG16OXM4emE=
+MjFpM3Y5
 
 Secret has valid_hmac?
 true
 
 Shares:
-2gEqeyJobWFjIjoiMDVkNWNlOTIyNjk5ZTUxNzY4ODU2MmJlYjJiZDUzMTI4OTAyYTYzMjAxMjIxMjdjZTVhZjhlMmRiMmY2MmNkMiIsImsiOjMsIm4iOjUsInByaW1lIjozNzA1MzQ2ODU1NTk0MTE4MjUzNTU0MjcxNTIwMjc4MDEzMDUxMzA0NjM5NTA5MzAwNDk4MDQ5MjYyNjQyNjg4MjUzMjIwMTQ4NDc4MDU5LCJwcmltZV9iaXRsZW5ndGgiOjI2MSwidmVyc2lvbiI6MSwieCI6MSwieSI6OTE5NjU5ODE1Njg0MzAwODU5Mjg2OTU1ODMxMzg0NzA2NDQ1NTMyMzQxNDE5ODAyOTA5NzEwMDcxODU1MTgwMjUyMTYxMjk4Nzg0MzE2fQ==
-
-2gEreyJobWFjIjoiMDVkNWNlOTIyNjk5ZTUxNzY4ODU2MmJlYjJiZDUzMTI4OTAyYTYzMjAxMjIxMjdjZTVhZjhlMmRiMmY2MmNkMiIsImsiOjMsIm4iOjUsInByaW1lIjozNzA1MzQ2ODU1NTk0MTE4MjUzNTU0MjcxNTIwMjc4MDEzMDUxMzA0NjM5NTA5MzAwNDk4MDQ5MjYyNjQyNjg4MjUzMjIwMTQ4NDc4MDU5LCJwcmltZV9iaXRsZW5ndGgiOjI2MSwidmVyc2lvbiI6MSwieCI6MiwieSI6MjI4MDcyMTc2NjA0NjUwODgwODE1ODY0MTc2ODQyOTY5NDkwODgyODY1OTY4Mzg4MzYyODAyNTE0NTI5MzI4NTE1NDI3Njg3NjM0ODkyNn0=
-
-2gEqeyJobWFjIjoiMDVkNWNlOTIyNjk5ZTUxNzY4ODU2MmJlYjJiZDUzMTI4OTAyYTYzMjAxMjIxMjdjZTVhZjhlMmRiMmY2MmNkMiIsImsiOjMsIm4iOjUsInByaW1lIjozNzA1MzQ2ODU1NTk0MTE4MjUzNTU0MjcxNTIwMjc4MDEzMDUxMzA0NjM5NTA5MzAwNDk4MDQ5MjYyNjQyNjg4MjUzMjIwMTQ4NDc4MDU5LCJwcmltZV9iaXRsZW5ndGgiOjI2MSwidmVyc2lvbiI6MSwieCI6MywieSI6NTU2ODc5MDczMDU5OTA2NjU0OTgxNjE5NzQ2NDk2NDU0MDI1MTQzMTkwMjgwNDkxOTQ2NDU4NTExMzAwMjQ4NzY2Nzk5NjUyMzA1NDg5fQ==
-
-2gEreyJobWFjIjoiMDVkNWNlOTIyNjk5ZTUxNzY4ODU2MmJlYjJiZDUzMTI4OTAyYTYzMjAxMjIxMjdjZTVhZjhlMmRiMmY2MmNkMiIsImsiOjMsIm4iOjUsInByaW1lIjozNzA1MzQ2ODU1NTk0MTE4MjUzNTU0MjcxNTIwMjc4MDEzMDUxMzA0NjM5NTA5MzAwNDk4MDQ5MjYyNjQyNjg4MjUzMjIwMTQ4NDc4MDU5LCJwcmltZV9iaXRsZW5ndGgiOjI2MSwidmVyc2lvbiI6MSwieCI6NCwieSI6MzE1ODgyNTQ0NzkxMjczMDkwNjg2NDQzMjgwNjE0MTAwOTg5NzA4NTIxMjIyODIyODg2MTEwODY5NTE2MTQ0NzU5NjE2OTkyMzYxMDEyM30=
-
-2gEreyJobWFjIjoiMDVkNWNlOTIyNjk5ZTUxNzY4ODU2MmJlYjJiZDUzMTI4OTAyYTYzMjAxMjIxMjdjZTVhZjhlMmRiMmY2MmNkMiIsImsiOjMsIm4iOjUsInByaW1lIjozNzA1MzQ2ODU1NTk0MTE4MjUzNTU0MjcxNTIwMjc4MDEzMDUxMzA0NjM5NTA5MzAwNDk4MDQ5MjYyNjQyNjg4MjUzMjIwMTQ4NDc4MDU5LCJwcmltZV9iaXRsZW5ndGgiOjI2MSwidmVyc2lvbiI6MSwieCI6NSwieSI6MjY3NTg2NzE3OTQxNjc0NTA1NjY5ODUzNzkwNjgwNzMzNjQyMjA0NTQ0NjUwODQ5MzM3NTg3NzE3MTU5MTUwNTEzNTk0NzM5MzMwNjcxMH0=
+eyJ2ZXJzaW9uIjoxLCJobWFjIjoiZjNlMjJlNmRhMjcyNzljNDhmZDcxZDBiZmJmNGZlNzk3NGRkYzkxNzRhMDVmYjllMzY2YjQ3YThlZWNmNDcwZiIsImsiOjMsIm4iOjUsIngiOjEsInkiOjMyMDUzMjE1NCwicHJpbWUiOjc0NDk2NzMzNywicHJpbWVfYml0bGVuZ3RoIjoyOX0=
+eyJ2ZXJzaW9uIjoxLCJobWFjIjoiZjNlMjJlNmRhMjcyNzljNDhmZDcxZDBiZmJmNGZlNzk3NGRkYzkxNzRhMDVmYjllMzY2YjQ3YThlZWNmNDcwZiIsImsiOjMsIm4iOjUsIngiOjIsInkiOjcyNzM3ODkyNSwicHJpbWUiOjc0NDk2NzMzNywicHJpbWVfYml0bGVuZ3RoIjoyOX0=
+eyJ2ZXJzaW9uIjoxLCJobWFjIjoiZjNlMjJlNmRhMjcyNzljNDhmZDcxZDBiZmJmNGZlNzk3NGRkYzkxNzRhMDVmYjllMzY2YjQ3YThlZWNmNDcwZiIsImsiOjMsIm4iOjUsIngiOjMsInkiOjU5OTAyOTc2NSwicHJpbWUiOjc0NDk2NzMzNywicHJpbWVfYml0bGVuZ3RoIjoyOX0=
+eyJ2ZXJzaW9uIjoxLCJobWFjIjoiZjNlMjJlNmRhMjcyNzljNDhmZDcxZDBiZmJmNGZlNzk3NGRkYzkxNzRhMDVmYjllMzY2YjQ3YThlZWNmNDcwZiIsImsiOjMsIm4iOjUsIngiOjQsInkiOjY4MDQ1MjAxMSwicHJpbWUiOjc0NDk2NzMzNywicHJpbWVfYml0bGVuZ3RoIjoyOX0=
+eyJ2ZXJzaW9uIjoxLCJobWFjIjoiZjNlMjJlNmRhMjcyNzljNDhmZDcxZDBiZmJmNGZlNzk3NGRkYzkxNzRhMDVmYjllMzY2YjQ3YThlZWNmNDcwZiIsImsiOjMsIm4iOjUsIngiOjUsInkiOjIyNjY3ODMyNiwicHJpbWUiOjc0NDk2NzMzNywicHJpbWVfYml0bGVuZ3RoIjoyOX0=
 
 ========================================
-➜  secretsharing git:(master) ✗
 ````
 
 Once that is done you can re-hydrate your Secret using any 3 out of the 5 Shares originally generated:
 
 ````
-➜  secretsharing git:(master) ✗ secretsharing
+$ secretsharing
 
 Shamir's Secret Sharing
 
@@ -150,25 +185,23 @@ Action? 2
 How many of shares (k) are required to reveal this secret?  3
 
 Enter the '3' shares one at a time with a RETURN after each:
-2gEqeyJobWFjIjoiMDVkNWNlOTIyNjk5ZTUxNzY4ODU2MmJlYjJiZDUzMTI4OTAyYTYzMjAxMjIxMjdjZTVhZjhlMmRiMmY2MmNkMiIsImsiOjMsIm4iOjUsInByaW1lIjozNzA1MzQ2ODU1NTk0MTE4MjUzNTU0MjcxNTIwMjc4MDEzMDUxMzA0NjM5NTA5MzAwNDk4MDQ5MjYyNjQyNjg4MjUzMjIwMTQ4NDc4MDU5LCJwcmltZV9iaXRsZW5ndGgiOjI2MSwidmVyc2lvbiI6MSwieCI6MSwieSI6OTE5NjU5ODE1Njg0MzAwODU5Mjg2OTU1ODMxMzg0NzA2NDQ1NTMyMzQxNDE5ODAyOTA5NzEwMDcxODU1MTgwMjUyMTYxMjk4Nzg0MzE2fQ==
-2gEreyJobWFjIjoiMDVkNWNlOTIyNjk5ZTUxNzY4ODU2MmJlYjJiZDUzMTI4OTAyYTYzMjAxMjIxMjdjZTVhZjhlMmRiMmY2MmNkMiIsImsiOjMsIm4iOjUsInByaW1lIjozNzA1MzQ2ODU1NTk0MTE4MjUzNTU0MjcxNTIwMjc4MDEzMDUxMzA0NjM5NTA5MzAwNDk4MDQ5MjYyNjQyNjg4MjUzMjIwMTQ4NDc4MDU5LCJwcmltZV9iaXRsZW5ndGgiOjI2MSwidmVyc2lvbiI6MSwieCI6MiwieSI6MjI4MDcyMTc2NjA0NjUwODgwODE1ODY0MTc2ODQyOTY5NDkwODgyODY1OTY4Mzg4MzYyODAyNTE0NTI5MzI4NTE1NDI3Njg3NjM0ODkyNn0=
-2gEqeyJobWFjIjoiMDVkNWNlOTIyNjk5ZTUxNzY4ODU2MmJlYjJiZDUzMTI4OTAyYTYzMjAxMjIxMjdjZTVhZjhlMmRiMmY2MmNkMiIsImsiOjMsIm4iOjUsInByaW1lIjozNzA1MzQ2ODU1NTk0MTE4MjUzNTU0MjcxNTIwMjc4MDEzMDUxMzA0NjM5NTA5MzAwNDk4MDQ5MjYyNjQyNjg4MjUzMjIwMTQ4NDc4MDU5LCJwcmltZV9iaXRsZW5ndGgiOjI2MSwidmVyc2lvbiI6MSwieCI6MywieSI6NTU2ODc5MDczMDU5OTA2NjU0OTgxNjE5NzQ2NDk2NDU0MDI1MTQzMTkwMjgwNDkxOTQ2NDU4NTExMzAwMjQ4NzY2Nzk5NjUyMzA1NDg5fQ==
+eyJ2ZXJzaW9uIjoxLCJobWFjIjoiZjNlMjJlNmRhMjcyNzljNDhmZDcxZDBiZmJmNGZlNzk3NGRkYzkxNzRhMDVmYjllMzY2YjQ3YThlZWNmNDcwZiIsImsiOjMsIm4iOjUsIngiOjEsInkiOjMyMDUzMjE1NCwicHJpbWUiOjc0NDk2NzMzNywicHJpbWVfYml0bGVuZ3RoIjoyOX0=
+eyJ2ZXJzaW9uIjoxLCJobWFjIjoiZjNlMjJlNmRhMjcyNzljNDhmZDcxZDBiZmJmNGZlNzk3NGRkYzkxNzRhMDVmYjllMzY2YjQ3YThlZWNmNDcwZiIsImsiOjMsIm4iOjUsIngiOjIsInkiOjcyNzM3ODkyNSwicHJpbWUiOjc0NDk2NzMzNywicHJpbWVfYml0bGVuZ3RoIjoyOX0=
+eyJ2ZXJzaW9uIjoxLCJobWFjIjoiZjNlMjJlNmRhMjcyNzljNDhmZDcxZDBiZmJmNGZlNzk3NGRkYzkxNzRhMDVmYjllMzY2YjQ3YThlZWNmNDcwZiIsImsiOjMsIm4iOjUsIngiOjMsInkiOjU5OTAyOTc2NSwicHJpbWUiOjc0NDk2NzMzNywicHJpbWVfYml0bGVuZ3RoIjoyOX0=
 
 
 ========================================
-Decoded Secret:
+Secret Recovery Complete
 
 (k) Value: 3
 
-Secret (Bignum):
-179040077567401061920833455639501686558874997550289562553628622313673068089718
-
-Secret (Base64 Compacted & URL Safe):
-OXY1eHdod3N0NXJ1MWEzZXBuMjgxZnN1Y2Y4dXI1bWRyNG40dTl2Zmk1MG16OXM4emE=
+Secret (Fixnum):
+123456789
 
+Secret (URL safe Base64 encoded):
+MjFpM3Y5
 
 ========================================
-➜  secretsharing git:(master) ✗
 ````
 
 Easy!
@@ -193,7 +226,7 @@ Build and Install the gem to your local system from the cloned repository:
 
 Run the `secretsharing` binary without installing the Gem locally:
 
-    ruby -I./lib bin/secretsharing
+    bundle exec ruby -I./lib bin/secretsharing
 
 ### Code Quality:
 
@@ -207,10 +240,9 @@ We love bug reports and pull requests.
 
 [![Build Status](https://travis-ci.org/grempe/secretsharing.png)](https://travis-ci.org/grempe/secretsharing)
 
-This gem is tested after each git push to the master branch
-using the [Travis CI](https://travis-ci.org/grempe/secretsharing) automated build and test service against several versions of a the most popular Ruby runtimes (MRI 1.8.7, 1.9.3, 2.0.0, JRuby, REE, Rubinious). A build must be green on all of them to be considered for release.
+This gem is tested after each git push to the master branch using the [Travis CI](https://travis-ci.org/grempe/secretsharing) automated build and test service against the supported Ruby runtimes.
 
-A `.travis.yml` file has been added to this project to define which Ruby versions will be tested. Additionally a `gemfiles/Gemfile.ci` file has been created to specify a custom minimal Gemspec to be run on the test hosts.  Contributors are not to modify these files.
+A `.travis.yml` file has been added to this project to define which Ruby versions will be tested. Additionally a `gemfiles/Gemfile.ci` file has been created to specify a custom minimal Gemspec to be run on the test hosts.  Contributors should not need to modify these files.
 
 #### Code Climate
 
@@ -224,17 +256,17 @@ Code quality and metrics over time are being monitored courtesy of [Code Climate
 
 [RuboCop](https://github.com/bbatsov/rubocop) is a Ruby static code analyzer. Out of the box it will enforce many of the guidelines outlined in the community [Ruby Style Guide](https://github.com/bbatsov/ruby-style-guide). A clean `rubocop` run against all `lib` and `spec` code is necessary for a build to be considered for release.
 
-A `.rubocop.yml` file has been added to this project to define any style exceptions.  Contributors are not to modify this file.
+A `.rubocop.yml` file has been added to this project to define any style exceptions.  Contributors should not need to modify this file.
 
 #### COCO
 
-The [COCO](http://lkdjiin.github.io/coco/) gem provides automatic test code coverage analysis for ruby 1.9.2, 1.9.3 and 2.0. It will be run every time `rake test` is run.  If there are any files that are not 100% covered an output report will be generated in `coverage/index.html' and a summary line will be added at the end of the `rake test` output.  It is expected that 100% test coverage will be maintained.
+The [COCO](http://lkdjiin.github.io/coco/) gem provides automatic test code coverage analysis for MRI Rubies. It will be run every time `rake test` is run.  If there are any files that are not 100% covered an output report will be generated in `coverage/index.html' and a summary line will be added at the end of the `rake test` output.  It is expected that 100% test coverage will be maintained.
 
-A `.coco.yml` file has been added to this project to define any coverage exceptions.  Contributors are not to modify this file.
+A `.coco.yml` file has been added to this project to define any coverage exceptions.  Contributors should not need to modify this file.
 
 #### Semantic Versioning
-This Gem, and its version number, tries its best to adhere to the
-'Semantic Versioning' strategy espoused at : <http://semver.org>
+This Gems version number tries its best to adhere to
+[Semantic Versioning](http://semver.org).
 
 ### Contributing
 
@@ -244,7 +276,7 @@ This Gem, and its version number, tries its best to adhere to the
     Please ensure that you maintain 100% test code coverage as reported by 'coco' which is run after every `rake test` automatically.
     Please run the `rubocop` tool to ensure you are consistent with Ruby style guidelines for this project.
 
-1. Fork it
+1. Fork the repository
 2. Create your feature branch (`git checkout -b my-new-feature`)
 3. Commit your changes (`git commit -am 'Add some feature'`)
 4. Push to the branch (`git push origin my-new-feature`)

data/Rakefile

@@ -4,9 +4,9 @@ require 'bundler/gem_tasks'
 require 'rake/testtask'
 
 Rake::TestTask.new do |t|
-  t.pattern = "spec/*_spec.rb"
-  t.verbose = true
-  t.warning = false
+  t.pattern = 'spec/*_spec.rb'
+  t.verbose = false
+  t.warning = true
 end
 
 task :default => 'test'

data/bin/secretsharing

@@ -35,7 +35,7 @@ end
 
 if choices[:action] == :encode
 
-  say("\nWould you like to create a 'random' secret, or will you provide a 'fixed' one?\n")
+  say("\nWould you like to create a random 32 Byte secret, or will you provide your own (large Integer)?\n")
   choose do |menu|
     menu.prompt = 'Type? '
 
@@ -53,18 +53,18 @@ if choices[:action] == :encode
   end
 
   choices[:secret_n] = ask('How many total shares (n) do you want to distribute?  ', Integer) { |q| q.in = 2..512 }
-  choices[:secret_k] = ask('How many of the total shares (k) are required to reveal the secret?  ', Integer) { |q| q.in = 2..512 }
+  choices[:secret_k] = ask('How many of the total shares are required to reveal the secret (k)?  ', Integer) { |q| q.in = 2..512 }
 
   @c = SecretSharing::Shamir::Container.new(choices[:secret_n], choices[:secret_k])
 
   if choices[:secret_type] == :fixed
-    @c.secret = SecretSharing::Shamir::Secret.new(:secret => OpenSSL::BN.new(choices[:secret_password].to_s))
+    @c.secret = SecretSharing::Shamir::Secret.new(:secret => choices[:secret_password])
   else
     @c.secret = SecretSharing::Shamir::Secret.new
   end
 
   say("\n========================================\n")
-  say("Encoded Secret:\n\n")
+  say("Secret Split Complete\n\n")
   say("(k) Value: #{choices[:secret_k]}\n")
   say("(n) Value: #{choices[:secret_n]}\n")
   say("\n")
@@ -97,13 +97,13 @@ elsif choices[:action] == :decode
   say("\n")
   if @c.secret?
     say("\n========================================\n")
-    say("Decoded Secret:\n\n")
+    say("Secret Recovery Complete\n\n")
     say("(k) Value: #{choices[:secret_k]}\n")
     say("\n")
-    say("Secret (Bignum): \n")
+    say("Secret (#{@c.secret.secret.class}): \n")
     say(@c.secret.secret.to_s)
     say("\n")
-    say("Secret (Base64 Compacted & URL Safe): \n")
+    say("Secret (URL safe Base64 encoded): \n")
     say(@c.secret.to_s)
     say("\n")
     say("\n========================================\n")