An Eecient Non-interactive Statistical Zero-knowledge Proof System for Quasi-safe Prime Products

نویسندگان

  • Rosario Gennaro
  • Daniele Micciancio
  • Tal Rabin
چکیده

We present eecient zero-knowledge proof systems for quasi-safe prime products and other related languages. Quasi-safe primes are a relaxation of safe primes, a class of prime numbers useful in many cryptographic applications. Our proof systems achieve higher security and better eeciency than all previously known ones. In particular, all our proof systems are perfect or statistical zero-knowledge, meaning that even a computationally unbounded adversary cannot extract any information from the proofs. Moreover, our proof systems are extremely eecient because they do not use general reductions to NP-complete problems, can be easily parallelized preserving zero-knowledge, and are non-interactive for computationally unbounded provers. The prover can also be eeciently implemented given some trapdoor information and using very little interaction. We demonstrate the applicability of quasi-safe primes by showing how they can be eeectively used in the context of RSA based undeniable signatures to enforce the use of \good" public keys, i.e., keys such that if a signer can convince a recipient of the validity of a signature, then he won't be able to subsequently deny the same signature in case of a dispute.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Efficient Quasi-Adaptive NIZK

This report gives an overview of the Quasi-Adaptive NonInteractive Zero Knowledge proof system introduced recent papers by Joy and Rutla ([JR13a,JR13b]). This system reduces the proof size for linear subspace languages to constant-sized proofs under the k-linear assumption.

متن کامل

Proving in Zero - Knowledge that a Number

We present the rst eecient statistical zero-knowledge protocols to prove statements such as: { A committed number is a prime. { A committed (or revealed) number is the product of two safe primes, i.e., primes p and q such that (p ? 1)=2 and (q ? 1)=2 are prime. { A given integer has large multiplicative order modulo a composite number that consists of two safe prime factors. The main building b...

متن کامل

Short Non-interactive Zero-Knowledge Proofs

We show that probabilistically checkable proofs can be used to shorten non-interactive zero-knowledge proofs. We obtain publicly verifiable non-interactive zero-knowledge proofs for circuit satisfiability with adaptive and unconditional soundness where the size grows quasi-linearly in the number of gates. The zero-knowledge property relies on the existence of trapdoor permutations, or it can be...

متن کامل

Increasing the Power of the Dealer in Non-interactive Zero-Knowledge Proof Systems

We introduce weaker models for non-interactive zero knowledge, in which the dealer is not restricted to deal a truly random string and may also have access to the input to the protocol (i.e. the statement to prove). We show in these models a non-interactive statistical zero-knowledge proof for every language that has (interactive) statistical zero-knowledge proof, and a computational zero-knowl...

متن کامل

On Constant-Round Concurrent Zero-Knowledge

Loosely speaking, an interactive proof is said to be zeroknowledge if the view of every “efficient” verifier can be “efficiently” simulated. An outstanding open question regarding zero-knowledge is whether constant-round concurrent zero-knowledge proofs exists for nontrivial languages. We answer this question to the affirmative when modeling “efficient adversaries” as probabilistic quasi-polyno...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 1998