A Subversion-Resistant SNARK
نویسندگان
چکیده
While succinct non-interactive zero-knowledge arguments of knowledge (zk-SNARKs) are widely studied, the question of what happens when the CRS has been subverted has received little attention. In ASIACRYPT 2016, Bellare, Fuchsbauer and Scafuro showed the first negative and positive results in this direction, proving also that it is impossible to achieve subversion soundness and (even non-subversion) zero knowledge at the same time. On the positive side, they constructed an involved sound and subversion zero-knowledge argument system for NP. We show that Groth’s zk-SNARK for Circuit-SAT from EUROCRYPT 2016 can be made computationally knowledge-sound and perfectly composable Sub-ZK with minimal changes. We just require the CRS trapdoor to be extractable and the CRS to be publicly verifiable. To achieve the latter, we add some new elements to the CRS and construct an efficient CRS verification algorithm. We also provide a definitional framework for sound and Sub-ZK SNARKs and describe implementation results of the new Sub-ZK SNARK.
منابع مشابه
Subversion-Zero-Knowledge SNARKs
Subversion zero knowledge for non-interactive proof systems demands that zero knowledge (ZK) be maintained even when the common reference string (CRS) is chosen maliciously. SNARKs are proof systems with succinct proofs, which are at the core of the cryptocurrency Zcash, whose anonymity relies on ZK-SNARKs; they are also used for ZK contingent payments in Bitcoin. We show that under a plausible...
متن کاملProvision of a voluntary exercise environment enhances running activity and prevents obesity in Snark-deficient mice.
The present study was performed to investigate the involvement of SNARK in physical activity levels in mice. To examine the acute effect of SNARK deficiency on voluntary running, Snark-deficient mice (Snark(+/-): n = 16) and their wild-type counterparts (Snark(+/+): n = 16) were assigned to sedentary or exercise (1 wk voluntary wheel running) groups. In addition, to clarify the differences in v...
متن کاملIdentification and characterization of a novel sucrose-non-fermenting protein kinase/AMP-activated protein kinase-related protein kinase, SNARK.
Subtraction hybridization after the exposure of keratinocytes to ultraviolet radiation identified a differentially expressed cDNA that encodes a protein of 630 amino acid residues possessing significant similarity to the catalytic domain of the sucrose-non-fermenting protein kinase (SNF1)/AMP-activated protein kinase (AMPK) family of serine/threonine protein kinases. Northern blotting and rever...
متن کاملThe Snark is a Boojum: the continuing problem of drug resistance in the antiangiogenic era.
If your Snark be a Snark, that is right: Fetch it home by all means-you may serve it with greens, And it's handy for striking a light. "But oh, beamish nephew, beware of the day, If your Snark be a Boojum! For then You will softly and suddenly vanish away, And never be met with again!" Lewis Carroll The Hunting of the Snark
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- IACR Cryptology ePrint Archive
دوره 2017 شماره
صفحات -
تاریخ انتشار 2017