Efficient Short Adaptive NIZK for NP
نویسنده
چکیده
In Eurocrypt 2013, Gennaro et al. proposed an efficient non-adaptive short QAP-based NIZK argument for Circuit-SAT, where non-adaptivity means that the CRS depends on the statement to be proven. While their argument can be made adaptive by using universal circuits, this increases the prover computation by a logarithmic multiplicative factor. By following the QAP-based approach, we propose an efficient product argument, and then use it together with a modified shift argument of Fauzi et al. in the modular framework of Groth to design an adaptive short NIZK argument for Subset-Sum and several other NP-complete languages that has the same complexity parameters as the QAP-based non-adaptive argument, resulting in the first adaptive short NIZK arguments for NP where the prover computation is dominated by a linear number of cryptographic operations. We also construct the most efficient known range argument.
منابع مشابه
Perfect NIZK with Adaptive Soundness
The notion of non-interactive zero-knowledge (NIZK) is of fundamental importance in cryptography. Despite the vast attention the concept of NIZK has attracted since its introduction, one question has remained very resistant: Is it possible to construct NIZK schemes for any NP-language with statistical or even perfect ZK? Groth, Ostrovsky and Sahai recently positively answers to the question by ...
متن کاملPerfect Non-interactive Zero Knowledge for NP
Non-interactive zero-knowledge (NIZK) systems are fundamental cryptographic primitives used in many constructions, including CCA2-secure cryptosystems, digital signatures, and various cryptographic protocols. What makes them especially attractive, is that they work equally well in a concurrent setting, which is notoriously hard for interactive zero-knowledge protocols. However, while for intera...
متن کاملK — Advanced Topics in Cryptography March
In the last few lectures, we introduced the hidden-bits model for non-interactive zeroknowledge (NIZK) and showed a conversion from any NIZK proof system in the hidden bits model to one in the real model, using trapdoor permutations. In this lecture, we complete the construction (which we had begin last lecture) of an NIZK proof system in the hidden-bits model. Putting these results together, w...
متن کاملRobust Non-interactive Zero Knowledge
Non-Interactive Zero Knowledge (NIZK), introduced by Blum, Feldman, and Micali in 1988, is a fundamental cryptographic primitive which has attracted considerable attention in the last decade and has been used throughout modern cryptography in several essential ways. For example, NIZK plays a central role in building provably secure public-key cryptosystems based on general complexity-theoretic ...
متن کاملQuasi-Adaptive NIZK for Linear Subspaces Revisited
Non-interactive zero-knowledge (NIZK) proofs for algebraic relations in a group, such as the GrothSahai proofs, are an extremely powerful tool in pairing-based cryptography. A series of recent works focused on obtaining very efficient NIZK proofs for linear spaces in a weaker quasi-adaptive model. We revisit recent quasiadaptive NIZK constructions, providing clean, simple, and improved construc...
متن کامل