Open AccessPosted Content
Commitments and Efficient Zero-Knowledge Proofs from Learning Parity with Noise
Abhishek Jain,Stephan Krenn,Krzysztof Pietrzak,Aris Tentes,A. Tentes +4 more
- 01 Jan 2012
TL;DR: A perfectly binding string commitment scheme whose security is based on the learning parity with noise (LPN) assumption, or equivalently, the hardness of decoding random linear codes, which allows for a simple and efficient zero-knowledge proof of knowledge for committed values.
read more
Abstract: We construct a perfectly binding string commitment scheme whose security is based on the learning parity with noise (LPN) assumption, or equivalently, the hardness of decoding random linear codes. Our scheme not only allows for a simple and efficient zero-knowledge proof of knowledge for committed values (essentially a Σ-protocol), but also for such proofs showing any kind of relation amongst committed values, i.e., proving that messages m0, . . . ,mu, are such that m0 = C(m1, . . . ,mu) for any circuit C. To get soundness which is exponentially small in a security parameter t, and when the zero-knowledge property relies on the LPN problem with secrets of length `, our 3 round protocol has communication complexity O(t|C|` log(`)) and computational complexity of O(t|C|`) bit operations. The hidden constants are small, and the computation consists mostly of computing inner products of bit-vectors.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Zero-Knowledge Arguments for Lattice-Based Accumulators: Logarithmic-Size Ring Signatures and Group Signatures Without Trapdoors
Benoît Libert,San Ling,Khoa D. Nguyen,Huaxiong Wang +3 more
- 08 May 2016
TL;DR: This paper provides an efficient method of proving statements using involved extensions of Stern's protocol to efficiently prove the membership of some element in a zero-knowledge manner, and describes new lattice-based group and ring signatures in the random oracle model.
Improved Zero-Knowledge Proofs of Knowledge for the ISIS Problem, and Applications
San Ling,Khoa D. Nguyen,Damien Stehlé,Huaxiong Wang +3 more
- 26 Feb 2013
TL;DR: In this paper, the authors proposed a statistical zero-knowledge proof of knowledge for the Inhomogeneous Small Integer Solution (ISIS ∞ ) problem that removes the gap between the hardness of solving the underlying ISIS ∞ problem and the hardness underlying the security reductions.
Signature Schemes with Efficient Protocols and Dynamic Group Signatures from Lattice Assumptions
Benoît Libert,San Ling,Fabrice Mouhartem,Khoa D. Nguyen,Huaxiong Wang +4 more
- 04 Dec 2016
TL;DR: This work provides new tools enabling the design of anonymous authentication systems whereby new users can join the system at any time, and provides the first lattice-based group signature supporting dynamically growing populations of users.
More Efficient Commitments from Structured Lattice Assumptions
Carsten Baum,Ivan Damgård,Vadim Lyubashevsky,Sabine Oechsner,Chris Peikert +4 more
- 05 Sep 2018
TL;DR: This work presents a practical construction of an additively homomorphic commitment scheme based on structured lattice assumptions, together with a zero-knowledge proof of opening knowledge, and a design improvement over the previous work of Benhamouda et al.
154
Cryptography from learning parity with noise
Krzysztof Pietrzak
- 21 Jan 2012
TL;DR: This talk will be a gentle introduction to provable security using simple LPN based schemes as examples, starting from pseudorandom generators and symmetric key encryption, over secret-key authentication protocols, and, if time admits, touching on recent constructions of public-key identification, commitments and zero-knowledge proofs.
120
References
•Proceedings Article
How to Play any Mental Game or A Completeness Theorem for Protocols with Honest Majority
Oded Goldreich,Silvio Micali,Avi Wigderson +2 more
- 01 Jan 1987
TL;DR: Permission to copy without fee all or part of this material is granted provided that the copies are not made or Idistributed for direct commercial advantage, the ACM copyright notice and the title of the publication and its date appear, and notice is given that copying is by permission of the Association for Computing Machimery.
3.9K
On lattices, learning with errors, random linear codes, and cryptography
Oded Regev
- 22 May 2005
TL;DR: A public-key cryptosystem whose hardness is based on the worst-case quantum hardness of SVP and SIVP, and an efficient solution to the learning problem implies a quantum, which can be made classical.
On the inherent intractability of certain coding problems (Corresp.)
TL;DR: The fact that the general decoding problem for linear codes and the general problem of finding the weights of a linear code are both NP-complete is shown strongly suggests, but does not rigorously imply, that no algorithm for either of these problems which runs in polynomial time exists.
1.7K
Noise-tolerant learning, the parity problem, and the statistical query model
TL;DR: The algorithm runs in polynomial time for the case of parity functions that depend on only the first O(log n log log n) bits of input, which provides the first known instance of an efficient noise-tolerant algorithm for a concept class that is not learnable in the Statistical Query model of Kearns [1998].