Efficient Zaps and Signatures of Knowledge

2007 International Conference on Computational Intelligence and Security (CIS 2007) Pub Date : 2007-12-15 DOI:10.1109/CIS.2007.108

Chunming Tang, D. Pei, Z. Yao

{"title":"Efficient Zaps and Signatures of Knowledge","authors":"Chunming Tang, D. Pei, Z. Yao","doi":"10.1109/CIS.2007.108","DOIUrl":null,"url":null,"abstract":"The concept of Zaps, two-round witness indistinguish- able proofs, was introduced by Dwork and Naor in 2000. They constructed Zaps based on non-interactive zero- knowledge proof. This left open the following problem: does there exist a non-interactive Zaps? Barak et al. and Groth et al. answered this question affirmatively under the assumption of the existence of Hitting Set Generators against co-nondeterministic circuits and Decisional Linear Assumption, respectively. In this paper, we will construct ef- ficient non-interactive Zaps under the existence of one-way function. In 2006, Chase and Lysyanskaya defined and con- structed signatures of knowledge based on non-interactive zero-knowledge proof. We prove that their signature is not secure and point out that they exist under the existence of trapdoor permutation. Feige and Shamir stated that digi- tal signature cannot be zero-knowledge(otherwise they are forgeable) and it can be witness hiding. In this paper, we will revise the definition of the signatures of knowledge by using witness hiding protocol and construct them under the existence of one-way function.","PeriodicalId":127238,"journal":{"name":"2007 International Conference on Computational Intelligence and Security (CIS 2007)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-12-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2007 International Conference on Computational Intelligence and Security (CIS 2007)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CIS.2007.108","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

Abstract

The concept of Zaps, two-round witness indistinguish- able proofs, was introduced by Dwork and Naor in 2000. They constructed Zaps based on non-interactive zero- knowledge proof. This left open the following problem: does there exist a non-interactive Zaps? Barak et al. and Groth et al. answered this question affirmatively under the assumption of the existence of Hitting Set Generators against co-nondeterministic circuits and Decisional Linear Assumption, respectively. In this paper, we will construct ef- ficient non-interactive Zaps under the existence of one-way function. In 2006, Chase and Lysyanskaya defined and con- structed signatures of knowledge based on non-interactive zero-knowledge proof. We prove that their signature is not secure and point out that they exist under the existence of trapdoor permutation. Feige and Shamir stated that digi- tal signature cannot be zero-knowledge(otherwise they are forgeable) and it can be witness hiding. In this paper, we will revise the definition of the signatures of knowledge by using witness hiding protocol and construct them under the existence of one-way function.

查看原文本刊更多论文

知识的有效攻击和签名

Zaps的概念是由Dwork和Naor在2000年提出的，它是两轮证人不可区分的证明。他们基于非交互式零知识证明构造了Zaps。这留下了以下问题:是否存在非交互式的Zaps?Barak et al.和growth et al.分别在针对共不确定性电路和决策线性假设的hit Set Generators存在的假设下肯定地回答了这个问题。本文将构造单向函数存在下的高效非交互zap。2006年，Chase和Lysyanskaya定义并构造了基于非交互式零知识证明的知识签名。我们证明了它们的签名是不安全的，并指出它们存在于活门排列的存在条件下。Feige和Shamir指出，数字签名不能是零知识(否则它们是可伪造的)，它可以是证人隐藏。本文将利用证人隐藏协议修改知识签名的定义，并在单向函数存在的条件下构造知识签名。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2007 International Conference on Computational Intelligence and Security (CIS 2007)

自引率

0.00%

发文量