Secure sampling of public parameters for succinct zero knowledge proof
dc.contributor.author
Ben-Sasson, Eli
dc.contributor.author
Chiesa, Alessandro
dc.contributor.author
Green, Matthew D.
dc.contributor.author
Tromer, Eran
dc.contributor.author
Virza, Madars
dc.date.accessioned
2020-10-02T07:36:50Z
dc.date.available
2017-06-11T20:23:49Z
dc.date.available
2020-10-02T07:36:50Z
dc.date.issued
2015
dc.identifier.isbn
978-1-4673-6950-3
en_US
dc.identifier.isbn
978-1-4673-6949-7
en_US
dc.identifier.other
10.1109/SP.2015.25
en_US
dc.identifier.uri
http://hdl.handle.net/20.500.11850/105963
dc.description.abstract
Non-interactive zero-knowledge proofs (NIZKs) are a powerful cryptographic tool, with numerous potential applications. However, succinct NIZKs (e.g., zk-SNARK schemes) necessitate a trusted party to generate and publish some public parameters, to be used by all provers and verifiers. This party is trusted to correctly run a probabilistic algorithm (specified by the the proof system) that outputs the public parameters, and publish them, without leaking any other information (such as the internal randomness used by the algorithm), violating either requirement may allow malicious parties to produce convincing "proofs" of false statements. This trust requirement poses a serious impediment to deploying NIZKs in many applications, because a party that is trusted by all users of the envisioned system may simply not exist. In this work, we show how public parameters for a class of NIZKs can be generated by a multi-party protocol, such that if at least one of the parties is honest, then the result is secure (in both aforementioned senses) and can be subsequently used for generating and verifying numerous proofs without any further trust. We design and implement such a protocol, tailored to efficiently support the state-of-the-art NIZK constructions with short and easy-to-verify proofs (Parno et al. IEEE S&P '13, Ben-Sasson et al. USENIX Sec '14, Danezis et al., ASIACRYPT '14). Applications of our system include generating public parameters for systems such as Zero cash (Ben-Sasson et al. IEEE S&P '13) and the scalable zero-knowledge proof system of (Ben-Sasson et al. CRYPTO '14).
en_US
dc.language.iso
en
en_US
dc.publisher
IEEE
en_US
dc.subject
Zero knowledge
en_US
dc.subject
Distributed key generation
en_US
dc.subject
Succinct non-interactive arguments
en_US
dc.title
Secure sampling of public parameters for succinct zero knowledge proof
en_US
dc.type
Conference Paper
dc.date.published
2015-07-20
ethz.book.title
2015 IEEE Symposium on Security and Privacy (SP 2015)
en_US
ethz.pages.start
287
en_US
ethz.pages.end
304
en_US
ethz.event
36th IEEE Symposium on Security and Privacy (SP 2015)
en_US
ethz.event.location
San Jose, CA, USA
en_US
ethz.event.date
May 17-21, 2015
en_US
ethz.identifier.wos
ethz.identifier.scopus
ethz.publication.place
Piscataway, NJ
en_US
ethz.publication.status
published
en_US
ethz.date.deposited
2017-06-11T20:24:43Z
ethz.source
ECIT
ethz.identifier.importid
imp5936539d00fbc98196
ethz.ecitpid
pub:165907
ethz.eth
yes
en_US
ethz.availability
Metadata only
en_US
ethz.rosetta.installDate
2017-07-15T05:10:46Z
ethz.rosetta.lastUpdated
2021-02-15T17:46:34Z
ethz.rosetta.versionExported
true
ethz.COinS
ctx_ver=Z39.88-2004&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.atitle=Secure%20sampling%20of%20public%20parameters%20for%20succinct%20zero%20knowledge%20proof&rft.date=2015&rft.spage=287&rft.epage=304&rft.au=Ben-Sasson,%20Eli&Chiesa,%20Alessandro&Green,%20Matthew%20D.&Tromer,%20Eran&Virza,%20Madars&rft.isbn=978-1-4673-6950-3&978-1-4673-6949-7&rft.genre=proceeding&rft_id=info:doi/10.1109/SP.2015.25&rft.btitle=2015%20IEEE%20Symposium%20on%20Security%20and%20Privacy%20(SP%202015)
Files in this item
Files | Size | Format | Open in viewer |
---|---|---|---|
There are no files associated with this item. |
Publication type
-
Conference Paper [35255]