On QA-NIZK in the BPK Model

Behzad Abdolmaleki; Helger Lipmaa; Janno Siim; Michał Zajac

doi:10.1007/978-3-030-45374-9_20

On QA-NIZK in the BPK Model

Behzad Abdolmaleki, Helger Lipmaa, Janno Siim, Michał Zajac

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Recently, Bellare et al. defined subversion-resistance (security in the case the CRS creator may be malicious) for NIZK. In particular, a Sub-ZK NIZK is zero-knowledge, even in the case of subverted CRS. We study Sub-ZK QA-NIZKs, where the CRS can depend on the language parameter. First, we observe that subversion zero-knowledge (Sub-ZK) in the CRS model corresponds to no-auxiliary-string non-black-box NIZK in the Bare Public Key model, and hence, the use of non-black-box techniques is needed to obtain Sub-ZK. Second, we give a precise definition of Sub-ZK QA-NIZKs that are (knowledge-)sound if the language parameter but not the CRS is subverted and zero-knowledge even if both are subverted. Third, we prove that the most efficient known QA-NIZK for linear subspaces by Kiltz and Wee is Sub-ZK under a new knowledge assumption that by itself is secure in (a weaker version of) the algebraic group model. Depending on the parameter setting, it is (knowledge-)sound under different non-falsifiable assumptions, some of which do not belong to the family of knowledge assumptions.

Original language	English
Title of host publication	Public-Key Cryptography -- PKC 2020
Editors	Aggelos Kiayias, Markulf Kohlweiss, Petros Wallden, Vassilis Zikas
Place of Publication	Cham
Publisher	Springer International Publishing
Pages	590-620
Number of pages	31
ISBN (Electronic)	978-3-030-45374-9
ISBN (Print)	978-3-030-45373-2
DOIs	https://doi.org/10.1007/978-3-030-45374-9_20
Publication status	Published - 29 Apr 2020
Event	IACR International Conference on Practice and Theory of Public-Key Cryptography 2020 - Online Duration: 1 Jun 2020 → 4 Jun 2020 https://pkc.iacr.org/2020/

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer, Cham
Volume	12110
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	IACR International Conference on Practice and Theory of Public-Key Cryptography 2020
Abbreviated title	PKC 2020
City	Online
Period	1/06/20 → 4/06/20
Internet address	https://pkc.iacr.org/2020/

Access to Document

10.1007/978-3-030-45374-9_20Licence: All Rights Reserved

https://link.springer.com/chapter/10.1007/978-3-030-45374-9_20Licence: All Rights Reserved

Cite this

@inproceedings{fe23268e4967459bac3d12bc31f3715a,

title = "On QA-NIZK in the BPK Model",

abstract = "Recently, Bellare et al. defined subversion-resistance (security in the case the CRS creator may be malicious) for NIZK. In particular, a Sub-ZK NIZK is zero-knowledge, even in the case of subverted CRS. We study Sub-ZK QA-NIZKs, where the CRS can depend on the language parameter. First, we observe that subversion zero-knowledge (Sub-ZK) in the CRS model corresponds to no-auxiliary-string non-black-box NIZK in the Bare Public Key model, and hence, the use of non-black-box techniques is needed to obtain Sub-ZK. Second, we give a precise definition of Sub-ZK QA-NIZKs that are (knowledge-)sound if the language parameter but not the CRS is subverted and zero-knowledge even if both are subverted. Third, we prove that the most efficient known QA-NIZK for linear subspaces by Kiltz and Wee is Sub-ZK under a new knowledge assumption that by itself is secure in (a weaker version of) the algebraic group model. Depending on the parameter setting, it is (knowledge-)sound under different non-falsifiable assumptions, some of which do not belong to the family of knowledge assumptions.",

author = "Behzad Abdolmaleki and Helger Lipmaa and Janno Siim and Micha{\l} Zajac",

year = "2020",

month = apr,

day = "29",

doi = "10.1007/978-3-030-45374-9_20",

language = "English",

isbn = "978-3-030-45373-2",

series = "Lecture Notes in Computer Science",

publisher = "Springer International Publishing",

pages = "590--620",

editor = "Aggelos Kiayias and Markulf Kohlweiss and Petros Wallden and Vassilis Zikas",

booktitle = "Public-Key Cryptography -- PKC 2020",

note = "IACR International Conference on Practice and Theory of Public-Key Cryptography 2020, PKC 2020 ; Conference date: 01-06-2020 Through 04-06-2020",

url = "https://pkc.iacr.org/2020/",

}

Abdolmaleki, B, Lipmaa, H, Siim, J & Zajac, M 2020, On QA-NIZK in the BPK Model. in A Kiayias, M Kohlweiss, P Wallden & V Zikas (eds), Public-Key Cryptography -- PKC 2020. Lecture Notes in Computer Science, vol. 12110, Springer International Publishing, Cham, pp. 590-620, IACR International Conference on Practice and Theory of Public-Key Cryptography 2020, Online, 1/06/20. https://doi.org/10.1007/978-3-030-45374-9_20

On QA-NIZK in the BPK Model. / Abdolmaleki, Behzad; Lipmaa, Helger; Siim, Janno et al.

Public-Key Cryptography -- PKC 2020. ed. / Aggelos Kiayias; Markulf Kohlweiss; Petros Wallden; Vassilis Zikas. Cham : Springer International Publishing, 2020. p. 590-620 (Lecture Notes in Computer Science; Vol. 12110).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - On QA-NIZK in the BPK Model

AU - Abdolmaleki, Behzad

AU - Lipmaa, Helger

AU - Siim, Janno

AU - Zajac, Michał

PY - 2020/4/29

Y1 - 2020/4/29

N2 - Recently, Bellare et al. defined subversion-resistance (security in the case the CRS creator may be malicious) for NIZK. In particular, a Sub-ZK NIZK is zero-knowledge, even in the case of subverted CRS. We study Sub-ZK QA-NIZKs, where the CRS can depend on the language parameter. First, we observe that subversion zero-knowledge (Sub-ZK) in the CRS model corresponds to no-auxiliary-string non-black-box NIZK in the Bare Public Key model, and hence, the use of non-black-box techniques is needed to obtain Sub-ZK. Second, we give a precise definition of Sub-ZK QA-NIZKs that are (knowledge-)sound if the language parameter but not the CRS is subverted and zero-knowledge even if both are subverted. Third, we prove that the most efficient known QA-NIZK for linear subspaces by Kiltz and Wee is Sub-ZK under a new knowledge assumption that by itself is secure in (a weaker version of) the algebraic group model. Depending on the parameter setting, it is (knowledge-)sound under different non-falsifiable assumptions, some of which do not belong to the family of knowledge assumptions.

AB - Recently, Bellare et al. defined subversion-resistance (security in the case the CRS creator may be malicious) for NIZK. In particular, a Sub-ZK NIZK is zero-knowledge, even in the case of subverted CRS. We study Sub-ZK QA-NIZKs, where the CRS can depend on the language parameter. First, we observe that subversion zero-knowledge (Sub-ZK) in the CRS model corresponds to no-auxiliary-string non-black-box NIZK in the Bare Public Key model, and hence, the use of non-black-box techniques is needed to obtain Sub-ZK. Second, we give a precise definition of Sub-ZK QA-NIZKs that are (knowledge-)sound if the language parameter but not the CRS is subverted and zero-knowledge even if both are subverted. Third, we prove that the most efficient known QA-NIZK for linear subspaces by Kiltz and Wee is Sub-ZK under a new knowledge assumption that by itself is secure in (a weaker version of) the algebraic group model. Depending on the parameter setting, it is (knowledge-)sound under different non-falsifiable assumptions, some of which do not belong to the family of knowledge assumptions.

U2 - 10.1007/978-3-030-45374-9_20

DO - 10.1007/978-3-030-45374-9_20

M3 - Conference contribution

SN - 978-3-030-45373-2

T3 - Lecture Notes in Computer Science

SP - 590

EP - 620

BT - Public-Key Cryptography -- PKC 2020

A2 - Kiayias, Aggelos

A2 - Kohlweiss, Markulf

A2 - Wallden, Petros

A2 - Zikas, Vassilis

PB - Springer International Publishing

CY - Cham

T2 - IACR International Conference on Practice and Theory of Public-Key Cryptography 2020

Y2 - 1 June 2020 through 4 June 2020

ER -

On QA-NIZK in the BPK Model

Abstract

Publication series

Conference

Access to Document

Fingerprint

Cite this