SNARGs for from LWE
We provide the first construction of a succinct non-interactive argument (SNARG) for all
polynomial time deterministic computations based on standard assumptions. For T steps of …
polynomial time deterministic computations based on standard assumptions. For T steps of …
Non-interactive batch arguments for NP from standard assumptions
We study the problem of designing non-interactive batch arguments for NP NP. Such an
argument system allows an efficient prover to prove multiple NP NP statements, with size …
argument system allows an efficient prover to prove multiple NP NP statements, with size …
NIZK from LPN and trapdoor hash via correlation intractability for approximable relations
Z Brakerski, V Koppula, T Mour - Annual International Cryptology …, 2020 - Springer
We present new non-interactive zero-knowledge argument systems (NIZK), based on
standard assumptions that were previously not known to imply it. In particular, we rely on the …
standard assumptions that were previously not known to imply it. In particular, we rely on the …
Does Fiat-Shamir require a cryptographic hash function?
Abstract The Fiat-Shamir transform is a general method for reducing interaction in public-
coin protocols by replacing the random verifier messages with deterministic hashes of the …
coin protocols by replacing the random verifier messages with deterministic hashes of the …
PPAD is as hard as LWE and iterated squaring
One of the most fundamental results in game theory is that every finite strategic game has a
Nash equilibrium, an assignment of (randomized) strategies to players with the stability …
Nash equilibrium, an assignment of (randomized) strategies to players with the stability …
Non-interactive CCA2-secure threshold cryptosystems: achieving adaptive security in the standard model without pairings
We consider threshold public-key encryption, where the decryption servers distributively
hold the private key shares, and we need a threshold of these servers to decrypt the …
hold the private key shares, and we need a threshold of these servers to decrypt the …
Triply adaptive uc nizk
Non-interactive zero knowledge (NIZK) enables proving the validity of NP statement without
leaking anything else. We study multi-instance NIZKs in the common reference string (CRS) …
leaking anything else. We study multi-instance NIZKs in the common reference string (CRS) …
The Last Challenge Attack: Exploiting a Vulnerable Implementation of the Fiat-Shamir Transform in a KZG-based SNARK
Abstract The Fiat-Shamir transform [1] is a well-known and widely employed technique for
converting sound public-coin interactive protocols into sound non-interactive protocols. Even …
converting sound public-coin interactive protocols into sound non-interactive protocols. Even …
Simulation-sound arguments for LWE and applications to KDM-CCA2 security
Abstract The Naor-Yung paradigm is a well-known technique that constructs IND-CCA2-
secure encryption schemes by means of non-interactive zero-knowledge proofs satisfying a …
secure encryption schemes by means of non-interactive zero-knowledge proofs satisfying a …
Oblivious transfer from trapdoor permutations in minimal rounds
Oblivious transfer (OT) is a foundational primitive within cryptography owing to its connection
with secure computation. One of the oldest constructions of oblivious transfer was from …
with secure computation. One of the oldest constructions of oblivious transfer was from …