TY - GEN
T1 - Zero-Knowledge Proofs for Committed Symmetric Boolean Functions
AU - Ling, San
AU - Nguyen, Khoa
AU - Phan, Duong Hieu
AU - Tang, Hanh
AU - Wang, Huaxiong
N1 - Publisher Copyright:
© 2021, Springer Nature Switzerland AG.
PY - 2021/1/1
Y1 - 2021/1/1
N2 - Zero-knowledge proofs (ZKP) are a fundamental notion in modern cryptography and an essential building block for countless privacy-preserving constructions. Recent years have witnessed a rapid development in the designs of ZKP for general statements, in which, for a publicly given Boolean function f: { 0, 1 }n→ { 0, 1 }, one’s goal is to prove knowledge of a secret input x∈ { 0, 1 }n satisfying f(x) = b, for a given bit b. Nevertheless, in many interesting application scenarios, not only the input x but also the underlying function f should be kept private. The problem of designing ZKP for the setting where both x and f are hidden, however, has not received much attention. This work addresses the above-mentioned problem for the class of symmetric Boolean functions, namely, Boolean functions f whose output value is determined solely by the Hamming weight of the n-bit input x. Although this class might sound restrictive, it has exponential cardinality 2n + 1 and captures a number of well-known Boolean functions, such as threshold, sorting and counting functions. Specifically, with respect to a commitment scheme secure under the Learning-Parity-with-Noise (LPN) assumption, we show how to prove in zero-knowledge that f(x) = b, for a committed symmetric function f, a committed input x and a bit b. The security of our protocol relies on that of an auxiliary commitment scheme which can be instantiated under quantum-resistant assumptions (including LPN). The protocol also achieves reasonable communication cost: the variant with soundness error 2- λ has proof size c· λ· n, where c is a relatively small constant. The protocol can potentially find appealing privacy-preserving applications in the area of post-quantum cryptography, and particularly in code-based cryptography.
AB - Zero-knowledge proofs (ZKP) are a fundamental notion in modern cryptography and an essential building block for countless privacy-preserving constructions. Recent years have witnessed a rapid development in the designs of ZKP for general statements, in which, for a publicly given Boolean function f: { 0, 1 }n→ { 0, 1 }, one’s goal is to prove knowledge of a secret input x∈ { 0, 1 }n satisfying f(x) = b, for a given bit b. Nevertheless, in many interesting application scenarios, not only the input x but also the underlying function f should be kept private. The problem of designing ZKP for the setting where both x and f are hidden, however, has not received much attention. This work addresses the above-mentioned problem for the class of symmetric Boolean functions, namely, Boolean functions f whose output value is determined solely by the Hamming weight of the n-bit input x. Although this class might sound restrictive, it has exponential cardinality 2n + 1 and captures a number of well-known Boolean functions, such as threshold, sorting and counting functions. Specifically, with respect to a commitment scheme secure under the Learning-Parity-with-Noise (LPN) assumption, we show how to prove in zero-knowledge that f(x) = b, for a committed symmetric function f, a committed input x and a bit b. The security of our protocol relies on that of an auxiliary commitment scheme which can be instantiated under quantum-resistant assumptions (including LPN). The protocol also achieves reasonable communication cost: the variant with soundness error 2- λ has proof size c· λ· n, where c is a relatively small constant. The protocol can potentially find appealing privacy-preserving applications in the area of post-quantum cryptography, and particularly in code-based cryptography.
UR - https://www.scopus.com/pages/publications/85112693662
U2 - 10.1007/978-3-030-81293-5_18
DO - 10.1007/978-3-030-81293-5_18
M3 - Conference contribution
AN - SCOPUS:85112693662
SN - 9783030812928
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 339
EP - 359
BT - Post-Quantum Cryptography - 12th International Workshop, PQCrypto 2021, Proceedings
A2 - Cheon, Jung Hee
A2 - Tillich, Jean-Pierre
PB - Springer Science and Business Media Deutschland GmbH
T2 - 12th International Conference on post-quantum cryptography, PQCrypto 2021
Y2 - 20 July 2021 through 22 July 2021
ER -