Perfect Non-interactive Zero-Knowledge for NP - PowerPoint PPT Presentation

About This Presentation

Title:

Perfect Non-interactive Zero-Knowledge for NP

Description:

non-adaptive soundness - adaptive soundness (restrictions) ... Adaptive soundness problem - C satisfiable on ord(h) = q reference string ... – PowerPoint PPT presentation

Number of Views:26

Avg rating:3.0/5.0

Slides: 7

Provided by: jens173

Learn more at: https://www.iacr.org

Category:

Tags: interactive | knowledge | non | perfect | soundness | zero

Transcript and Presenter's Notes

Title: Perfect Non-interactive Zero-Knowledge for NP

1
Perfect Non-interactive Zero-Knowledge for NP

Jens Groth
Rafail Ostrovsky
Amit Sahai
UCLA

Will appear on ePrint archive shortly
2
Non-Interactive Zero-Knowledge
common reference string s
C(w)1 circuit C
P
V
proof/argument p

Problems
even computational NIZK inefficient
no statistical NIZK arguments for NP
no UC NIZK arguments for NP

3
Our contributions

Computational NIZK proof for Circuit SAT-
O(k)-bit common reference string- O(Ck)-bit
proofs
Perfect NIZK argument for Circuit SAT-
non-adaptive soundness- adaptive soundness
(restrictions)
Perfect zero-knowledge UC NIZK argument for
Circuit SAT

4
BGN cryptosystem (TCC 2005)
Setup G group of order n pq bilinear map e G
? G ? G1 pk (n, G, G1, e, g, h) ord(g) n,
ord(h) q Additively homomorphic gm1hr1 gm2hr2
gm1m2hr1r2 Multiplication-mapping e(gm1hr1,
gm2hr2) e(g,g)m1m2e(h,gm1r2m2r1hr1r2) Decision
subgroup problem ord(h) q or ord(h) n ?
5
NIZK proof
NIZK for Circuit SAT (NAND-gates) BGN-encrypt
all wires NIZK proof 0 or 1 plaintexts - e(c,
cg-1) encrypts 0 NIZK proof encrypted bits
respect NAND-gates Zero-knowledge
simulation ord(g) ord(h) n gmhr is
perfectly hiding
6
Perfect zero-knowledge
Perfect NIZK argument ord(g) ord(h)
n Adaptive soundness problem - C satisfiable on
ord(h) q reference string - C unsatisfiable on
ord(h) n ref. string Solution restrict
ourselves to circuits of small size
so 2ClogCAdv-SD(k) is negligible

Write a Comment

User Comments (0)

About PowerShow.com

Recommended Relevance Latest Highest Rated Most Viewed

Sort by:

Related More from user

CrystalGraphics Presentations

Introducing-PowerShowcom PowerPoint PPT Presentation

Introducing-PowerShowcom - Introducing-PowerShowcom (Without Music)

CrystalGraphics 3D Character Slides for PowerPoint PowerPoint PPT Presentation

CrystalGraphics 3D Character Slides for PowerPoint - CrystalGraphics 3D Character Slides for PowerPoint

Chart and Diagram Slides for PowerPoint PowerPoint PPT Presentation

Chart and Diagram Slides for PowerPoint - Beautifully designed chart and diagram s for PowerPoint with visually stunning graphics and animation effects. Our new CrystalGraphics Chart and Diagram Slides for PowerPoint is a collection of over 1000 impressively designed data-driven chart and editable diagram s guaranteed to impress any audience. They are all artistically enhanced with visually stunning color, shadow and lighting effects. Many of them are also animated. And they’re ready for you to use in your PowerPoint presentations the moment you need them. – PowerPoint PPT presentation

Related Presentations

Zero Knowledge Proofs PowerPoint PPT Presentation

Zero Knowledge Proofs - Zero Knowledge Interactive proof for Graph Isomorphism-cont. Building simulator M* for graph isomorphism problem We will define simulator M* as follows: ... | PowerPoint PPT presentation | free to view

Zero-Knowledge%20Proof%20System PowerPoint PPT Presentation

Zero-Knowledge%20Proof%20System - ... sends to V a graph not isomorphic neither to G1 nor to G2, ... G2 are non-isomorphic: ... For each H (which is isomorphic to G1): Observing that. and hence ... | PowerPoint PPT presentation | free to view

Zero-Knowledge%20Proof%20System PowerPoint PPT Presentation

Zero-Knowledge%20Proof%20System - Zero-Knowledge Proof System Slides by Ouzy Hadad , Yair Gazelle & Gil Ben-Artzi Adapted from Ely Porat course lecture notes. Background and Motivation The purpose of ... | PowerPoint PPT presentation | free to view

Lecturer: Moni Naor PowerPoint PPT Presentation

Lecturer: Moni Naor - Zero-knowledge Interactive Proofs. Interactive Proofs and the ... A goal in itself: Sudoku example. www.wisdom.weizmann.ac.il/~naor/PAPERS/SUDOKU_DEMO ... | PowerPoint PPT presentation | free to view

Zero Knowledge Proofs. 20 Years after its Invention PowerPoint PPT Presentation

Zero Knowledge Proofs. 20 Years after its Invention - Randomized computations play a central role in the definition of ZK. ... We typically view verifier as an adversary that is trying to cheat. ... | PowerPoint PPT presentation | free to view

CHAPTER 12: Zero-knowledge proof protocols PowerPoint PPT Presentation

CHAPTER 12: Zero-knowledge proof protocols - IV054 CHAPTER 12: Zero-knowledge proof protocols One of the most important, and at the same time very counterintuitive, primitives for cryptographic protocols are so ... | PowerPoint PPT presentation | free to view

Introduction to Practical Cryptography PowerPoint PPT Presentation

Introduction to Practical Cryptography - Introduction to Practical Cryptography Forward Key Security Zero Knowledge Oblivious Transfer Multi-Party Computation | PowerPoint PPT presentation | free to view

Exploring Market Structures with Zero-Intelligence Agents PowerPoint PPT Presentation

Exploring Market Structures with Zero-Intelligence Agents - Title: Markets as Institutions: Discovering Foundations and Properties through Experiments Author: Director of IT Last modified by: ss454 Created Date | PowerPoint PPT presentation | free to view

Impossibility and Feasibility Results for Zero Knowledge with Public Keys PowerPoint PPT Presentation

Impossibility and Feasibility Results for Zero Knowledge with Public Keys - In the plain model Constant round Black-Box rZK only possible for trivial ... Assume 3-round black box ZK in the plain model exists for a language L L ... | PowerPoint PPT presentation | free to view

Decisions with conflicts of interest: Games and strategy PowerPoint PPT Presentation

Decisions with conflicts of interest: Games and strategy - Each player has a strategy set from which she can choose actions ... George Carlin. Some vocabulary. Zero sum. Non-zero sum. Strategy. Pure strategy. Mixed strategy ... | PowerPoint PPT presentation | free to view

Getting to Zero and other Possible Dreams PowerPoint PPT Presentation

Getting to Zero and other Possible Dreams - Prevention of central line infections (Central Line Bundle) ... At least 2 sizes of gloves ... Antimicrobial Resistance in Staphylococcus aureus Blood Isolates, ... | PowerPoint PPT presentation | free to view

Introduction to Game Theory (Deterministic Model) Non-cooperative Game Theory with Complete Information PowerPoint PPT Presentation

Introduction to Game Theory (Deterministic Model) Non-cooperative Game Theory with Complete Information - Title: Training Last modified by: jxie Created Date: 6/2/1995 10:16:36 PM Document presentation format: Other titles: Times New Roman Arial ... | PowerPoint PPT presentation | free to view

Image Restoration and Denoising PowerPoint PPT Presentation

Image Restoration and Denoising - Chapter Seven Part II Image Restoration and Denoising Image Restoration Techniques Inverse of degradation process Depending on the knowledge of degradation, it ... | PowerPoint PPT presentation | free to view

Perfect Noninteractive ZeroKnowledge for NP PowerPoint PPT Presentation

Perfect Noninteractive ZeroKnowledge for NP - ord(h) = q or ord(h) = n ? Boneh-Goh-Nissim cryptosystem. Key generation ... ord(h) = n g = h? simulation key: ?. NIZK proof for NAND-gate ... | PowerPoint PPT presentation | free to view

Getting to Zero and other Possible Dreams PowerPoint PPT Presentation

Getting to Zero and other Possible Dreams - No conflicts to declare. 100,000 Lives Campaign Objectives (December 2004 ... benefit to the point that some observers regarded further study as unethical. ... | PowerPoint PPT presentation | free to view

Perfect Noninteractive ZeroKnowledge for NP PowerPoint PPT Presentation

Perfect Noninteractive ZeroKnowledge for NP - Perfect soundness. Computational zero ... Adaptive soundness. Restrict ourselves to circuits C of size l (#gates #wires) ... l-l negl() (ordinary soundness) ... | PowerPoint PPT presentation | free to view

7. Liquid Phase Properties from VLE Data (11.1) PowerPoint PPT Presentation

7. Liquid Phase Properties from VLE Data (11.1) - 7. Liquid Phase Properties from VLE Data (11.1) The fugacity of non-ideal liquid solutions is defined as: (10.42) from which we derive the concept of an activity ... | PowerPoint PPT presentation | free to view

Statistics for Non-Statisticians PowerPoint PPT Presentation

Statistics for Non-Statisticians - Statistics for Non-Statisticians Kay M. Larholt, Sc.D. Vice President, Biometrics & Clinical Operations Abt Bio-Pharma Solutions Topics Basic Statistical Concepts 2 ... | PowerPoint PPT presentation | free to view

Health-Care Team Collaborative Patient-Safe Communication Strategies PowerPoint PPT Presentation

Health-Care Team Collaborative Patient-Safe Communication Strategies - Health-Care Team Collaborative ... of group process and teamwork principles Knowledge of strategies and tools to prevent harmful events Knowledge of an organizational ... | PowerPoint PPT presentation | free to view

Top pair production cross section and branching ratio measurements PowerPoint PPT Presentation

Top pair production cross section and branching ratio measurements - The biggest accomplishment of Run I of Tevatron was the top quark discovery in 1995 ... Limited knowledge of heavy flavor fractions is one of the largest ... | PowerPoint PPT presentation | free to view

Fugacity of Non-Ideal Mixtures (SVNA 11.6 and 11.7) PowerPoint PPT Presentation

Fugacity of Non-Ideal Mixtures (SVNA 11.6 and 11.7) - ... begin our treatment of non-ideality in mixtures by considering gas behaviour. ... Modify this expression for cases where pure component non-ideality is observed. ... | PowerPoint PPT presentation | free to view

Image Restoration and Denoising PowerPoint PPT Presentation

Image Restoration and Denoising - Chapter Seven Part II Image Restoration and Denoising Image Restoration Techniques Inverse of degradation process Depending on the knowledge of degradation, it ... | PowerPoint PPT presentation | free to view

General Physics II PowerPoint PPT Presentation

General Physics II - General Physics II Introduction Knowledge of electricity dates back to Greek antiquity (700 BC). Began with the realization that amber when rubbed with wool, attracts ... | PowerPoint PPT presentation | free to view

Generic and Practical Resettable ZeroKnowledge in the Bare PublicKey Model PowerPoint PPT Presentation

Generic and Practical Resettable ZeroKnowledge in the Bare PublicKey Model - Generic and Practical Resettable Zero-Knowledge in the Bare Public-Key Model. Moti Yung ... The bare public-key (BPK) model. Concurrent verifier security in ... | PowerPoint PPT presentation | free to view

410 lecture on Cosmology PowerPoint PPT Presentation

410 lecture on Cosmology - 1 The heavens declare the glory of God; the skies proclaim the work of his hands. Day after day they pour forth speech; night after night they display knowledge. | PowerPoint PPT presentation | free to view

Robustness through Prior Knowledge: Using ExplanationBased Learning to Distinguish Handwritten Chine PowerPoint PPT Presentation

Robustness through Prior Knowledge: Using ExplanationBased Learning to Distinguish Handwritten Chine - Evaluate explanation quality using the rest of the training set. ... An explanation is a generalization of a training example, a proposed equivalence ... | PowerPoint PPT presentation | free to view

Fugacity of Non-Ideal Mixtures (SVNA 11.6 and 11.7) PowerPoint PPT Presentation

Fugacity of Non-Ideal Mixtures (SVNA 11.6 and 11.7) - Fugacity of Non-Ideal Mixtures (SVNA 11.6 and 11.7) In our attempt to describe the Gibbs energy of real gas and liquid mixtures, we examine two sources of non ... | PowerPoint PPT presentation | free to view