Paper 1999/014

Concurrent Zero-Knowledge is Easy in Practice

Ivan Damgard

Abstract

We show that if any one-way function exists, then 3-round concurrent zero-knowledge arguments for all NP problems can be built in a model where a short auxiliary string with a prescribed distribution is available to the players. We also show that all known efficient identification schemes using specialized assumptions can be modified to work in this model with no essential loss of efficiency. We argue that the assumptions of the model will be satisfied in most practical scenarios where public key cryptography is used, in particular our construction works given any secure public key infrastructure. Finally, we point out that in a model with preprocessing (and no auxiliary string) proposed earlier, concurrent zero-knowledge for NP can be based on any one-way function.

Metadata
Available format(s)
PS
Publication info
Published elsewhere. Appeared in the THEORY OF CRYPTOGRAPHY LIBRARY and has been included in the ePrint Archive.
Keywords
Concurrent Zero-KnowledgeProtocolsProofs of knowledge.
Contact author(s)
ivan @ daimi aau dk
History
1999-07-28: revised
1999-06-16: received
Short URL
https://ia.cr/1999/014
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:1999/014,
      author = {Ivan Damgard},
      title = {Concurrent Zero-Knowledge is Easy in Practice},
      howpublished = {Cryptology {ePrint} Archive, Paper 1999/014},
      year = {1999},
      url = {https://eprint.iacr.org/1999/014}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.