Search CORE

832 research outputs found

LNCS

Author: A Banerjee
A Fiat
A Jain
C Peikert
D Stehlé
E Fujisaki
F Benhamouda
G Asharov
I Damgård
IB Damgård
IB Damgård
IB Damgård
J Boyar
J Groth
J Katz
J Kilian
J Kilian
J Stern
L Ducas
M Bellare
M Rückert
O Goldreich
R Cramer
R Cramer
R Lindner
S Ling
V Lyubashevsky
V Lyubashevsky
V Lyubashevsky
X Xie
Z Brakerski
Publication venue: 'Springer Science and Business Media LLC'
Publication date: 30/10/2014
Field of study

We extend a commitment scheme based on the learning with errors over rings (RLWE) problem, and present efficient companion zeroknowledge proofs of knowledge. Our scheme maps elements from the ring (or equivalently, n elements fro

INRIA a CCSD electronic archive server

IST PubRep

Hal-Diderot

Complete Issue 17, 1998

Author
Publication venue: Scholarship @ Claremont
Publication date: 01/05/1998
Field of study

Lattice-based Group Signature Scheme with Verifier-local Revocation

Author: A. Fiat
A. Kawachi
A. Kiayias
B. Libert
B. Libert
C. Peikert
C. Peikert
D. Boneh
D. Cash
D. Chaum
D. Micciancio
D. Micciancio
F. Laguillaumie
G. Ateniese
J. Alwen
J. Camenisch
J. Camenisch
J. Camenisch
J. Groth
J. Stern
L. Chen
M. Ajtai
M. Bellare
M. Bellare
M. Rückert
P. Bichsel
P.W. Shor
S. Ling
S.D. Gordon
T. Nakanishi
T. Nakanishi
V. Lyubashevsky
V. Lyubashevsky
Publication venue: 'Springer Science and Business Media LLC'
Publication date: 01/01/2014
Field of study

International audienceSupport of membership revocation is a desirable functionality for any group signature scheme. Among the known revocation approaches, verifier-local revocation (VLR) seems to be the most flexible one, because it only requires the verifiers to possess some up-to-date revocation information, but not the signers. All of the contemporary VLR group signatures operate in the bilinear map setting, and all of them will be insecure once quantum computers become a reality. In this work, we introduce the first lattice-based VLR group signature, and thus, the first such scheme that is believed to be quantum-resistant. In comparison with existing lattice-based group signatures, our scheme has several noticeable advantages: support of membership revocation, logarithmic-size signatures, and weaker security assumption. In the random oracle model, our scheme is proved to be secure based on the hardness of the SIVP_{SoftO(n^{1.5})}$ problem in general lattices - an assumption that is as weak as those of state-of-the-art lattice-based standard signatures. Moreover, our construction works without relying on encryption schemes, which is an intriguing feature for group signatures

HAL-ENS-LYON

INRIA a CCSD electronic archive server

Hal-Diderot

Lattice-Based Blind Signatures: Short, Efficient, and Round-Optimal

Author: Gregor Seiler
Ngoc Khanh Nguyen
Vadim Lyubashevsky
Ward Beullens
Publication venue: International Association for Cryptologic Research (IACR)
Publication date: 24/01/2023
Field of study

We give a construction of a 2-round blind signature scheme based on the hardness of standard lattice problems (Ring/Module-SIS/LWE and NTRU) with a signature size of 22 KB. The protocol is round-optimal and has a transcript size that can be as small as 60 KB. This blind signature is around

4

times shorter than the most compact lattice-based scheme based on standard assumptions of del Pino and Katsumata (Crypto 2022) and around

2

times shorter than the scheme of Agrawal et al. (CCS 2022) based on their newly-proposed one-more-SIS assumption. We also give a construction of a ``keyed-verification\u27\u27 blind signature scheme in which the verifier and the signer need to share a secret key. The signature size in this case is only

48

bytes, but more work needs to be done to explore the efficiency of the protocol which generates the signature