论文信息 - Threshold Decryption and Zero-Knowledge Proofs for Lattice-Based Cryptosystems

Threshold Decryption and Zero-Knowledge Proofs for Lattice-Based Cryptosystems

We present a variant of Regev’s cryptosystem first presented in [Reg05], but with a new choice of parameters. By a recent classical reduction by Peikert we prove the scheme semantically secure based on the worst-case lattice problem GapSVP. From this we construct a threshold cryptosystem which has a very efficient and non-interactive decryption protocol. We prove the threshold cryptosystem secure against passive adversaries corrupting all but one of the players, and againts active adversaries corrupting less than one third of the players. We also describe how one can build a distributed key generation protocol. In the final part of the paper we show how one can, in zero-knowledge - prove knowledge of the plaintext contained in a given ciphertext from Regev’s original cryptosystem or our variant. The proof is of size only a constant times the size of the public key.

Ivan Damgård | Rikke Bendlin | I. Damgård | Rikke Bendlin

[1] Adi Shamir,et al. How to share a secret , 1979, CACM.

[2] Ivan Damgård,et al. Statistical Secrecy and Multibit Commitments , 1998, IEEE Trans. Inf. Theory.

[3] Rafail Ostrovsky,et al. Zero-knowledge from secure multiparty computation , 2007, STOC '07.

[4] Daniele Micciancio. Lattice-Based Cryptography , 2011, Encyclopedia of Cryptography and Security.

[5] Chris Peikert,et al. Public-key cryptosystems from the worst-case shortest vector problem: extended abstract , 2009, STOC '09.

[6] Ran Canetti,et al. Universally composable security: a new paradigm for cryptographic protocols , 2001, Proceedings 2001 IEEE International Conference on Cluster Computing.

[7] Matthew K. Franklin,et al. Communication complexity of secure computation (extended abstract) , 1992, STOC '92.

[8] Martin Hirt,et al. Perfectly-Secure MPC with Linear Communication Complexity , 2008, TCC.

[9] Brent Waters,et al. A Framework for Efficient and Composable Oblivious Transfer , 2008, CRYPTO.

[10] Oded Regev,et al. On lattices, learning with errors, random linear codes, and cryptography , 2009, JACM.

[11] Yuval Ishai,et al. Share Conversion, Pseudorandom Secret-Sharing and Applications to Secure Computation , 2005, TCC.

[12] Oded Regev,et al. Lattice-Based Cryptography , 2006, CRYPTO.