Vés al contingut (premeu Retorn)

MAK Crypto Seminar: Alonso González

MAK Crypto Seminar: Alonso González

By: Alonso González (ENS Lyon). Title: Shorter Ring Signatures from Standard Assumptions.

12/12/2018 des de/d' 16:15"
Campus Nord UPC, Building C3, Room 204a (2nd floor).
Nom de contacte
Afegeix un esdeveniment al calendari

Ring signatures, introduced by Rivest, Shamir and Tauman (ASIACRYPT 2001), allow to sign a message on behalf of a set of users while guaranteeing authenticity and anonymity. Groth and Kohlweiss (EUROCRYPT 2015) and Libert et al. (EUROCRYPT 2016) constructed schemes with signatures of size logarithmic in the number of users. An even shorter ring signature, of size independent from the number of users, was recently proposed by Malavolta and Schröder (ASIACRYPT 2017). However, all these short signatures are only obtained relying on strong and controversial assumptions. Namely, the former schemes are both proven secure in the random oracle model while the later requires non-falsifiable assumptions.

The most efficient construction under mild assumptions remains the construction of Chandran et al. (ICALP 2007) with a signature of size Θ(√n), where n is the number of users, and security is based on the Diffie-Hellman assumption in bilinear groups (the SXDH assumption in asymmetric bilinear groups).

In this work we construct an asymptotically shorter ring signature from the hardness of the Diffie-Hellman assumption in bilinear groups. Each signature comprises Θ(∛n) group elements, signing a message requires computing Θ(∛n) exponentiations, and verifying a signature requires Θ(n^{2/3}) pairing operations. To the best of our knowledge, this is the first practical ring signature with o(√n) signatures and sublinear verification complexity.

arxivat sota: