From polynomial IOP and commitments to non-malleable zkSNARKs

Faonio, Antonio; Fiore, Dario; Kohlweiss, Markulf; Russo, Luigi; Zajac, Michal
TCC 2023, 21st Theory of Cryptography Conference, 29 November-2 December 2023, Taipei, Taiwan / Also published in LNCS, Vol 14371

We study sufficient conditions to compile simulation-extractable zkSNARKs from information-theoretic interactive oracle proofs (IOP) using a simulation-extractable commit-and-prove system for its oracles. Specifically, we define simulation extractability for opening and evaluation proofs of polynomial commitment schemes, which we then employ to prove the security of zkSNARKS obtained from polynomial IOP proof
systems. To instantiate our methodology, we additionally prove that KZG commitments satisfy our simulation extractability requirement, despite being naturally malleable. To this end, we design a relaxed notion of simulation extractability that matches how KZG commitments are used and optimized in real-world proof systems. The proof that KZG satisfies this relaxed simulation extractability property relies on the algebraic group model and random oracle model.

DOI
HAL
Type:
Conférence
City:
Taipei
Date:
2023-11-29
Department:
Sécurité numérique
Eurecom Ref:
7419
Copyright:
© Springer. Personal use of this material is permitted. The definitive version of this paper was published in TCC 2023, 21st Theory of Cryptography Conference, 29 November-2 December 2023, Taipei, Taiwan / Also published in LNCS, Vol 14371 and is available at : https://doi.org/10.1007/978-3-031-48621-0_16

PERMALINK : https://www.eurecom.fr/publication/7419