Prover-efficient commit-and-prove zero-knowledge snarks (Q1626134)
From MaRDI portal
 | This is the item page for this Wikibase entity, intended for internal use and editing purposes. Please use this page instead for the normal view: Prover-efficient commit-and-prove zero-knowledge snarks |
scientific article; zbMATH DE number 6984955
| Language | Label | Description | Also known as |
|---|---|---|---|
| English | Prover-efficient commit-and-prove zero-knowledge snarks |
scientific article; zbMATH DE number 6984955 |
Statements
Prover-efficient commit-and-prove zero-knowledge snarks (English)
0 references
26 November 2018
0 references
Summary: Succinct non-interactive zero-knowledge arguments of knowledge (zk-SNARKs) are needed in many applications. Unfortunately, all previous zk-SNARKs for interesting languages are either inefficient for the prover, or are non-adaptive and based on a commitment scheme that depends both on the prover's input and on the language, i.e., they are not commit-and-prove (CaP) SNARKs. We propose a proof-friendly extractable commitment scheme, and use it to construct prover-efficient adaptive CaP succinct zk-SNARKs for different languages, that can all reuse committed data. In new zk-SNARKs, the prover computation is dominated by a linear number of cryptographic operations. We use batch-verification to decrease the verifier's computation; importantly, batch-verification can be used also in QAP-based zk-SNARKs.
0 references
batch verification
0 references
commit-and-prove
0 references
CaP
0 references
common reference string
0 references
CRS
0 references
non-interactive zero knowledge
0 references
NIZK
0 references
numerical NP-complete languages
0 references
range proof
0 references
subset-sum
0 references
zk-SNARK
0 references
