One of the central questions in Cryptography is to design round-efficient protocols that are secure under man-in-the-middle attacks. In this paper we introduce and study the notion of non-malleable witness indistinguishability (NMWI) and examine its relation with the classic notion of non-malleable zero knowledge (NMZK). Indeed, despite tremendous applicability of witness indistinguishability, while a lot of attention has been given to NMZK, very little attention has been given to witness indistinguishability in case of man-in-the-middle attacks. We initiate this study, with several (perhaps somewhat surprising) results: • We give the first definition of NMWI proof systems. Just like every NMZK proof is a zero-knowledge proof which aims to ...
In this work, we consider the long-standing open question of constructing constant-round concurrent ...
In the bare public-key model (BPK in short), each verifier is assumed to have deposited a public key...
Abstract—We present a constant-round concurrent zero-knowledge protocol for NP. Our protocol relies ...
One of the central questions in Cryptography is the design of round-efficient protocols that are sec...
Abstract Concurrent non-malleable zero-knowledge (CNMZK) considers the concurrent execution of zero-...
One of the central questions in Cryptography today is proving security of the protocols “on the Inte...
One of the central questions in Cryptography today is proving security of the protocols “on the Inte...
Concurrent non-malleable zero-knowledge (CNMZK) protocols are zero-knowledge proto-cols that provide...
We present constant-round concurrently knowledge-extractable black-box resettable zero-knowledge (rZ...
Motivated by the goal of removing trusted setup assumptions from cryptography, we introduce the noti...
In this work we start from the following two results in the state-of-the art: 1.4-round non-malleabl...
We introduce the notion of Resettable Zero-Knowledge (rZK), a new security measure for cryptographic...
In this short note, we demonstrate that the existence of one-way functions implies the existence of ...
The notion of Zero Knowledge introduced by Goldwasser, Micali and Rackoff in STOC 1985 is fundamenta...
We provide the first construction of a concurrent and non-malleable zero knowledge argument for ever...
In this work, we consider the long-standing open question of constructing constant-round concurrent ...
In the bare public-key model (BPK in short), each verifier is assumed to have deposited a public key...
Abstract—We present a constant-round concurrent zero-knowledge protocol for NP. Our protocol relies ...
One of the central questions in Cryptography is the design of round-efficient protocols that are sec...
Abstract Concurrent non-malleable zero-knowledge (CNMZK) considers the concurrent execution of zero-...
One of the central questions in Cryptography today is proving security of the protocols “on the Inte...
One of the central questions in Cryptography today is proving security of the protocols “on the Inte...
Concurrent non-malleable zero-knowledge (CNMZK) protocols are zero-knowledge proto-cols that provide...
We present constant-round concurrently knowledge-extractable black-box resettable zero-knowledge (rZ...
Motivated by the goal of removing trusted setup assumptions from cryptography, we introduce the noti...
In this work we start from the following two results in the state-of-the art: 1.4-round non-malleabl...
We introduce the notion of Resettable Zero-Knowledge (rZK), a new security measure for cryptographic...
In this short note, we demonstrate that the existence of one-way functions implies the existence of ...
The notion of Zero Knowledge introduced by Goldwasser, Micali and Rackoff in STOC 1985 is fundamenta...
We provide the first construction of a concurrent and non-malleable zero knowledge argument for ever...
In this work, we consider the long-standing open question of constructing constant-round concurrent ...
In the bare public-key model (BPK in short), each verifier is assumed to have deposited a public key...
Abstract—We present a constant-round concurrent zero-knowledge protocol for NP. Our protocol relies ...