Lattice-based Succinct Arguments from Vanishing Polynomials

Valerio Cini, Russell W. F. Lai, Giulio Malavolta

Research output: Chapter in Book or Conference ProceedingsConference Proceedings with Oral Presentationpeer-review

Abstract

Succinct arguments allow a prover to convince a verifier of the validity of any statement in a language, with minimal communication and verifier’s work. Among other approaches, lattice-based protocols offer solid theoretical foundations, post-quantum security, and a rich algebraic structure. In this work, we present some new approaches to constructing efficient lattice-based succinct arguments. Our main technical ingredient is a new commitment scheme based on vanishing polynomials, a notion borrowed from algebraic geometry. We analyse the security of such a commitment scheme, and show how to take advantage of the additional algebraic structure to build new lattice-based succinct arguments. A few highlights amongst our results are:

(i)
The first recursive folding (i.e. Bulletproofs-like) protocol for linear relations with polylogarithmic verifier runtime. Traditionally, the verifier runtime has been the efficiency bottleneck for such protocols (regardless of the underlying assumptions).

(ii)
The first verifiable delay function (VDF) based on lattices, building on a recently introduced sequential relation.

(iii)
The first lattice-based linear-time prover succinct argument for NP, in the preprocessing model. The soundness of the scheme is based on (knowledge)-k-R-ISIS assumption [Albrecht et al., CRYPTO’22].
Original languageEnglish
Title of host publicationAdvances in Cryptology – CRYPTO 2023
Pages72-105
Volume14082
ISBN (Electronic)978-3-031-38545-2
DOIs
Publication statusPublished - 2023

Research Field

  • Cyber Security

Fingerprint

Dive into the research topics of 'Lattice-based Succinct Arguments from Vanishing Polynomials'. Together they form a unique fingerprint.

Cite this