International Workshop on Public Key Cryptography

PKC 2010: Public Key Cryptography – PKC 2010 pp 177-192

Groth–Sahai Proofs Revisited

  • Essam Ghadafi
  • Nigel. P. Smart
  • Bogdan Warinschi
Conference paper

DOI: 10.1007/978-3-642-13013-7_11

Volume 6056 of the book series Lecture Notes in Computer Science (LNCS)
Cite this paper as:
Ghadafi E., Smart N.P., Warinschi B. (2010) Groth–Sahai Proofs Revisited. In: Nguyen P.Q., Pointcheval D. (eds) Public Key Cryptography – PKC 2010. PKC 2010. Lecture Notes in Computer Science, vol 6056. Springer, Berlin, Heidelberg

Abstract

Since their introduction in 2008, the non-interactive zero-knowledge (NIZK) and non-interactive witness indistinguishable (NIWI) proofs designed by Groth and Sahai have been used in numerous applications. In this paper, we offer two contributions to the study of these proof systems. First, we identify and correct some errors, present in the oringal online manuscript, that occur in two of the three instantiations of the Groth-Sahai NIWI proofs for which the equation checked by the verifier is not valid for honest executions of the protocol. In particular, implementations of these proofs would not work correctly. We explain why, perhaps surprisingly, the NIZK proofs that are built from these NIWI proofs do not suffer from a similar problem. Secondly, we study the efficiency of existing instantiations and note that only one of the three instantiations has the potential of being practical. We therefore propose a natural extension of an existing assumption from symmetric pairings to asymmetric ones which in turn enables Groth-Sahai proofs based on new classes of efficient pairings.

Download to read the full conference paper text

Copyright information

© Springer-Verlag Berlin Heidelberg 2010

Authors and Affiliations

  • Essam Ghadafi
    • 1
  • Nigel. P. Smart
    • 1
  • Bogdan Warinschi
    • 1
  1. 1.Dept. Computer ScienceUniversity of BristolBristolUnited Kingdom