Professional Documents
Culture Documents
Zero Knowledge Proofs
Zero Knowledge Proofs
ZKP
Zero knowledge Transfer between the Prover and the Verifier The verifier accepts or rejects the proof after multiple challenges and responses Probabilistic Proof Protocol Overcomes Problems with Password Based Authentication
Properties of ZKP
Completeness Succeeds with high probability for a true assertion given an honest verifier and an honest prover.
Soundness Fails for any other false assertion, given a dishonest prover and an honest verifier
Advantages of ZKP
As name Suggests Zero Knowledge Transfer Computational Efficiency No Encryption No Degradation of the protocol Based on problems like discrete logarithms and integer factorization
Classic Example
Ali Babas Cave Alice has to convince Bob She knows the secret to open the cave door without telling the secret (Open Sesame).
(source: http://www.rsasecurity.com/rsalabs/faq/2-1-8.html)
A random modulus n, product of two large prime numbers p and q generated by a trusted party and made public Prover chooses secret s relatively prime to n prover computes v = s2 mod n, where v is the public key
Applications
Watermark Verification Show the presence of watermark without revealing information about it prevents from removing the watermark and reselling multiple duplicate copies Others e-voting, e-cash etc.
Products
Skys VideoCrypt Analogue decoding card for satellite DirecTV descrambler used to authenticate the subscribers card Uses Fiat-Shamir Zero Knowledge Protocol NGSCB New Generation Secure Computing Base Zero Knowledge for code attestations
References
Alfred J. Menezes, Paul C. van Oorschot, Scott A. Vanstone, Handbook of Applied Cryptography. [2] Ross Anderson, Security Engineering [3] Wenbo Mao, Modern Cryptography theory and practice [4] Don Coppersmith (Ed.), Advances in Cryptology- CRYPTO 95 Lecture Notes in Computer Science. [5] www.rsa.com [6] Oded Goldreich, Silvio Micali and Avi Wigderson, Proofs that yield nothing but their validity and a methodology of cryptographic protocol design. [7] Oren, Y., Properties of Zero-knowledge Proofs. [8] A Mitropoulos, and H. Meijer, Zero-knowledge proofs a survey.
[1]