IRIS

We show that any concurrent zero-knowledge protocol for a non-trivial language, whose security is proven via black-box simulation, must use at least logarithmically rounds of interaction. This result achieves a substantial improvement over previous lower bounds, and is the first bound to rule out the possibility of constant-round concurrent zero-knowledge when proven via black-box simulation. Furthermore, the bound is polynomially related to the number of rounds in the best known concurrent zero-knowledge protocol for languages in NP.

Black-Box Concurrent Zero-Knowledge Requires (Almost) Logarithmically Many Rounds

Rosen, Alon
2002

Abstract

We show that any concurrent zero-knowledge protocol for a non-trivial language, whose security is proven via black-box simulation, must use at least logarithmically rounds of interaction. This result achieves a substantial improvement over previous lower bounds, and is the first bound to rule out the possibility of constant-round concurrent zero-knowledge when proven via black-box simulation. Furthermore, the bound is polynomially related to the number of rounds in the best known concurrent zero-knowledge protocol for languages in NP.
2002
2001
SIAM JOURNAL ON COMPUTING
Canetti, Ran; Kiliany, Joe; Petrankz, Erez; Rosen, Alon
File in questo prodotto:
File Dimensione Formato  
czklb.pdf

accesso aperto

Tipologia: Documento in Pre-print (Pre-print document)
Licenza: Creative commons
Dimensione 1.39 MB
Formato Adobe PDF
Visualizza/Apri
1.39 MB Adobe PDF Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11565/4073336
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 37
  • ???jsp.display-item.citation.isi??? ND
social impact