{"id":"https://openalex.org/W2614074621","doi":"https://doi.org/10.1145/3133956.3133997","title":"Post-Quantum Zero-Knowledge and Signatures from Symmetric-Key Primitives","display_name":"Post-Quantum Zero-Knowledge and Signatures from Symmetric-Key Primitives","publication_year":2017,"publication_date":"2017-10-27","ids":{"openalex":"https://openalex.org/W2614074621","doi":"https://doi.org/10.1145/3133956.3133997","mag":"2614074621"},"language":"en","primary_location":{"id":"doi:10.1145/3133956.3133997","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3133956.3133997","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://zenodo.org/record/3494895","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5016806686","display_name":"Melissa Chase","orcid":"https://orcid.org/0009-0003-8333-3942"},"institutions":[{"id":"https://openalex.org/I1290206253","display_name":"Microsoft (United States)","ror":"https://ror.org/00d0nc645","country_code":"US","type":"company","lineage":["https://openalex.org/I1290206253"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Melissa Chase","raw_affiliation_strings":["Microsoft Research, Redmond, WA, USA"],"affiliations":[{"raw_affiliation_string":"Microsoft Research, Redmond, WA, USA","institution_ids":["https://openalex.org/I1290206253"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5078427219","display_name":"David Derler","orcid":"https://orcid.org/0000-0002-5345-3906"},"institutions":[{"id":"https://openalex.org/I4092182","display_name":"Graz University of Technology","ror":"https://ror.org/00d7xrm67","country_code":"AT","type":"education","lineage":["https://openalex.org/I4092182"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"David Derler","raw_affiliation_strings":["Graz University of Technology, Graz, Austria"],"affiliations":[{"raw_affiliation_string":"Graz University of Technology, Graz, Austria","institution_ids":["https://openalex.org/I4092182"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5038431271","display_name":"Steven Goldfeder","orcid":null},"institutions":[{"id":"https://openalex.org/I20089843","display_name":"Princeton University","ror":"https://ror.org/00hx57361","country_code":"US","type":"education","lineage":["https://openalex.org/I20089843"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Steven Goldfeder","raw_affiliation_strings":["Princeton University, Princeton, NJ, USA"],"affiliations":[{"raw_affiliation_string":"Princeton University, Princeton, NJ, USA","institution_ids":["https://openalex.org/I20089843"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028570693","display_name":"Claudio Orlandi","orcid":"https://orcid.org/0000-0003-4992-0249"},"institutions":[{"id":"https://openalex.org/I204337017","display_name":"Aarhus University","ror":"https://ror.org/01aj84f44","country_code":"DK","type":"education","lineage":["https://openalex.org/I204337017"]}],"countries":["DK"],"is_corresponding":false,"raw_author_name":"Claudio Orlandi","raw_affiliation_strings":["Aarhus University, Aarhus, Denmark"],"affiliations":[{"raw_affiliation_string":"Aarhus University, Aarhus, Denmark","institution_ids":["https://openalex.org/I204337017"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5080865455","display_name":"Sebastian Ramacher","orcid":"https://orcid.org/0000-0003-1957-3725"},"institutions":[{"id":"https://openalex.org/I4092182","display_name":"Graz University of Technology","ror":"https://ror.org/00d7xrm67","country_code":"AT","type":"education","lineage":["https://openalex.org/I4092182"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Sebastian Ramacher","raw_affiliation_strings":["Graz University of Technology, Graz, Austria"],"affiliations":[{"raw_affiliation_string":"Graz University of Technology, Graz, Austria","institution_ids":["https://openalex.org/I4092182"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5068575128","display_name":"Christian Rechberger","orcid":"https://orcid.org/0000-0003-1280-6020"},"institutions":[{"id":"https://openalex.org/I4092182","display_name":"Graz University of Technology","ror":"https://ror.org/00d7xrm67","country_code":"AT","type":"education","lineage":["https://openalex.org/I4092182"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Christian Rechberger","raw_affiliation_strings":["Graz University of Technology &amp; Denmark Technical University, Graz, Austria"],"affiliations":[{"raw_affiliation_string":"Graz University of Technology &amp; Denmark Technical University, Graz, Austria","institution_ids":["https://openalex.org/I4092182"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5044774496","display_name":"Daniel Slamanig","orcid":"https://orcid.org/0000-0002-4181-2561"},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Daniel Slamanig","raw_affiliation_strings":["AIT Austrian Institute of Technology, Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"AIT Austrian Institute of Technology, Vienna, Austria","institution_ids":["https://openalex.org/I132118926"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5002192541","display_name":"Greg Zaverucha","orcid":null},"institutions":[{"id":"https://openalex.org/I1290206253","display_name":"Microsoft (United States)","ror":"https://ror.org/00d0nc645","country_code":"US","type":"company","lineage":["https://openalex.org/I1290206253"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Greg Zaverucha","raw_affiliation_strings":["Microsoft Research, Redmond, WA, USA"],"affiliations":[{"raw_affiliation_string":"Microsoft Research, Redmond, WA, USA","institution_ids":["https://openalex.org/I1290206253"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":8,"corresponding_author_ids":["https://openalex.org/A5016806686"],"corresponding_institution_ids":["https://openalex.org/I1290206253"],"apc_list":null,"apc_paid":null,"fwci":16.63,"has_fulltext":false,"cited_by_count":243,"citation_normalized_percentile":{"value":0.99256123,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"1825","last_page":"1842"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9980999827384949,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.9972000122070312,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/zero-knowledge-proof","display_name":"Zero-knowledge proof","score":0.6596053838729858},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.6009140014648438},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5716570615768433},{"id":"https://openalex.org/keywords/zero","display_name":"Zero (linguistics)","score":0.5018582344055176},{"id":"https://openalex.org/keywords/quantum","display_name":"Quantum","score":0.4288833737373352},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.3251316547393799},{"id":"https://openalex.org/keywords/physics","display_name":"Physics","score":0.2423243224620819},{"id":"https://openalex.org/keywords/quantum-mechanics","display_name":"Quantum mechanics","score":0.21408507227897644},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.17388004064559937},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.14538756012916565}],"concepts":[{"id":"https://openalex.org/C176329583","wikidata":"https://www.wikidata.org/wiki/Q191943","display_name":"Zero-knowledge proof","level":3,"score":0.6596053838729858},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.6009140014648438},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5716570615768433},{"id":"https://openalex.org/C2780813799","wikidata":"https://www.wikidata.org/wiki/Q3274237","display_name":"Zero (linguistics)","level":2,"score":0.5018582344055176},{"id":"https://openalex.org/C84114770","wikidata":"https://www.wikidata.org/wiki/Q46344","display_name":"Quantum","level":2,"score":0.4288833737373352},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.3251316547393799},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.2423243224620819},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.21408507227897644},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.17388004064559937},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.14538756012916565},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/3133956.3133997","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3133956.3133997","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"pmh:oai:pure.atira.dk:publications/9ba10266-beb9-42c0-8eb2-99a84a615eb0","is_oa":false,"landing_page_url":"https://pure.au.dk/portal/en/publications/9ba10266-beb9-42c0-8eb2-99a84a615eb0","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Chase, M, Derler, D, Goldfeder, S, Orlandi, C, Ramacher, S, Rechberger, C, Slamanig, D & Zaverucha, G 2017, Post-Quantum Zero-Knowledge and Signatures from Symmetric-Key Primitives. in CCS 2017 - Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security. Association for Computing Machinery, New York, NY, USA, pp. 1825-1842, ACM SIGSAC Conference on Computer and Communications Security , Dallas, Texas, United States, 30/10/2017. https://doi.org/10.1145/3133956.3133997","raw_type":"info:eu-repo/semantics/publishedVersion"},{"id":"pmh:oai:zenodo.org:3494895","is_oa":true,"landing_page_url":"https://zenodo.org/record/3494895","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/conferencePaper"}],"best_oa_location":{"id":"pmh:oai:zenodo.org:3494895","is_oa":true,"landing_page_url":"https://zenodo.org/record/3494895","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/conferencePaper"},"sustainable_development_goals":[{"score":0.5199999809265137,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[{"id":"https://openalex.org/G8971399811","display_name":null,"funder_award_id":"DGE 1148900","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":92,"referenced_works":["https://openalex.org/W4180724","https://openalex.org/W33071360","https://openalex.org/W43667552","https://openalex.org/W49132692","https://openalex.org/W121367636","https://openalex.org/W134131117","https://openalex.org/W147447691","https://openalex.org/W632399495","https://openalex.org/W930621015","https://openalex.org/W968825589","https://openalex.org/W1480477462","https://openalex.org/W1489642236","https://openalex.org/W1495150862","https://openalex.org/W1506156414","https://openalex.org/W1508084091","https://openalex.org/W1512372863","https://openalex.org/W1526993157","https://openalex.org/W1527005907","https://openalex.org/W1563556756","https://openalex.org/W1566345534","https://openalex.org/W1582357539","https://openalex.org/W1589034595","https://openalex.org/W1595415026","https://openalex.org/W1597759824","https://openalex.org/W1599175145","https://openalex.org/W1604074479","https://openalex.org/W1607525463","https://openalex.org/W1717763854","https://openalex.org/W1730077839","https://openalex.org/W1882598960","https://openalex.org/W1969297838","https://openalex.org/W1987475429","https://openalex.org/W1988098065","https://openalex.org/W2001841415","https://openalex.org/W2003858108","https://openalex.org/W2012646342","https://openalex.org/W2015862444","https://openalex.org/W2038761522","https://openalex.org/W2043007983","https://openalex.org/W2052267638","https://openalex.org/W2058648304","https://openalex.org/W2069535412","https://openalex.org/W2084652510","https://openalex.org/W2095708839","https://openalex.org/W2102632861","https://openalex.org/W2124164831","https://openalex.org/W2139594012","https://openalex.org/W2141395382","https://openalex.org/W2144752539","https://openalex.org/W2166462813","https://openalex.org/W2171337840","https://openalex.org/W2172273481","https://openalex.org/W2172643090","https://openalex.org/W2189468733","https://openalex.org/W2254971601","https://openalex.org/W2284942299","https://openalex.org/W2289561827","https://openalex.org/W2294173372","https://openalex.org/W2294366282","https://openalex.org/W2315723423","https://openalex.org/W2395093323","https://openalex.org/W2397062561","https://openalex.org/W2407105577","https://openalex.org/W2465235335","https://openalex.org/W2469100438","https://openalex.org/W2492190064","https://openalex.org/W2546723239","https://openalex.org/W2552640487","https://openalex.org/W2552765056","https://openalex.org/W2555791265","https://openalex.org/W2576497108","https://openalex.org/W2576582924","https://openalex.org/W2583949122","https://openalex.org/W2604763720","https://openalex.org/W2620617817","https://openalex.org/W2762094014","https://openalex.org/W2765206040","https://openalex.org/W2765986519","https://openalex.org/W2799007907","https://openalex.org/W2900370870","https://openalex.org/W2949796099","https://openalex.org/W2986959318","https://openalex.org/W2997945825","https://openalex.org/W3028607946","https://openalex.org/W3028781487","https://openalex.org/W3029557855","https://openalex.org/W3030554837","https://openalex.org/W3172550433","https://openalex.org/W4205765479","https://openalex.org/W4231669165","https://openalex.org/W4234875403","https://openalex.org/W6680075058"],"related_works":["https://openalex.org/W1870614684","https://openalex.org/W194387157","https://openalex.org/W2000850689","https://openalex.org/W59628553","https://openalex.org/W1483984920","https://openalex.org/W4406460655","https://openalex.org/W2952570804","https://openalex.org/W2408612903","https://openalex.org/W2155069045","https://openalex.org/W974961824"],"abstract_inverted_index":{"We":[0,98,137,200],"propose":[1],"a":[2,52,63,71,107,163,195,227],"new":[3],"class":[4],"of":[5,19,51,67,83,109,119,211,216,231],"post-quantum":[6,197],"digital":[7],"signature":[8,39,61,135],"schemes":[9],"that:":[10],"(a)":[11],"derive":[12],"their":[13],"security":[14,18,164,198],"entirely":[15],"from":[16],"the":[17,41,143,160,167,179,188,208,217],"symmetric-key":[20],"primitives,":[21],"believed":[22],"to":[23,73,102,141,176,183,187,220],"be":[24,74],"quantum-secure,":[25],"and":[26,56,149,202,206,233],"(b)":[27],"have":[28,194],"extremely":[29],"small":[30],"keypairs,":[31],"and,":[32],"(c)":[33],"are":[34],"highly":[35],"parameterizable.":[36],"In":[37],"our":[38,134,177],"constructions,":[40],"public":[42],"key":[43,58],"is":[44,62,118,181],"an":[45,90],"image":[46],"y":[47],"=":[48],"f":[49,55,212],"(x)":[50],"one-way":[53],"function":[54],"secret":[57],"x.":[59],"A":[60],"non-interactive":[64],"zero-knowledge":[65],"proof":[66,104,144],"x,":[68],"that":[69],"incorporates":[70],"message":[72],"signed.":[75],"For":[76],"this":[77,100,117],"proof,":[78],"we":[79],"leverage":[80],"recent":[81,218],"progress":[82],"Giacomelli":[84],"et":[85],"al.":[86],"(USENIX'16)":[87],"in":[88,166],"constructing":[89],"efficient":[91],"\u00d3-protocol":[92,101],"for":[93,128,222],"statements":[94],"over":[95],"general":[96],"circuits.":[97],"improve":[99],"reduce":[103],"sizes":[105],"by":[106],"factor":[108],"two,":[110],"at":[111],"no":[112],"additional":[113],"computational":[114],"cost.":[115],"While":[116],"independent":[120],"interest":[121],"as":[122],"it":[123,131],"yields":[124],"more":[125],"compact":[126],"proofs":[127],"any":[129],"circuit,":[130],"also":[132],"decreases":[133],"sizes.":[136],"consider":[138],"two":[139],"possibilities":[140],"make":[142],"non-interactive:":[145],"The":[146,154],"Fiat-Shamir":[147,189],"transform":[148,151,175],"Unruh's":[150,174],"(EUROCRYPT'12,":[152],"'15,'16).":[153],"former":[155],"has":[156,162],"smaller":[157],"signatures,":[158],"while":[159],"latter":[161],"analysis":[165],"quantum-accessible":[168],"random":[169],"oracle":[170],"model.":[171],"By":[172],"customizing":[173],"application,":[178],"overhead":[180],"reduced":[182],"1.6x":[184],"when":[185],"compared":[186],"transform,":[190],"which":[191],"does":[192],"not":[193],"rigorous":[196],"analysis.":[199],"implement":[201],"benchmark":[203],"both":[204],"approaches":[205],"explore":[207],"possible":[209],"choice":[210],",":[213],"taking":[214],"advantage":[215],"trend":[219],"strive":[221],"practical":[223],"symmetric":[224],"ciphers":[225],"with":[226],"particularly":[228],"low":[229],"number":[230],"multiplications":[232],"end":[234],"up":[235],"using":[236],"LowMC":[237],"(EUROCRYPT'15).":[238]},"counts_by_year":[{"year":2026,"cited_by_count":6},{"year":2025,"cited_by_count":20},{"year":2024,"cited_by_count":24},{"year":2023,"cited_by_count":35},{"year":2022,"cited_by_count":33},{"year":2021,"cited_by_count":45},{"year":2020,"cited_by_count":32},{"year":2019,"cited_by_count":24},{"year":2018,"cited_by_count":21},{"year":2017,"cited_by_count":3}],"updated_date":"2026-04-16T08:26:57.006410","created_date":"2025-10-10T00:00:00"}