{"id":"https://openalex.org/W3198234886","doi":"https://doi.org/10.1145/3460120.3484572","title":"Shorter and Faster Post-Quantum Designated-Verifier zkSNARKs from Lattices","display_name":"Shorter and Faster Post-Quantum Designated-Verifier zkSNARKs from Lattices","publication_year":2021,"publication_date":"2021-11-12","ids":{"openalex":"https://openalex.org/W3198234886","doi":"https://doi.org/10.1145/3460120.3484572","mag":"3198234886"},"language":"en","primary_location":{"id":"doi:10.1145/3460120.3484572","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484572","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484572","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484572","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5081852077","display_name":"Yuval Ishai","orcid":"https://orcid.org/0009-0009-4096-6305"},"institutions":[{"id":"https://openalex.org/I174306211","display_name":"Technion \u2013 Israel Institute of Technology","ror":"https://ror.org/03qryx823","country_code":"IL","type":"education","lineage":["https://openalex.org/I174306211"]}],"countries":["IL"],"is_corresponding":true,"raw_author_name":"Yuval Ishai","raw_affiliation_strings":["Technion, Haifa, Israel","Technion , Haifa , Israel"],"affiliations":[{"raw_affiliation_string":"Technion, Haifa, Israel","institution_ids":["https://openalex.org/I174306211"]},{"raw_affiliation_string":"Technion , Haifa , Israel","institution_ids":["https://openalex.org/I174306211"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5071686812","display_name":"Hang Su","orcid":null},"institutions":[{"id":"https://openalex.org/I51556381","display_name":"University of Virginia","ror":"https://ror.org/0153tk833","country_code":"US","type":"education","lineage":["https://openalex.org/I51556381"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Hang Su","raw_affiliation_strings":["University of Virginia, Charlottesville, VA, USA","University of Virginia, Charlottesville, VA. USA"],"affiliations":[{"raw_affiliation_string":"University of Virginia, Charlottesville, VA, USA","institution_ids":["https://openalex.org/I51556381"]},{"raw_affiliation_string":"University of Virginia, Charlottesville, VA. USA","institution_ids":["https://openalex.org/I51556381"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5017970656","display_name":"David J. Wu","orcid":"https://orcid.org/0000-0002-5191-692X"},"institutions":[{"id":"https://openalex.org/I86519309","display_name":"The University of Texas at Austin","ror":"https://ror.org/00hj54h04","country_code":"US","type":"education","lineage":["https://openalex.org/I86519309"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"David J. Wu","raw_affiliation_strings":["University of Texas at Austin, Austin, TX, USA","University of Texas at Austin, Austin, TX, USA;"],"affiliations":[{"raw_affiliation_string":"University of Texas at Austin, Austin, TX, USA","institution_ids":["https://openalex.org/I86519309"]},{"raw_affiliation_string":"University of Texas at Austin, Austin, TX, USA;","institution_ids":["https://openalex.org/I86519309"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5081852077"],"corresponding_institution_ids":["https://openalex.org/I174306211"],"apc_list":null,"apc_paid":null,"fwci":0.28,"has_fulltext":true,"cited_by_count":3,"citation_normalized_percentile":{"value":0.64352787,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":96},"biblio":{"volume":"2021","issue":null,"first_page":"212","last_page":"234"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9965999722480774,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9965999722480774,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/gas-meter-prover","display_name":"Gas meter prover","score":0.7873942852020264},{"id":"https://openalex.org/keywords/mathematical-proof","display_name":"Mathematical proof","score":0.7294484376907349},{"id":"https://openalex.org/keywords/soundness","display_name":"Soundness","score":0.6436988115310669},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6229672431945801},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.48715612292289734},{"id":"https://openalex.org/keywords/oblivious-transfer","display_name":"Oblivious transfer","score":0.4781571328639984},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.4736439287662506},{"id":"https://openalex.org/keywords/learning-with-errors","display_name":"Learning with errors","score":0.46108052134513855},{"id":"https://openalex.org/keywords/discrete-mathematics","display_name":"Discrete mathematics","score":0.43911847472190857},{"id":"https://openalex.org/keywords/quantum","display_name":"Quantum","score":0.4228164851665497},{"id":"https://openalex.org/keywords/lattice","display_name":"Lattice (music)","score":0.4154670834541321},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.40483301877975464},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.31241363286972046},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.2971065640449524},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.16512230038642883},{"id":"https://openalex.org/keywords/quantum-mechanics","display_name":"Quantum mechanics","score":0.07029703259468079}],"concepts":[{"id":"https://openalex.org/C159718280","wikidata":"https://www.wikidata.org/wiki/Q5526353","display_name":"Gas meter prover","level":3,"score":0.7873942852020264},{"id":"https://openalex.org/C108710211","wikidata":"https://www.wikidata.org/wiki/Q11538","display_name":"Mathematical proof","level":2,"score":0.7294484376907349},{"id":"https://openalex.org/C39920170","wikidata":"https://www.wikidata.org/wiki/Q693083","display_name":"Soundness","level":2,"score":0.6436988115310669},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6229672431945801},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.48715612292289734},{"id":"https://openalex.org/C53076038","wikidata":"https://www.wikidata.org/wiki/Q2915383","display_name":"Oblivious transfer","level":3,"score":0.4781571328639984},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.4736439287662506},{"id":"https://openalex.org/C2779014939","wikidata":"https://www.wikidata.org/wiki/Q6510239","display_name":"Learning with errors","level":3,"score":0.46108052134513855},{"id":"https://openalex.org/C118615104","wikidata":"https://www.wikidata.org/wiki/Q121416","display_name":"Discrete mathematics","level":1,"score":0.43911847472190857},{"id":"https://openalex.org/C84114770","wikidata":"https://www.wikidata.org/wiki/Q46344","display_name":"Quantum","level":2,"score":0.4228164851665497},{"id":"https://openalex.org/C2781204021","wikidata":"https://www.wikidata.org/wiki/Q6497091","display_name":"Lattice (music)","level":2,"score":0.4154670834541321},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.40483301877975464},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.31241363286972046},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.2971065640449524},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.16512230038642883},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.07029703259468079},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C24890656","wikidata":"https://www.wikidata.org/wiki/Q82811","display_name":"Acoustics","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3460120.3484572","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484572","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484572","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"mag:3198234886","is_oa":false,"landing_page_url":"https://eprint.iacr.org/2021/977.pdf","pdf_url":null,"source":{"id":"https://openalex.org/S2764847869","display_name":"IACR Cryptology ePrint Archive","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":["https://openalex.org/P4322614454"],"host_organization_lineage_names":["Cryptology ePrint Archive"],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IACR Cryptology ePrint Archive","raw_type":null}],"best_oa_location":{"id":"doi:10.1145/3460120.3484572","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484572","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484572","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.47999998927116394,"display_name":"Peace, Justice and strong institutions"}],"awards":[{"id":"https://openalex.org/G1638838061","display_name":null,"funder_award_id":"CNS-1917414,CNS-2045180","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G4437802709","display_name":null,"funder_award_id":"NTSC (742754)","funder_id":"https://openalex.org/F4320334678","funder_display_name":"European Research Council"},{"id":"https://openalex.org/G4686890617","display_name":"Collaborative Research: FMitF: Track I: Game Theoretic Updates for Network and Cloud Functions","funder_award_id":"2018393","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G7411330843","display_name":null,"funder_award_id":"2774/20","funder_id":"https://openalex.org/F4320322252","funder_display_name":"Israel Science Foundation"},{"id":"https://openalex.org/G7578343440","display_name":"SaTC: CORE: Small: Expanding the Frontiers of Lattice-Based Cryptography","funder_award_id":"1917414","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G7824291002","display_name":"CAREER: Foundations of Cryptographic Proof Systems","funder_award_id":"2045180","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320308943","display_name":"Microsoft Research","ror":"https://ror.org/00d0nc645"},{"id":"https://openalex.org/F4320322252","display_name":"Israel Science Foundation","ror":"https://ror.org/04sazxf24"},{"id":"https://openalex.org/F4320334678","display_name":"European Research Council","ror":"https://ror.org/0472cxd90"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3198234886.pdf","grobid_xml":"https://content.openalex.org/works/W3198234886.grobid-xml"},"referenced_works_count":78,"referenced_works":["https://openalex.org/W4180724","https://openalex.org/W111294696","https://openalex.org/W150064776","https://openalex.org/W198033559","https://openalex.org/W1515945955","https://openalex.org/W1538440442","https://openalex.org/W1541538376","https://openalex.org/W1589034595","https://openalex.org/W1599026900","https://openalex.org/W1610688607","https://openalex.org/W1890128745","https://openalex.org/W1948403713","https://openalex.org/W1966904279","https://openalex.org/W1970808997","https://openalex.org/W1971029566","https://openalex.org/W1980227445","https://openalex.org/W1985439922","https://openalex.org/W1992282993","https://openalex.org/W2043007983","https://openalex.org/W2049982182","https://openalex.org/W2061949491","https://openalex.org/W2067047774","https://openalex.org/W2067596507","https://openalex.org/W2067700169","https://openalex.org/W2080132708","https://openalex.org/W2087900794","https://openalex.org/W2098290658","https://openalex.org/W2098843110","https://openalex.org/W2100818808","https://openalex.org/W2101687784","https://openalex.org/W2113333997","https://openalex.org/W2144238522","https://openalex.org/W2144752539","https://openalex.org/W2152926062","https://openalex.org/W2167236842","https://openalex.org/W2171337840","https://openalex.org/W2176745559","https://openalex.org/W2188776605","https://openalex.org/W2192481898","https://openalex.org/W2291472021","https://openalex.org/W2400700555","https://openalex.org/W2470176151","https://openalex.org/W2473389213","https://openalex.org/W2496543269","https://openalex.org/W2499340481","https://openalex.org/W2514893051","https://openalex.org/W2529173666","https://openalex.org/W2536319456","https://openalex.org/W2613376966","https://openalex.org/W2614074621","https://openalex.org/W2765206040","https://openalex.org/W2765700841","https://openalex.org/W2767921305","https://openalex.org/W2791664942","https://openalex.org/W2794982701","https://openalex.org/W2883585522","https://openalex.org/W2904838066","https://openalex.org/W2919751322","https://openalex.org/W2950609069","https://openalex.org/W2964279767","https://openalex.org/W2972929169","https://openalex.org/W2978282230","https://openalex.org/W2982474429","https://openalex.org/W2990120385","https://openalex.org/W3009739836","https://openalex.org/W3015343560","https://openalex.org/W3023964980","https://openalex.org/W3037467273","https://openalex.org/W3082761440","https://openalex.org/W3097376328","https://openalex.org/W3097836574","https://openalex.org/W3116303059","https://openalex.org/W3157539470","https://openalex.org/W4205765479","https://openalex.org/W4253496694","https://openalex.org/W6749672775","https://openalex.org/W6790279793","https://openalex.org/W6794182918"],"related_works":["https://openalex.org/W3211614912","https://openalex.org/W2401934382","https://openalex.org/W239882307","https://openalex.org/W3097022842","https://openalex.org/W3194732277","https://openalex.org/W2067596507","https://openalex.org/W1672955339","https://openalex.org/W2139594012","https://openalex.org/W1490233153","https://openalex.org/W2950148416","https://openalex.org/W184142732","https://openalex.org/W1858333725","https://openalex.org/W2914525031","https://openalex.org/W2742040237","https://openalex.org/W1874167488","https://openalex.org/W2148352980","https://openalex.org/W2767921305","https://openalex.org/W1571856917","https://openalex.org/W3029599702","https://openalex.org/W1555946936"],"abstract_inverted_index":{"Zero-knowledge":[0],"succinct":[1],"arguments":[2],"of":[3,10,79,135,177,189,211,219],"knowledge":[4],"(zkSNARKs)":[5],"enable":[6],"efficient":[7],"privacy-preserving":[8],"proofs":[9,88],"membership":[11],"for":[12,75,96],"general":[13,97,175],"NP":[14,77,98],"languages.":[15,99],"Our":[16,87,171],"focus":[17,27],"in":[18,38,60,106,116,123,150],"this":[19,212],"work":[20],"is":[21,34,82,154],"on":[22,28],"post-quantum":[23,50,94],"zkSNARKs,":[24],"with":[25,199],"a":[26,35,73,113,120,131,191,200,207],"minimizing":[29],"proof":[30,40,74,117,148,195],"size.":[31],"Currently,":[32],"there":[33],"1000x":[36],"gap":[37],"the":[39,43,48,61,107,124,139,147,159,162,174],"size":[41,80,118,149],"between":[42],"best":[44,49],"pre-quantum":[45,141],"constructions":[46],"and":[47,55,119,161,168,183,222],"ones.":[51],"Here,":[52],"we":[53,111],"develop":[54,206],"implement":[56],"new":[57],"lattice-based":[58,103,152,209],"zkSNARKs":[59,95,104,142],"designated-verifier":[62,108],"preprocessing":[63,71,109],"model.":[64],"With":[65],"our":[66,151],"construction,":[67],"after":[68],"an":[69,76],"initial":[70],"step,":[72],"relation":[78],"2^20":[81],"just":[83],"over":[84,227],"16":[85],"KB.":[86],"are":[89,164],"10.3x":[90],"shorter":[91],"than":[92],"previous":[93,102],"Compared":[100,137],"to":[101,138],"(also":[105],"model),":[110],"obtain":[112],"42x":[114],"reduction":[115,122],"60x":[121],"prover's":[125],"running":[126],"time,":[127],"all":[128],"while":[129],"achieving":[130],"much":[132],"higher":[133],"level":[134],"soundness.":[136],"shortest":[140],"by":[143,214],"Groth":[144],"(Eurocrypt":[145,187],"2016),":[146],"construction":[153,172],"131x":[155],"longer,":[156],"but":[157],"both":[158],"prover":[160],"verifier":[163],"faster":[165],"(by":[166],"1.2x":[167],"2.8x,":[169],"respectively).":[170],"follows":[173],"blueprint":[176],"Bitansky":[178],"et":[179,185],"al.":[180,186],"(TCC":[181],"2013)":[182],"Boneh":[184],"2017)":[188],"combining":[190],"linear":[192],"probabilistically":[193],"checkable":[194],"(linear":[196],"PCP)":[197],"together":[198],"linear-only":[201,224],"vector":[202,225],"encryption":[203,226],"scheme.":[204],"We":[205],"concretely-efficient":[208],"instantiation":[210],"compiler":[213],"considering":[215],"quadratic":[216],"extension":[217],"fields":[218],"moderate":[220],"characteristic":[221],"using":[223],"rank-2":[228],"module":[229],"lattices.":[230]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2023,"cited_by_count":2}],"updated_date":"2026-04-21T08:09:41.155169","created_date":"2025-10-10T00:00:00"}