We investigate the question of minimizing the communication overhead involved in making non-interactive zero-knowledge proofs and show that if fully homomorphic encryption exists then it is possible to minimize the size of non-interactive zero-knowledge proofs and get proofs that are of the same size as the witnesses.
Our technique is applicable to many types of non-interactive zero-knowledge proofs. We apply it to both standard non-interactive zero-knowledge proofs and to universally composable non-interactive zero-knowledge proofs. The technique can also be applied outside the realm of non-interactive zero-knowledge proofs, for instance to get witness-size interactive zero-knowledge proofs in the plain model without any setup.
Category / Keywords: foundations / Non-interactive zero-knowledge proofs, fully homomorphic encryption Date: received 6 Jan 2011 Contact author: j groth at ucl ac uk Available format(s): PDF | BibTeX Citation Version: 20110108:014956 (All versions of this report) Short URL: ia.cr/2011/012 Discussion forum: Show discussion | Start new discussion