Cryptology ePrint Archive: Report 2017/216
SCRAPE: Scalable Randomness Attested by Public Entities
Ignacio Cascudo and Bernardo David
Abstract: Uniform randomness beacons whose output can be publicly attested to be unbiased are required in several cryptographic protocols.
A common approach to building such beacons is having a number parties run a coin tossing protocol with guaranteed output delivery (so that adversaries cannot simply keep honest parties from obtaining randomness, consequently halting protocols that rely on it). However, current constructions face serious scalability issues due to high computational and communication overheads.
We present a coin tossing protocol for an honest majority that allows for any entity to verify that an output was honestly generated by observing publicly available information (even after the execution is complete), while achieving both guaranteed output delivery and scalability.
The main building block of our construction is the first Publicly Verifiable Secret Sharing scheme for threshold access structures that requires only O(n) exponentiations. Previous schemes required O(nt) exponentiations (where t is the threshold) from each of the parties involved, making them unfit for scalable distributed randomness generation, which requires t=n/2 and thus O(n^2) exponentiations.
Category / Keywords: cryptographic protocols / Publicly Verifiable Secret Sharing, Randomness Generation, Guaranteed Output Delivery, Coin Tossing
Date: received 1 Mar 2017
Contact author: bernardo david at iohk io
Available format(s): PDF | BibTeX Citation
Version: 20170304:140233 (All versions of this report)
Short URL: ia.cr/2017/216
Discussion forum: Show discussion | Start new discussion
[ Cryptology ePrint archive ]