Paper 2021/437

Formal security analysis of MPC-in-the-head zero-knowledge protocols

Nikolaj Sidorenco, Sabine Oechsner, and Bas Spitters

Abstract

Zero-knowledge proofs allow a prover to convince a verifier of the veracity of a statement without revealing any other information. An interesting class of zero-knowledge protocols are those following the MPC-in-the-head paradigm (Ishai et al., STOC ’07) which use secure multiparty computation (MPC) protocols as the basis. Efficient instances of this paradigm have emerged as an active research topic in the last years, starting with ZKBoo (Giacomelli et al., USENIX ’16). Zero-knowledge protocols are a vital building block in the design of privacy-preserving technologies as well as cryptographic primitives like digital signature schemes that provide post-quantum security. This work investigates the security of zero-knowledge protocols following the MPC-in-the-head paradigm. We provide the first machine-checked security proof of such a protocol on the example of ZKBoo. Our proofs are checked in the EasyCrypt proof assistant. To enable a modular security proof, we develop a new security notion for the MPC protocols used in MPC-in-the-head zero-knowledge protocols. This allows us to recast existing security proofs in a black-box fashion which we believe to be of independent interest.

Metadata
Available format(s)
PDF
Category
Foundations
Publication info
Published elsewhere. 2021 IEEE 34th Computer Security Foundations Symposium (CSF)
DOI
10.1109/CSF51468.2021.00050
Keywords
zero knowledgesecure multi-party computationformal security analysiseasycrypt
Contact author(s)
sidorenco @ cs au dk
oechsner @ cs au dk
spitters @ cs au dk
History
2021-09-03: revised
2021-04-06: received
See all versions
Short URL
https://ia.cr/2021/437
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/437,
      author = {Nikolaj Sidorenco and Sabine Oechsner and Bas Spitters},
      title = {Formal security analysis of {MPC}-in-the-head zero-knowledge protocols},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/437},
      year = {2021},
      doi = {10.1109/CSF51468.2021.00050},
      url = {https://eprint.iacr.org/2021/437}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.