## Cryptology ePrint Archive: Report 2014/632

Verifiable Order Queries and Order Statistics on a List in Zero-Knowledge

Esha Ghosh and Olga Ohrimenko and Roberto Tamassia

Abstract: Given a list L with n elements, an order query on L asks whether a given element x in L precedes or follows another element y in L. More generally, given a set of m elements from L, an order query asks for the set ordered according to the positions of the elements in L. We introduce two formal models for answering order queries on a list in a verifiable manner and in zero-knowledge. We also present efficient constructions for these models.

Our first model, called \emph{zero-knowledge list} (ZKL), generalizes membership queries on a set to order queries on a list in zero-knowledge. We present a construction of ZKL based on zero-knowledge sets and a homomorphic integer commitment scheme.

Our second model, \emph{privacy-preserving authenticated list} (PPAL), extends authenticated data structures by adding a zero-knowledge privacy requirement. In this model, a list is outsourced by a trusted owner to an untrusted cloud server, which answers order queries issued by clients. The server also returns a proof of the answer, which is verified by the client using a digest of the list obtained from the owner. PPAL supports the security properties of data integrity against a malicious server and privacy protection against a malicious client. Though PPAL can be implemented using our ZKL construction, this construction is not as efficient as desired in cloud applications. To this end, we present an efficient PPAL construction based on blinded bilinear accumulators and bilinear maps, which is provably secure and zero-knowledge (e.g., hiding even the size of the list). Our PPAL construction uses proofs of $O(m)$ size and allows the client to verify a proof in $O(m)$ time.~The owner executes the setup in $O(n)$ time and space. The server uses $O(n)$ space to store the list and related authentication information, and takes $O(\min(m\log n, n))$ time to answer a query and generate a proof.

Both our ZKL and PPAL constructions have one round of communication and are secure in the random oracle model.

Finally, we show that our ZKL and PPAL frameworks can be extended to support fundamental statistical queries (including maximum, minimum, median, threshold and top-t elements) efficiently and in zero-knowledge.

Category / Keywords: order queries, order statistics, zero-knowledge, integrity, authenticated data structures bilin- ear accumulators, leakage-free redactable signatures, cloud security, cloud-privacy

Original Publication (with major differences): Applied Cryptography and Network Security 2015
DOI:
10.1007/978-3-319-28166-7_8

Date: received 17 Aug 2014, last revised 11 Mar 2016

Contact author: esha_ghosh at brown edu

Available format(s): PDF | BibTeX Citation

Short URL: ia.cr/2014/632

[ Cryptology ePrint archive ]