Paper 2016/997

More Efficient Commitments from Structured Lattice Assumptions

Carsten Baum, Ivan Damgård, Vadim Lyubashevsky, Sabine Oechsner, and Chris Peikert


We present a practical construction of an additively homomorphic commitment scheme based on structured lattice assumptions, together with a zero-knowledge proof of opening knowledge. Our scheme is a design improvement over the previous work of Benhamouda et al. in that it is not restricted to being statistically binding. While it is possible to instantiate our scheme to be statistically binding or statistically hiding, it is most efficient when both hiding and binding properties are only computational. This results in approximately a factor of 4 reduction in the size of the proof and a factor of 6 reduction in the size of the commitment over the aforementioned scheme.

Note: Improved version with configurable binding and hiding, better comparison with previous work.

Available format(s)
Publication info
Published elsewhere. 11th Conference on Security and Cryptography for Networks (SCN 2018)
Lattice-based cryptographycommitmentszero-knowledge
Contact author(s)
carsten baum @ biu ac il
2018-06-21: last of 3 revisions
2016-10-20: received
See all versions
Short URL
Creative Commons Attribution


      author = {Carsten Baum and Ivan Damgård and Vadim Lyubashevsky and Sabine Oechsner and Chris Peikert},
      title = {More Efficient Commitments from Structured Lattice Assumptions},
      howpublished = {Cryptology ePrint Archive, Paper 2016/997},
      year = {2016},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.