Cryptology ePrint Archive: Report 2018/453

Floppy-Sized Group Signatures from Lattices

Cecilia Boschini and Jan Camenisch and Gregory Neven

Abstract: We present the first lattice-based group signature scheme whose cryptographic artifacts are of size small enough to be usable in practice: for a group of $2^{25}$ users, signatures take 910 kB and public keys are 501 kB. Our scheme builds upon two recently proposed lattice-based primitives: the verifiable encryption scheme by Lyubashevsky and Neven (Eurocrypt 2017) and the signature scheme by Boschini, Camenisch, and Neven (IACR ePrint 2017). To achieve such short signatures and keys, we first re-define verifiable encryption to allow one to encrypt a function of the witness, rather than the full witness. This definition enables more efficient realizations of verifiable encryption and is of independent interest. Second, to minimize the size of the signatures and public keys of our group signature scheme, we revisit the proof of knowledge of a signature and the proofs in the verifiable encryption scheme provided in the respective papers.

Category / Keywords: public-key cryptography / Lattices, Group Signature, Verifiable Encryption

Original Publication (with minor differences): ACNS 2018

Date: received 15 May 2018, last revised 28 Jun 2019

Contact author: bos at zurich ibm com

Available format(s): PDF | BibTeX Citation

Version: 20190628:091017 (All versions of this report)

Short URL: ia.cr/2018/453