Paper 2024/474
Accumulation without Homomorphism
, New York University, University of Pennsylvania, New York UniversityAbstract
Accumulation schemes are a simple yet powerful primitive that enable highly efficient constructions of incrementally verifiable computation (IVC). Unfortunately, all prior accumulation schemes rely on homomorphic vector commitments whose security is based on public-key assumptions. It is an interesting open question to construct efficient accumulation schemes that avoid the need for such assumptions. In this paper, we answer this question affirmatively by constructing an accumulation scheme from *non-homomorphic* vector commitments which can be realized from solely symmetric-key assumptions (e.g. Merkle trees). We overcome the need for homomorphisms by instead performing spot-checks over error-correcting encodings of the committed vectors. Unlike prior accumulation schemes, our scheme only supports a bounded number of accumulation steps. We show that such *bounded-depth* accumulation still suffices to construct proof-carrying data (a generalization of IVC). We also demonstrate several optimizations to our PCD construction which greatly improve concrete efficiency.
Metadata
- Available format(s)
-
PDF
- Category
- Cryptographic protocols
- Publication info
- Preprint.
- Keywords
- proof-carrying dataincrementally verifiable computationaccumulation schemesfolding
- Contact author(s)
-
bb @ nyu edu
prat @ upenn edu
wdnguyen @ stanford edu
ww @ priv pub - History
- 2024-09-26: last of 2 revisions
- 2024-03-21: received
- See all versions
- Short URL
- https://ia.cr/2024/474
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2024/474,
author = {Benedikt Bünz and Pratyush Mishra and Wilson Nguyen and William Wang},
title = {Accumulation without Homomorphism},
howpublished = {Cryptology {ePrint} Archive, Paper 2024/474},
year = {2024},
url = {https://eprint.iacr.org/2024/474}
}
