Paper 2024/762

Constant-Cost Batched Partial Decryption in Threshold Encryption

Sora Suegami, Ethereum Foundation
Shinsaku Ashizawa, Invers Inc
Kyohei Shibano, The University of Tokyo
Abstract

Threshold public key encryption schemes distribute secret keys among multiple parties, known as the committee, to reduce reliance on a single trusted entity. However, existing schemes face inefficiencies as the committee should perform computation and communication for decryption of each individual ciphertext. As the number of ciphertexts being decrypted per unit of time increases, this can limit the number of committee parties and their decentralization due to increased hardware requirements, heightening the risk of adversarial collusion. To address this, we introduce tag-based batched threshold encryption (TBTE), which ensures constant computational and communication costs per committee member, independent of the number of ciphertexts being decrypted in batch under distinct decryption policies. The TBTE scheme is constructed over bilinear groups in the random oracle model and secure in the algebraic group model, assuming the hardness of the $(q_1,q_2)$-discrete logarithm problem and the EAV-security of the symmetric-key encryption scheme. Evaluation of our implementation demonstrates constant data size, specifically 48 bytes received and 56 bytes sent, and constant execution time for each committee party during decryption, even for various batch sizes up to $2^{20}$.

Note: We redefined the witness encryption scheme proposed in the pre-revision paper as a threshold encryption scheme while maintaining the same core idea. Additionally, we replaced the polynomial commitment used in the pre-revision paper with the KZG commitment to simplify the construction and evaluated the benchmarks of the implementation for this new construction.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint.
Keywords
threshold encryptionwitness encryptionone-time programs
Contact author(s)
sorasuegami @ pse dev
History
2024-10-04: revised
2024-05-18: received
See all versions
Short URL
https://ia.cr/2024/762
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2024/762,
      author = {Sora Suegami and Shinsaku Ashizawa and Kyohei Shibano},
      title = {Constant-Cost Batched Partial Decryption in Threshold Encryption},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/762},
      year = {2024},
      url = {https://eprint.iacr.org/2024/762}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.