Unbiasable Verifiable Random Functions from Generic Assumptions

Nicholas Brandt

Paper 2025/766

Unbiasable Verifiable Random Functions from Generic Assumptions

Nicholas Brandt

, ETH Zurich

Abstract

We present conceptually simple and practically competitive constructions of verifiable random functions (VRF) that fulfill strong notions of unbiasability recently introduced by Giunta and Stewart. VRFs with such strong properties were previously only known in the random oracle model or from the decisional Diffie–Hellman assumption with preprocessing. In contrast, our constructions are based on generic assumptions and are thus the first to be plausibly post-quantum secure in the standard model (without any setup). Moreover, our transformation preserves useful properties of the underlying VRF such as aggregatability, (a form of) key-homomorphism, small entropy loss, and computability in ${NC}^{1}$ ; and it even yields a symmetric unbiasable VRF whose pseudorandomness holds even when the input and the key are swapped. To underscore the importance of a provably unbiasability in the standard model, we showcase a potential security weakness in the folklore VUF-then-Hash construction. Lastly, we discuss and remedy several issues regarding the definition of unbiasability, and outline a path towards a lattice-based instantiation of VRFs.

Note: Reorganization, add symmetric VRF.

Metadata

Available format(s): PDF
Category: Public-key cryptography
Publication info: Preprint.
Keywords: verifiable random functions unbiasability non-black-box
Contact author(s): crypto @ nicholasbrandt de
History: 2025-05-28: last of 2 revisions; 2025-04-29: received; See all versions
Short URL: https://ia.cr/2025/766
License: CC BY-SA

BibTeX

@misc{cryptoeprint:2025/766,
      author = {Nicholas Brandt},
      title = {Unbiasable Verifiable Random Functions from Generic Assumptions},
      howpublished = {Cryptology {ePrint} Archive, Paper 2025/766},
      year = {2025},
      url = {https://eprint.iacr.org/2025/766}
}