2024 - T3 - WS2 - Emerging topics in design and cryptanalysis of post-quantum schemes

Collection 2024 - T3 - WS2 - Emerging topics in design and cryptanalysis of post-quantum schemes

Organisateur(s) Chakraborty, Olive ; Kahrobaei, Delaram ; Perret, Ludovic ; Robinson, Angela
Date(s) 04/11/2024 - 08/11/2024
URL associée https://indico.math.cnrs.fr/event/5777/
17 20

The Polynomial-IOP Vision of the Latest MPCitH Frameworks for Signature Schemes

De Thibauld Feneuil

The MPC-in-the-Head (MPCitH) paradigm is a versatile framework to design zero-knowledge proofs of knowledge, by relying on secure multi-party computation (MPC) techniques. Combined with the Fiat-Shamir transform, the MPCitH paradigm provides a useful tool for building practical signatures. Since 2016, the framework has been improved in a series of works which makes it a practical and tunable tool. Moreover, while it was first used to build signatures based only on symmetric primitives, it has been shown showed that it can be also useful in other research fields of post-quantum cryptography. Since 2022, the MPC-in-the-Head framework has found a lot of interest in code-based, rank-based, and multivariate cryptography, in addition to symmetric-based cryptography. For this reason, this paradigm has been utilized in 9 out of the 40 candidates selected for the first round of the recent NIST call for additional post-quantum signatures. In this talk, I will speak about the latest MPC-in-the-Head techniques. In 2023, two new techniques have been proposed: the VOLE-in-the-Head (VOLEitH) and Threshold-Computation-in-the-Head (TCitH) frameworks. We can observe that these frameworks can be interpreted in another formalism that is very popular in the SNARK state of the art, namely the formalism of the Polynomial Interactive Oracle Proofs (P-IOP). In this talk, I will present the VOLEitH and TCitH frameworks in a unified way using this alternative formalism. The main difference between the techniques used for signatures and those for SNARK is how the underlying polynomials are committed. After presenting the zero-knowledge protocol, I will thus discuss how to commit to polynomials when building signatures. Finally, I will provide an overview of how those recent frameworks impact the performance of the MPCitH signature schemes submitted to the NIST call for additional post-quantum signatures.

Informations sur la vidéo

Données de citation

  • DOI 10.57987/IHP.2024.T3.WS2.017
  • Citer cette vidéo Feneuil, Thibauld (08/11/2024). The Polynomial-IOP Vision of the Latest MPCitH Frameworks for Signature Schemes. IHP. Audiovisual resource. DOI: 10.57987/IHP.2024.T3.WS2.017
  • URL https://dx.doi.org/10.57987/IHP.2024.T3.WS2.017

Bibliographie

  • [IKOS07] Ishai, Kushilevitz, Ostrovsky, Sahai. Zero-Knowledge from Secure Multiparty Computation. STOC 2007.
  • [BBDK+23] Baum, Braun, Delpech de Saint Guilhem, Klooß, Orsini, Roy, Scholl. Publicly Verifiable Zero-Knowledge and Post-Quantum Signatures from VOLE-in-the-Head. Crypto 2023.
  • [FR23a] Feneuil, Rivain. Threshold Linear Secret Sharing to the Rescue of MPC-in-the-Head. Asiacrypt 2023.
  • [FR23b] Feneuil, Rivain. Threshold Computation in the Head: Improved Framework for Post-Quantum Signatures and Zero-Knowledge Arguments. ePrint 2023.

Dernières questions liées sur MathOverflow

Pour poser une question, votre compte Carmin.tv doit être connecté à mathoverflow

Poser une question sur MathOverflow




Inscrivez-vous

  • Mettez des vidéos en favori
  • Ajoutez des vidéos à regarder plus tard &
    conservez votre historique de consultation
  • Commentez avec la communauté
    scientifique
  • Recevez des notifications de mise à jour
    de vos sujets favoris
Donner son avis