TY - GEN
T1 - Collision resistant hashing for paranoids
T2 - 37th Annual International Conference on the Theory and Applications of Cryptographic Techniques, EUROCRYPT 2018
AU - Komargodski, Ilan
AU - Naor, Moni
AU - Yogev, Eylon
N1 - Publisher Copyright: © 2018, International Association for Cryptologic Research.
PY - 2018
Y1 - 2018
N2 - A collision resistant hash (CRH) function is one that compresses its input, yet it is hard to find a collision, i.e. a x1≠ x2 s.t. h(x1) = h(x2). Collision resistant hash functions are one of the more useful cryptographic primitives both in theory and in practice and two prominent applications are in signature schemes and succinct zero-knowledge arguments. In this work we consider a relaxation of the above requirement that we call Multi-CRH: a function where it is hard to find x1, x2, …, xk which are all distinct, yet h(x1) = h(x2) = ⋯ = h(xk). We show that for some of the major applications of CRH functions it is possible to replace them by the weaker notion of a Multi-CRH, albeit at the price of adding interaction: we show a constant-round statistically-hiding commitment scheme with succinct interaction (committing to poly(n) bits requires exchanging O~ (n) bits) that can be opened locally (without revealing the full string). This in turn can be used to provide succinct arguments for any NP statement. We formulate four possible worlds of hashing-related assumptions (in the spirit of Impagliazzo’s worlds). They are (1) Nocrypt, where no one-way functions exist, (2) Unihash, where one-way functions exist, and hence also UOWHFs and signature schemes, but no Multi-CRH functions exist, (3) Minihash, where Multi-CRH functions exist but no CRH functions exist, and (4) Hashomania, where CRH functions exist. We show that these four worlds are distinct in a black-box model: we show a separation of CRH from Multi-CRH and a separation of Multi-CRH from one-way functions.
AB - A collision resistant hash (CRH) function is one that compresses its input, yet it is hard to find a collision, i.e. a x1≠ x2 s.t. h(x1) = h(x2). Collision resistant hash functions are one of the more useful cryptographic primitives both in theory and in practice and two prominent applications are in signature schemes and succinct zero-knowledge arguments. In this work we consider a relaxation of the above requirement that we call Multi-CRH: a function where it is hard to find x1, x2, …, xk which are all distinct, yet h(x1) = h(x2) = ⋯ = h(xk). We show that for some of the major applications of CRH functions it is possible to replace them by the weaker notion of a Multi-CRH, albeit at the price of adding interaction: we show a constant-round statistically-hiding commitment scheme with succinct interaction (committing to poly(n) bits requires exchanging O~ (n) bits) that can be opened locally (without revealing the full string). This in turn can be used to provide succinct arguments for any NP statement. We formulate four possible worlds of hashing-related assumptions (in the spirit of Impagliazzo’s worlds). They are (1) Nocrypt, where no one-way functions exist, (2) Unihash, where one-way functions exist, and hence also UOWHFs and signature schemes, but no Multi-CRH functions exist, (3) Minihash, where Multi-CRH functions exist but no CRH functions exist, and (4) Hashomania, where CRH functions exist. We show that these four worlds are distinct in a black-box model: we show a separation of CRH from Multi-CRH and a separation of Multi-CRH from one-way functions.
UR - http://www.scopus.com/inward/record.url?scp=85045895535&partnerID=8YFLogxK
U2 - 10.1007/978-3-319-78375-8_6
DO - 10.1007/978-3-319-78375-8_6
M3 - منشور من مؤتمر
SN - 9783319783741
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 162
EP - 194
BT - Advances in Cryptology - EUROCRYPT 2018 - 37th Annual International Conference on the Theory and Applications of Cryptographic Techniques, 2018 Proceedings
A2 - Nielsen, Jesper Buus
A2 - Rijmen, Vincent
PB - Springer Verlag
Y2 - 29 April 2018 through 3 May 2018
ER -