DocumentCode
2169339
Title
Zero-knowledge sets
Author
Micali, Silvio ; Rabin, Michael ; Kilian, Joe
Author_Institution
Lab. for Comput. Sci., MIT, Cambridge, MA, USA
fYear
2003
fDate
11-14 Oct. 2003
Firstpage
80
Lastpage
91
Abstract
We show how a polynomial-time prover can commit to an arbitrary finite set S of strings so that, later on, he can, for any string x, reveal with a proof whether x ∈ S or x ∉ S, without revealing any knowledge beyond the verity of these membership assertions. Our method is non interactive. Given a public random string, the prover commits to a set by simply posting a short and easily computable message. After that, each time it wants to prove whether a given element is in the set, it simply posts another short and easily computable proof, whose correctness can be verified by any one against the public random string. Our scheme is very efficient; no reasonable prior way to achieve our desiderata existed. Our new primitive immediately extends to providing zero-knowledge databases.
Keywords
computational complexity; cryptography; trees (mathematics); arbitrary finite set; elementary database; polynomial-time prover; random string; zero-knowledge database; zero-knowledge set; Computer science; Laboratories; Mathematics; Modular construction; National electric code; Polynomials; Security; Upper bound;
fLanguage
English
Publisher
ieee
Conference_Titel
Foundations of Computer Science, 2003. Proceedings. 44th Annual IEEE Symposium on
ISSN
0272-5428
Print_ISBN
0-7695-2040-5
Type
conf
DOI
10.1109/SFCS.2003.1238183
Filename
1238183
Link To Document