DualRing: Generic Construction of Ring Signatures with Efficient Instantiations

Tsz Hon Yuen; Muhammed F. Esgin; Joseph K. Liu; Man Ho Au; Zhimin Ding

doi:10.1007/978-3-030-84242-0_10

DualRing: Generic Construction of Ring Signatures with Efficient Instantiations

Tsz Hon Yuen, Muhammed F. Esgin, Joseph K. Liu, Man Ho Au, Zhimin Ding

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

40 Citations (Scopus)

Abstract

We introduce a novel generic ring signature construction, called DualRing, which can be built from several canonical identification schemes (such as Schnorr identification). DualRing differs from the classical ring signatures by its formation of two rings: a ring of commitments and a ring of challenges. It has a structural difference from the common ring signature approaches based on accumulators or zero-knowledge proofs of the signer index. Comparatively, DualRing has a number of unique advantages. Considering the DL-based setting by using Schnorr identification scheme, our DualRing structure allows the signature size to be compressed into logarithmic size via an argument of knowledge system such as Bulletproofs. We further improve on the Bulletproofs argument system to eliminate about half of the computation while maintaining the same proof size. We call this Sum Argument and it can be of independent interest. This DL-based construction, named DualRing-EC, using Schnorr identification with Sum Argument has the shortest ring signature size in the literature without using trusted setup. Considering the lattice-based setting, we instantiate DualRing by a canonical identification based on M-LWE and M-SIS. In practice, we achieve the shortest lattice-based ring signature, named DualRing-LB, when the ring size is between 4 and 2000. DualRing-LB is also 5 × faster in signing and verification than the fastest lattice-based scheme by Esgin et al. (CRYPTO’19).

Original language	English
Title of host publication	Proceedings of the 41st Annual International Cryptology Conference (Crypto 2021)
Editors	Tal Malkin, Chris Peikert
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	251-281
Number of pages	31
ISBN (Print)	9783030842413
DOIs	https://doi.org/10.1007/978-3-030-84242-0_10
Publication status	Published - 2021
Event	41st Annual International Cryptology Conference, CRYPTO 2021 - Virtual, Online Duration: 16 Aug 2021 → 20 Aug 2021

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	12825 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	41st Annual International Cryptology Conference, CRYPTO 2021
City	Virtual, Online
Period	16/08/21 → 20/08/21

Keywords

Generic construction
M-LWE/SIS
Ring signature
Sum argument

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

More information

10.1007/978-3-030-84242-0_10

Cite this

Yuen, T. H., Esgin, M. F., Liu, J. K., Au, M. H., & Ding, Z. (2021). DualRing: Generic Construction of Ring Signatures with Efficient Instantiations. In T. Malkin, & C. Peikert (Eds.), Proceedings of the 41st Annual International Cryptology Conference (Crypto 2021) (pp. 251-281). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12825 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-030-84242-0_10

Yuen, Tsz Hon ; Esgin, Muhammed F. ; Liu, Joseph K. et al. / DualRing: Generic Construction of Ring Signatures with Efficient Instantiations. Proceedings of the 41st Annual International Cryptology Conference (Crypto 2021). editor / Tal Malkin ; Chris Peikert. Springer Science and Business Media Deutschland GmbH, 2021. pp. 251-281 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{4e485c54a4854a88974f3bab02dc1cc2,

title = "DualRing: Generic Construction of Ring Signatures with Efficient Instantiations",

abstract = "We introduce a novel generic ring signature construction, called DualRing, which can be built from several canonical identification schemes (such as Schnorr identification). DualRing differs from the classical ring signatures by its formation of two rings: a ring of commitments and a ring of challenges. It has a structural difference from the common ring signature approaches based on accumulators or zero-knowledge proofs of the signer index. Comparatively, DualRing has a number of unique advantages. Considering the DL-based setting by using Schnorr identification scheme, our DualRing structure allows the signature size to be compressed into logarithmic size via an argument of knowledge system such as Bulletproofs. We further improve on the Bulletproofs argument system to eliminate about half of the computation while maintaining the same proof size. We call this Sum Argument and it can be of independent interest. This DL-based construction, named DualRing-EC, using Schnorr identification with Sum Argument has the shortest ring signature size in the literature without using trusted setup. Considering the lattice-based setting, we instantiate DualRing by a canonical identification based on M-LWE and M-SIS. In practice, we achieve the shortest lattice-based ring signature, named DualRing-LB, when the ring size is between 4 and 2000. DualRing-LB is also 5 × faster in signing and verification than the fastest lattice-based scheme by Esgin et al. (CRYPTO{\textquoteright}19).",

keywords = "Generic construction, M-LWE/SIS, Ring signature, Sum argument",

author = "Yuen, {Tsz Hon} and Esgin, {Muhammed F.} and Liu, {Joseph K.} and Au, {Man Ho} and Zhimin Ding",

note = "Publisher Copyright: {\textcopyright} 2021, International Association for Cryptologic Research.; 41st Annual International Cryptology Conference, CRYPTO 2021 ; Conference date: 16-08-2021 Through 20-08-2021",

year = "2021",

doi = "10.1007/978-3-030-84242-0_10",

language = "English",

isbn = "9783030842413",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "251--281",

editor = "Tal Malkin and Chris Peikert",

booktitle = "Proceedings of the 41st Annual International Cryptology Conference (Crypto 2021)",

address = "Germany",

}

Yuen, TH, Esgin, MF, Liu, JK, Au, MH & Ding, Z 2021, DualRing: Generic Construction of Ring Signatures with Efficient Instantiations. in T Malkin & C Peikert (eds), Proceedings of the 41st Annual International Cryptology Conference (Crypto 2021). Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 12825 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 251-281, 41st Annual International Cryptology Conference, CRYPTO 2021, Virtual, Online, 16/08/21. https://doi.org/10.1007/978-3-030-84242-0_10

DualRing: Generic Construction of Ring Signatures with Efficient Instantiations. / Yuen, Tsz Hon; Esgin, Muhammed F.; Liu, Joseph K. et al.
Proceedings of the 41st Annual International Cryptology Conference (Crypto 2021). ed. / Tal Malkin; Chris Peikert. Springer Science and Business Media Deutschland GmbH, 2021. p. 251-281 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12825 LNCS).

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

TY - GEN

T1 - DualRing: Generic Construction of Ring Signatures with Efficient Instantiations

AU - Yuen, Tsz Hon

AU - Esgin, Muhammed F.

AU - Liu, Joseph K.

AU - Au, Man Ho

AU - Ding, Zhimin

PY - 2021

Y1 - 2021

N2 - We introduce a novel generic ring signature construction, called DualRing, which can be built from several canonical identification schemes (such as Schnorr identification). DualRing differs from the classical ring signatures by its formation of two rings: a ring of commitments and a ring of challenges. It has a structural difference from the common ring signature approaches based on accumulators or zero-knowledge proofs of the signer index. Comparatively, DualRing has a number of unique advantages. Considering the DL-based setting by using Schnorr identification scheme, our DualRing structure allows the signature size to be compressed into logarithmic size via an argument of knowledge system such as Bulletproofs. We further improve on the Bulletproofs argument system to eliminate about half of the computation while maintaining the same proof size. We call this Sum Argument and it can be of independent interest. This DL-based construction, named DualRing-EC, using Schnorr identification with Sum Argument has the shortest ring signature size in the literature without using trusted setup. Considering the lattice-based setting, we instantiate DualRing by a canonical identification based on M-LWE and M-SIS. In practice, we achieve the shortest lattice-based ring signature, named DualRing-LB, when the ring size is between 4 and 2000. DualRing-LB is also 5 × faster in signing and verification than the fastest lattice-based scheme by Esgin et al. (CRYPTO’19).

AB - We introduce a novel generic ring signature construction, called DualRing, which can be built from several canonical identification schemes (such as Schnorr identification). DualRing differs from the classical ring signatures by its formation of two rings: a ring of commitments and a ring of challenges. It has a structural difference from the common ring signature approaches based on accumulators or zero-knowledge proofs of the signer index. Comparatively, DualRing has a number of unique advantages. Considering the DL-based setting by using Schnorr identification scheme, our DualRing structure allows the signature size to be compressed into logarithmic size via an argument of knowledge system such as Bulletproofs. We further improve on the Bulletproofs argument system to eliminate about half of the computation while maintaining the same proof size. We call this Sum Argument and it can be of independent interest. This DL-based construction, named DualRing-EC, using Schnorr identification with Sum Argument has the shortest ring signature size in the literature without using trusted setup. Considering the lattice-based setting, we instantiate DualRing by a canonical identification based on M-LWE and M-SIS. In practice, we achieve the shortest lattice-based ring signature, named DualRing-LB, when the ring size is between 4 and 2000. DualRing-LB is also 5 × faster in signing and verification than the fastest lattice-based scheme by Esgin et al. (CRYPTO’19).

KW - Generic construction

KW - M-LWE/SIS

KW - Ring signature

KW - Sum argument

UR - http://www.scopus.com/inward/record.url?scp=85115175628&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-84242-0_10

DO - 10.1007/978-3-030-84242-0_10

M3 - Conference article published in proceeding or book

AN - SCOPUS:85115175628

SN - 9783030842413

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 251

EP - 281

BT - Proceedings of the 41st Annual International Cryptology Conference (Crypto 2021)

A2 - Malkin, Tal

A2 - Peikert, Chris

PB - Springer Science and Business Media Deutschland GmbH

T2 - 41st Annual International Cryptology Conference, CRYPTO 2021

Y2 - 16 August 2021 through 20 August 2021

ER -

Yuen TH, Esgin MF, Liu JK, Au MH, Ding Z. DualRing: Generic Construction of Ring Signatures with Efficient Instantiations. In Malkin T, Peikert C, editors, Proceedings of the 41st Annual International Cryptology Conference (Crypto 2021). Springer Science and Business Media Deutschland GmbH. 2021. p. 251-281. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-84242-0_10

DualRing: Generic Construction of Ring Signatures with Efficient Instantiations

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

More information

Other files and links

Fingerprint

Cite this