TY - GEN
T1 - Lattice-Based Zero-Knowledge Proofs for Blockchain Confidential Transactions
AU - Gao, Shang
AU - Zheng, Tianyu
AU - Guo, Yu
AU - Peng, Zhe
AU - Xiao, Bin
N1 - Publisher Copyright:
© International Association for Cryptologic Research 2025.
PY - 2025/5
Y1 - 2025/5
N2 - We propose new zero-knowledge proofs for efficient and postquantum ring confidential transaction (RingCT) protocols based on lattice assumptions in Blockchain systems. First, we introduce an inner-product based linear equation satisfiability approach for balance proofs with a wide range (e.g., 64-bit precision). Unlike existing bal-ance proofs (MatRiCT and MatRiCT+) that require additional proofs for some “corrector values”, our approach avoids the corrector values for better efficiency. Furthermore, we design a ring signature scheme to efficiently hide a user’s identity in large anonymity sets. Different from existing approaches that adopt a one-out-of-many proof (MatRiCT and MatRiCT+), we show that a linear sum proof suffices in ring signa-tures, which could avoid the costly binary proof part. We further use the idea of “unbalanced” relations to build a logarithmic-size ring signa-ture scheme. Finally, we show how to adopt these techniques in RingCT protocols and implement a prototype to compare the performance with existing approaches. The results show our solutions can reduce up to 50% 50% and 20% 20% proof size, 30% 30% and 20% 20% proving time, 20% 20% and 20% 20% veri-fication time of MatRiCT and MatRiCT+, respectively. We also believe our techniques are of independent interest for other applications and are applicable in a generic setting.
AB - We propose new zero-knowledge proofs for efficient and postquantum ring confidential transaction (RingCT) protocols based on lattice assumptions in Blockchain systems. First, we introduce an inner-product based linear equation satisfiability approach for balance proofs with a wide range (e.g., 64-bit precision). Unlike existing bal-ance proofs (MatRiCT and MatRiCT+) that require additional proofs for some “corrector values”, our approach avoids the corrector values for better efficiency. Furthermore, we design a ring signature scheme to efficiently hide a user’s identity in large anonymity sets. Different from existing approaches that adopt a one-out-of-many proof (MatRiCT and MatRiCT+), we show that a linear sum proof suffices in ring signa-tures, which could avoid the costly binary proof part. We further use the idea of “unbalanced” relations to build a logarithmic-size ring signa-ture scheme. Finally, we show how to adopt these techniques in RingCT protocols and implement a prototype to compare the performance with existing approaches. The results show our solutions can reduce up to 50% 50% and 20% 20% proof size, 30% 30% and 20% 20% proving time, 20% 20% and 20% 20% veri-fication time of MatRiCT and MatRiCT+, respectively. We also believe our techniques are of independent interest for other applications and are applicable in a generic setting.
KW - balance proof
KW - blockchain
KW - Lattice-based cryptography
KW - ring signature
KW - RingCT
KW - zero-knowledge proof
UR - https://www.scopus.com/pages/publications/105005935295
U2 - 10.1007/978-3-031-91832-2_5
DO - 10.1007/978-3-031-91832-2_5
M3 - Conference article published in proceeding or book
AN - SCOPUS:105005935295
SN - 9783031918315
T3 - Lecture Notes in Computer Science
SP - 137
EP - 168
BT - Public-Key Cryptography – PKC 2025 - 28th IACR International Conference on Practice and Theory of Public-Key Cryptography, Proceedings
A2 - Jager, Tibor
A2 - Pan, Jiaxin
PB - Springer Science and Business Media Deutschland GmbH
T2 - 28th IACR International Conference on Practice and Theory of Public Key Cryptography, PKC 2025
Y2 - 12 May 2025 through 15 May 2025
ER -