Practical Generic Construction of Fully Collision Resistant Chameleon Hash and Instantiations

Siyue Yao; Zhikang Xie; Man Ho Au

Practical Generic Construction of Fully Collision Resistant Chameleon Hash and Instantiations

Siyue Yao, Zhikang Xie, Man Ho Au

Department of Computing

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

Abstract

A chameleon hash (CH) function is a trapdoor hash defined over a public hash key and a related secret trapdoor key. With the trapdoor, it is possible to find collisions between two different messages sharing the same hash value, while without it, the function acts like a normal hash that is collision-resistant. Full collision resistance (F-CollRes) is the strongest known definition of collision resistance, which can provide a high level of security assurance, even after collisions are publicly known. Existing constructions that satisfy this strong notion use non-interactive zero-knowledge (NIZK) proofs for AND or OR relations as underlying building blocks.
In this paper, we present a novel generic construction for F-CollRes CHs which only requires NIZKs for single relations, without involving relatively complex AND or OR relations. The core of our approach is to require the underlying CH, which only satisfies a weaker collision resistance, to possess a property named preimage computability, which is easily achievable in certain mathematical structures like RSA and lattices.
Furthermore, we provide two concrete instantiations for our generic construction in the random oracle model, based on RSA and lattices. This further demonstrates the practicality and conceptual simplicity of our generic method.

Original language	English
Title of host publication	Information Security and Cryptology: 20th International Conference, Inscrypt 2024, Kunming, China, December 14–16, 2024, Revised Selected Papers, Part II
Pages	23 - 43
Publication status	Published - 3 May 2025

Cite this

@inproceedings{1c29ed9e0a5d43cfab47e2bb069823a3,

title = "Practical Generic Construction of Fully Collision Resistant Chameleon Hash and Instantiations",

abstract = "A chameleon hash (CH) function is a trapdoor hash defined over a public hash key and a related secret trapdoor key. With the trapdoor, it is possible to find collisions between two different messages sharing the same hash value, while without it, the function acts like a normal hash that is collision-resistant. Full collision resistance (F-CollRes) is the strongest known definition of collision resistance, which can provide a high level of security assurance, even after collisions are publicly known. Existing constructions that satisfy this strong notion use non-interactive zero-knowledge (NIZK) proofs for AND or OR relations as underlying building blocks. In this paper, we present a novel generic construction for F-CollRes CHs which only requires NIZKs for single relations, without involving relatively complex AND or OR relations. The core of our approach is to require the underlying CH, which only satisfies a weaker collision resistance, to possess a property named preimage computability, which is easily achievable in certain mathematical structures like RSA and lattices. Furthermore, we provide two concrete instantiations for our generic construction in the random oracle model, based on RSA and lattices. This further demonstrates the practicality and conceptual simplicity of our generic method.",

author = "Siyue Yao and Zhikang Xie and Au, \{Man Ho\}",

year = "2025",

month = may,

day = "3",

language = "English",

pages = "23 -- 43",

booktitle = "Information Security and Cryptology: 20th International Conference, Inscrypt 2024, Kunming, China, December 14–16, 2024, Revised Selected Papers, Part II",

}

Practical Generic Construction of Fully Collision Resistant Chameleon Hash and Instantiations. / Yao, Siyue; Xie, Zhikang; Au, Man Ho.
Information Security and Cryptology: 20th International Conference, Inscrypt 2024, Kunming, China, December 14–16, 2024, Revised Selected Papers, Part II. 2025. p. 23 - 43.

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

TY - GEN

T1 - Practical Generic Construction of Fully Collision Resistant Chameleon Hash and Instantiations

AU - Yao, Siyue

AU - Xie, Zhikang

AU - Au, Man Ho

PY - 2025/5/3

Y1 - 2025/5/3

N2 - A chameleon hash (CH) function is a trapdoor hash defined over a public hash key and a related secret trapdoor key. With the trapdoor, it is possible to find collisions between two different messages sharing the same hash value, while without it, the function acts like a normal hash that is collision-resistant. Full collision resistance (F-CollRes) is the strongest known definition of collision resistance, which can provide a high level of security assurance, even after collisions are publicly known. Existing constructions that satisfy this strong notion use non-interactive zero-knowledge (NIZK) proofs for AND or OR relations as underlying building blocks. In this paper, we present a novel generic construction for F-CollRes CHs which only requires NIZKs for single relations, without involving relatively complex AND or OR relations. The core of our approach is to require the underlying CH, which only satisfies a weaker collision resistance, to possess a property named preimage computability, which is easily achievable in certain mathematical structures like RSA and lattices. Furthermore, we provide two concrete instantiations for our generic construction in the random oracle model, based on RSA and lattices. This further demonstrates the practicality and conceptual simplicity of our generic method.

AB - A chameleon hash (CH) function is a trapdoor hash defined over a public hash key and a related secret trapdoor key. With the trapdoor, it is possible to find collisions between two different messages sharing the same hash value, while without it, the function acts like a normal hash that is collision-resistant. Full collision resistance (F-CollRes) is the strongest known definition of collision resistance, which can provide a high level of security assurance, even after collisions are publicly known. Existing constructions that satisfy this strong notion use non-interactive zero-knowledge (NIZK) proofs for AND or OR relations as underlying building blocks. In this paper, we present a novel generic construction for F-CollRes CHs which only requires NIZKs for single relations, without involving relatively complex AND or OR relations. The core of our approach is to require the underlying CH, which only satisfies a weaker collision resistance, to possess a property named preimage computability, which is easily achievable in certain mathematical structures like RSA and lattices. Furthermore, we provide two concrete instantiations for our generic construction in the random oracle model, based on RSA and lattices. This further demonstrates the practicality and conceptual simplicity of our generic method.

UR - https://doi.org/10.1007/978-981-96-4734-7_2

M3 - Conference article published in proceeding or book

SP - 23

EP - 43

BT - Information Security and Cryptology: 20th International Conference, Inscrypt 2024, Kunming, China, December 14–16, 2024, Revised Selected Papers, Part II

ER -

Practical Generic Construction of Fully Collision Resistant Chameleon Hash and Instantiations

Abstract

Other files and links

Fingerprint

Cite this