MatRiCT+: more efficient  post-quantum private blockchain payments

Muhammed F. Esgin; Ron Steinfeld; Raymond K. Zhao

doi:10.1109/SP46214.2022.9833655

MatRiCT⁺: more efficient post-quantum private blockchain payments

Muhammed F. Esgin, Ron Steinfeld, Raymond K. Zhao

Department of Software Systems & Cybersecurity

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research › peer-review

40 Citations (Scopus)

Abstract

We introduce MatRiCT+, a practical private blockchain payment protocol based on 'post-quantum' lattice assumptions. MatRiCT+ builds on MatRiCT due to Esgin et al. (ACM CCS'19) and, in general, follows the Ring Confidential Transactions (RingCT) approach used in Monero, the largest privacy-preserving cryptocurrency. In terms of the practical aspects, MatRiCT+ has 2-18× shorter proofs (depending on the number of input accounts, M) and runs 3-11× faster (for a typical transaction) in comparison to MatRiCT. A significant advantage of MatRiCT+ is that the proof length's dependence on M is very minimal (only O(logM)), while MatRiCT has a proof length linear in M. To support its efficiency, we devise several novel techniques in our design of MatRiCT+ to achieve compact lattice-based zeroknowledge proof systems, exploiting the algebraic properties of power-of-2 cyclotomic rings commonly used in practical latticebased cryptography. Along the way, we design a family of 'optimal' challenge spaces, using a technique we call partition-and-sample, with minimal \ell_{1}-norm and invertible challenge differences (with overwhelming probability), while supporting highly-splitting power-of-2 cyclotomic rings. We believe all these results to be widely applicable and of independent interest.

Original language	English
Title of host publication	Proceedings - 43rd IEEE Symposium on Security and Privacy, SP 2022
Place of Publication	Piscataway NJ USA
Publisher	IEEE, Institute of Electrical and Electronics Engineers
Pages	1281-1298
Number of pages	18
ISBN (Electronic)	9781665413169
ISBN (Print)	9781665413176
DOIs	https://doi.org/10.1109/SP46214.2022.9833655
Publication status	Published - 2022
Event	IEEE Symposium on Security and Privacy 2022 - San Francisco, United States of America Duration: 23 May 2022 → 25 May 2022 Conference number: 43rd https://ieeexplore.ieee.org/xpl/conhome/9833550/proceeding (Proceedings) https://www.ieee-security.org/TC/SP2022/ (Website)

Publication series

Name	Proceedings - IEEE Symposium on Security and Privacy
Publisher	IEEE, Institute of Electrical and Electronics Engineers
Volume	2022-May
ISSN (Print)	1081-6011
ISSN (Electronic)	2375-1207

Conference

Conference	IEEE Symposium on Security and Privacy 2022
Abbreviated title	SP 2022
Country/Territory	United States of America
City	San Francisco
Period	23/05/22 → 25/05/22
Internet address	https://ieeexplore.ieee.org/xpl/conhome/9833550/proceeding (Proceedings) https://www.ieee-security.org/TC/SP2022/ (Website)

Keywords

Blockchain
Lattice
Post-Quantum
Ring Signature
RingCT
Zero-Knowledge

Access to Document

10.1109/SP46214.2022.9833655

Cite this

Esgin, M. F., Steinfeld, R., & Zhao, R. K. (2022). MatRiCT⁺: more efficient post-quantum private blockchain payments. In Proceedings - 43rd IEEE Symposium on Security and Privacy, SP 2022 (pp. 1281-1298). (Proceedings - IEEE Symposium on Security and Privacy; Vol. 2022-May). IEEE, Institute of Electrical and Electronics Engineers. https://doi.org/10.1109/SP46214.2022.9833655

@inproceedings{ed7fd57ca7e841eda61376d75a644191,

title = "MatRiCT+: more efficient post-quantum private blockchain payments",

abstract = "We introduce MatRiCT+, a practical private blockchain payment protocol based on 'post-quantum' lattice assumptions. MatRiCT+ builds on MatRiCT due to Esgin et al. (ACM CCS'19) and, in general, follows the Ring Confidential Transactions (RingCT) approach used in Monero, the largest privacy-preserving cryptocurrency. In terms of the practical aspects, MatRiCT+ has 2-18× shorter proofs (depending on the number of input accounts, M) and runs 3-11× faster (for a typical transaction) in comparison to MatRiCT. A significant advantage of MatRiCT+ is that the proof length's dependence on M is very minimal (only O(logM)), while MatRiCT has a proof length linear in M. To support its efficiency, we devise several novel techniques in our design of MatRiCT+ to achieve compact lattice-based zeroknowledge proof systems, exploiting the algebraic properties of power-of-2 cyclotomic rings commonly used in practical latticebased cryptography. Along the way, we design a family of 'optimal' challenge spaces, using a technique we call partition-and-sample, with minimal \textbackslash{}ell\_\{1\}-norm and invertible challenge differences (with overwhelming probability), while supporting highly-splitting power-of-2 cyclotomic rings. We believe all these results to be widely applicable and of independent interest. ",

keywords = "Blockchain, Lattice, Post-Quantum, Ring Signature, RingCT, Zero-Knowledge",

author = "Esgin, \{Muhammed F.\} and Ron Steinfeld and Zhao, \{Raymond K.\}",

note = "Funding Information: We thank Tim Ruffing for helping with the concrete run-times of Omniring and Monero from [13]. This work was supported in part by Australian Research Council Discovery Grant DP180102199. Publisher Copyright: {\textcopyright} 2022 IEEE.; IEEE Symposium on Security and Privacy 2022, SP 2022 ; Conference date: 23-05-2022 Through 25-05-2022",

year = "2022",

doi = "10.1109/SP46214.2022.9833655",

language = "English",

isbn = "9781665413176",

series = "Proceedings - IEEE Symposium on Security and Privacy",

publisher = "IEEE, Institute of Electrical and Electronics Engineers",

pages = "1281--1298",

booktitle = "Proceedings - 43rd IEEE Symposium on Security and Privacy, SP 2022",

address = "United States of America",

url = "https://ieeexplore.ieee.org/xpl/conhome/9833550/proceeding, https://www.ieee-security.org/TC/SP2022/",

}

Esgin, MF , Steinfeld, R & Zhao, RK 2022, MatRiCT⁺: more efficient post-quantum private blockchain payments. in Proceedings - 43rd IEEE Symposium on Security and Privacy, SP 2022. Proceedings - IEEE Symposium on Security and Privacy, vol. 2022-May, IEEE, Institute of Electrical and Electronics Engineers, Piscataway NJ USA, pp. 1281-1298, IEEE Symposium on Security and Privacy 2022, San Francisco, California, United States of America, 23/05/22. https://doi.org/10.1109/SP46214.2022.9833655

MatRiCT⁺: more efficient post-quantum private blockchain payments. / Esgin, Muhammed F.; Steinfeld, Ron; Zhao, Raymond K.
Proceedings - 43rd IEEE Symposium on Security and Privacy, SP 2022. Piscataway NJ USA: IEEE, Institute of Electrical and Electronics Engineers, 2022. p. 1281-1298 (Proceedings - IEEE Symposium on Security and Privacy; Vol. 2022-May).

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research › peer-review

TY - GEN

T1 - MatRiCT+

T2 - IEEE Symposium on Security and Privacy 2022

AU - Esgin, Muhammed F.

AU - Steinfeld, Ron

AU - Zhao, Raymond K.

N1 - Conference code: 43rd

PY - 2022

Y1 - 2022

N2 - We introduce MatRiCT+, a practical private blockchain payment protocol based on 'post-quantum' lattice assumptions. MatRiCT+ builds on MatRiCT due to Esgin et al. (ACM CCS'19) and, in general, follows the Ring Confidential Transactions (RingCT) approach used in Monero, the largest privacy-preserving cryptocurrency. In terms of the practical aspects, MatRiCT+ has 2-18× shorter proofs (depending on the number of input accounts, M) and runs 3-11× faster (for a typical transaction) in comparison to MatRiCT. A significant advantage of MatRiCT+ is that the proof length's dependence on M is very minimal (only O(logM)), while MatRiCT has a proof length linear in M. To support its efficiency, we devise several novel techniques in our design of MatRiCT+ to achieve compact lattice-based zeroknowledge proof systems, exploiting the algebraic properties of power-of-2 cyclotomic rings commonly used in practical latticebased cryptography. Along the way, we design a family of 'optimal' challenge spaces, using a technique we call partition-and-sample, with minimal \ell_{1}-norm and invertible challenge differences (with overwhelming probability), while supporting highly-splitting power-of-2 cyclotomic rings. We believe all these results to be widely applicable and of independent interest.

AB - We introduce MatRiCT+, a practical private blockchain payment protocol based on 'post-quantum' lattice assumptions. MatRiCT+ builds on MatRiCT due to Esgin et al. (ACM CCS'19) and, in general, follows the Ring Confidential Transactions (RingCT) approach used in Monero, the largest privacy-preserving cryptocurrency. In terms of the practical aspects, MatRiCT+ has 2-18× shorter proofs (depending on the number of input accounts, M) and runs 3-11× faster (for a typical transaction) in comparison to MatRiCT. A significant advantage of MatRiCT+ is that the proof length's dependence on M is very minimal (only O(logM)), while MatRiCT has a proof length linear in M. To support its efficiency, we devise several novel techniques in our design of MatRiCT+ to achieve compact lattice-based zeroknowledge proof systems, exploiting the algebraic properties of power-of-2 cyclotomic rings commonly used in practical latticebased cryptography. Along the way, we design a family of 'optimal' challenge spaces, using a technique we call partition-and-sample, with minimal \ell_{1}-norm and invertible challenge differences (with overwhelming probability), while supporting highly-splitting power-of-2 cyclotomic rings. We believe all these results to be widely applicable and of independent interest.

KW - Blockchain

KW - Lattice

KW - Post-Quantum

KW - Ring Signature

KW - RingCT

KW - Zero-Knowledge

UR - https://www.scopus.com/pages/publications/85135886705

U2 - 10.1109/SP46214.2022.9833655

DO - 10.1109/SP46214.2022.9833655

M3 - Conference Paper

AN - SCOPUS:85135886705

SN - 9781665413176

T3 - Proceedings - IEEE Symposium on Security and Privacy

SP - 1281

EP - 1298

BT - Proceedings - 43rd IEEE Symposium on Security and Privacy, SP 2022

PB - IEEE, Institute of Electrical and Electronics Engineers

CY - Piscataway NJ USA

Y2 - 23 May 2022 through 25 May 2022

ER -

MatRiCT⁺: more efficient post-quantum private blockchain payments

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Privacy-preserving Data Processing on the Cloud

Cite this

MatRiCT+: more efficient post-quantum private blockchain payments

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Projects

Privacy-preserving Data Processing on the Cloud

Cite this

MatRiCT⁺: more efficient post-quantum private blockchain payments