Research

Post-Quantum Signatures from Symmetric-Key ZKPs Halve Proof Size

The ZKB++ protocol converts symmetric-key primitives into post-quantum non-interactive ZK signatures, drastically reducing proof size for future security.
November 27, 20254 min

A sleek, futuristic device, predominantly silver-toned with brilliant blue crystal accents, is depicted resting on a smooth, reflective grey surface. A circular window on its top surface offers a clear view into a complex mechanical watch movement, showcasing intricate gears and springs
A multifaceted crystalline lens, akin to a precisely cut diamond, forms the focal point of a complex, modular cubic device. This device is adorned with exposed, intricate circuitry that glows with vibrant blue light, indicative of sophisticated computational processes

Briefing

The core research problem is the looming threat of quantum computers to current public-key cryptography, which underpins most digital signature and zero-knowledge proof schemes. This paper introduces a novel class of post-quantum digital signature schemes that derive security entirely from symmetric-key primitives, which are conjectured to be quantum-secure. The foundational breakthrough is the improved $Sigma$-protocol, termed ZKB++, which reduces the proof size for general circuits by a factor of two without increasing computational cost. This establishes a new, highly efficient, and rigorously post-quantum secure primitive that enables smaller, faster non-interactive zero-knowledge proofs and digital signatures, fundamentally securing future blockchain and communication architectures against quantum adversaries.

The image showcases a central, white, angular computational core integrated with a clear, blue-ringed cylindrical lens, all encased within a dense, blue, grid-like structure. This abstract representation evokes the sophisticated architecture of modern cryptocurrency networks and blockchain technology

Context

Prior to this work, the development of quantum-resistant cryptography largely focused on lattice-based, hash-based, or isogeny-based approaches, with many non-interactive zero-knowledge proofs relying on the Fiat-Shamir transform in the classical random oracle model. This transform lacks a rigorous security analysis in the quantum-accessible random oracle model (QROM), which is necessary for post-quantum security. The academic challenge was to construct signature schemes with minimal keypair and signature sizes that are provably secure in the QROM while also being highly efficient for general computational statements.

This close-up view reveals a high-tech modular device, showcasing a combination of brushed metallic surfaces and translucent blue elements that expose intricate internal mechanisms. A blue cable connects to a port on the upper left, while a prominent cylindrical component with a glowing blue core dominates the center, suggesting advanced functionality

Analysis

The paper’s core mechanism is the construction of a non-interactive zero-knowledge proof of knowledge of a secret key $x$ for a one-way function $f$, where the public key is the image $y=f(x)$. This proof is then incorporated into a message to form a digital signature. The key innovation is the ZKB++ protocol, an improvement upon a prior $Sigma$-protocol for statements over general circuits. ZKB++ halves the transcript size, which directly translates to a 50% reduction in signature size for any circuit.

To achieve non-interactivity and rigorous post-quantum security, the scheme uses Unruh’s transform, which provides a security analysis in the QROM, customized to reduce the overhead compared to the Fiat-Shamir transform. The use of symmetric-key primitives like LowMC ensures the underlying security is quantum-resistant.

A central metallic core, resembling an advanced engine or computational unit, is surrounded by an intricate array of radiant blue crystalline structures. These faceted elements, varying in size and density, extend outwards, suggesting a dynamic and complex system

Parameters

  • Proof Size Reduction → Halved (Reduced by a factor of two). Explanation → The ZKB++ protocol reduces the transcript size for the underlying $Sigma$-protocol, directly cutting the signature size by 50% for any general circuit.
  • QROM Overhead → 1.6x. Explanation → The overhead of using Unruh’s transform, which is provably secure in the quantum-accessible random oracle model (QROM), compared to the less-secure Fiat-Shamir transform is only 1.6 times.
  • Security Foundation → Symmetric-Key Primitives. Explanation → The scheme’s security is derived entirely from the conjectured quantum-resistance of symmetric-key primitives, such as the LowMC cipher.

A clear cubic structure is positioned within a white loop, set against a backdrop of a detailed circuit board illuminated by vibrant blue light. The board is populated with various electronic components, including dark rectangular chips and cylindrical capacitors, illustrating a sophisticated technological landscape

Outlook

This research fundamentally advances the state of post-quantum cryptography by offering a highly optimized, QROM-secure primitive for general computation. The ZKB++ protocol, with its significant proof size reduction, will be a critical building block for future zero-knowledge applications, including post-quantum private smart contracts and confidential transaction systems, especially in resource-constrained environments like mobile devices or IoT. The next research steps will involve integrating ZKB++ into recursive proof composition schemes and standardizing the use of symmetric-key-based ZKPs as a primary post-quantum alternative to lattice-based systems.

A polished, geometric crystal gleams, suspended above a dense network of blue circuit boards. This visual metaphor encapsulates the essence of cryptocurrency and blockchain technology

Verdict

This work provides a critical, highly efficient, and rigorously provable post-quantum cryptographic primitive that is essential for securing the next generation of decentralized systems against the inevitable arrival of quantum computation.

Post-quantum cryptography, symmetric-key primitives, zero-knowledge proofs, digital signature schemes, non-interactive ZK, Fiat-Shamir transform, Unruh’s transform, quantum-accessible random oracle, proof size reduction, circuit-based proofs, cryptographic primitives, ZKB++ protocol, keypair size, computational cost, algebraic structure, lattice-based cryptography, hash-based ZK, secure communications, trusted setup, computational security. Signal Acquired from → microsoft.com

Micro Crypto News Feeds

non-interactive zero-knowledge

Definition ∞ Non-interactive zero-knowledge (NIZK) is a cryptographic proof system where a prover can demonstrate knowledge of a secret to a verifier without revealing any information about the secret itself, and crucially, without any interaction between them after the proof is generated.

fiat-shamir transform

Definition ∞ The Fiat-Shamir Transform converts an interactive proof system into a non-interactive one, crucial for cryptographic applications.

zero-knowledge proof

Definition ∞ A zero-knowledge proof is a cryptographic method where one party, the prover, can confirm to another party, the verifier, that a statement is true without disclosing any specific details about the statement itself.

post-quantum security

Definition ∞ Post-Quantum Security refers to cryptographic algorithms and systems designed to withstand attacks from quantum computers.

proof size reduction

Definition ∞ Proof size reduction refers to cryptographic techniques that decrease the amount of data required to verify a transaction or computation on a blockchain.

random oracle model

Definition ∞ The Random Oracle Model is an idealized cryptographic abstraction where a hash function is assumed to behave like a truly random function.

security

Definition ∞ Security refers to the measures and protocols designed to protect assets, networks, and data from unauthorized access, theft, or damage.

post-quantum cryptography

Definition ∞ Post-quantum cryptography refers to cryptographic algorithms designed to be secure against attacks by future quantum computers.

post-quantum

Definition ∞ 'Post-Quantum' describes technologies or cryptographic methods designed to be resistant to attacks from future quantum computers.

Tags:

Tags: