STRUCTURE VERSUS HARDNESS THROUGH THE OBFUSCATION LENS

被引:4
作者
Bitansky, Nir [1 ]
Degwekar, Akshay [2 ]
Vaikuntanathan, Vinod [3 ]
机构
[1] Tel Aviv Univ, IL-69978 Tel Aviv, Israel
[2] Two Sigma Investments LP, New York, NY 10013 USA
[3] MIT, Cambridge, MA 02142 USA
关键词
indistinguishability obfuscation; statistical zero-knowledge; NP boolean AND coNP; structured hardness; collision-resistant hashing; STATISTICAL ZERO-KNOWLEDGE; LOWER BOUNDS; PROMISE PROBLEMS; NP; LATTICE; PROOFS; EFFICIENCY; COMPLEXITY; LANGUAGES; SECURITY;
D O I
10.1137/17M1136559
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Much of modern cryptography, starting from public-key encryption and going beyond, is based on the hardness of structured (mostly algebraic) problems like factoring, discrete log, or finding short lattice vectors. While structure is perhaps what enables advanced applications, it also puts the hardness of these problems in question. In particular, this structure often puts them in low (and so-called structured) complexity classes such as NP boolean AND coNP or statistical zero-knowledge (\sansS \sansZ \sansK). Is this structure really necessary? For some cryptographic primitives, such as one-way permutations and homomorphic encryption, we know that the answer is yes-they imply hard problems in and NP boolean AND coNP, respectively. In contrast, one-way functions do not imply such hard problems, at least not by black-box reductions. Yet, for many basic primitives such as public-key encryption, oblivious transfer, and functional encryption, we do not have any answer. We show that the above primitives, and many others, do not imply hard problems in or NP boolean AND coNP via black-box reductions. In fact, we first show that even the very powerful notion of indistinguishability obfuscation (IO) does not imply such hard problems, and then deduce the same for a large class of primitives that can be constructed from IO.
引用
收藏
页码:98 / 144
页数:47
相关论文
共 87 条
[1]   Lattice problems in NP∧coNP [J].
Aharonov, D ;
Regev, O .
45TH ANNUAL IEEE SYMPOSIUM ON FOUNDATIONS OF COMPUTER SCIENCE, PROCEEDINGS, 2004, :362-371
[2]   STATISTICAL ZERO-KNOWLEDGE LANGUAGES CAN BE RECOGNIZED IN 2 ROUNDS [J].
AIELLO, W ;
HASTAD, J .
JOURNAL OF COMPUTER AND SYSTEM SCIENCES, 1991, 42 (03) :327-345
[3]  
Akavia A., 2006, STOC'06. Proceedings of the 38th Annual ACM Symposium on Theory of Computing, P701, DOI 10.1145/1132516.1132614
[4]   More on average case vs approximation complexity [J].
Alekhnovich, M .
44TH ANNUAL IEEE SYMPOSIUM ON FOUNDATIONS OF COMPUTER SCIENCE, PROCEEDINGS, 2003, :298-307
[5]  
[Anonymous], 2003, P 44 ANN S FDN COMP
[6]  
[Anonymous], 2013, P FOCS
[7]  
[Anonymous], 2000, P 41 ANN S FDN COMP
[8]  
[Anonymous], 1989, THESIS MIT
[9]  
[Anonymous], 1999, Ph.D. dissertation
[10]  
Applebaum B, 2010, ACM S THEORY COMPUT, P171