Twisted Edwards elliptic curves for zero-knowledge circuits
| dc.contributor.author | Bellés-Muñoz, Marta | |
| dc.contributor.author | Whitehat, Barry | |
| dc.contributor.author | Baylina, Jordi | |
| dc.contributor.author | Daza, Vanesa | |
| dc.contributor.author | Muñoz-Tapia, José L. | |
| dc.date.accessioned | 2022-06-29T06:06:45Z | |
| dc.date.available | 2022-06-29T06:06:45Z | |
| dc.date.issued | 2021 | |
| dc.description.abstract | Circuit-based zero-knowledge proofs have arose as a solution to the implementation of privacy in blockchain applications, and to current scalability problems that blockchains suffer from. The most efficient circuit-based zero-knowledge proofs use a pairing-friendly elliptic curve to generate and validate proofs. In particular, the circuits are built connecting wires that carry elements from a large prime field, whose order is determined by the number of elements of the pairing-friendly elliptic curve. In this context, it is important to generate an inner curve using this field, because it allows to create circuits that can verify public-key cryptography primitives, such as digital signatures and encryption schemes. To this purpose, in this article, we present a deterministic algorithm for generating twisted Edwards elliptic curves defined over a given prime field. We also provide an algorithm for checking the resilience of this type of curve against most common security attacks. Additionally, we use our algorithms to generate Baby Jubjub, a curve that can be used to implement elliptic-curve cryptography in circuits that can be validated in the Ethereum blockchain. | |
| dc.description.sponsorship | This research has been partially funded by the projects Project RTI2018-102112-B-100 (AEI/FEDER, UE), i3Market (H2020-ICT-2019-2 grant number 871754) and TCO-RISEBLOCK (PID2019- 110224RB-I00). | |
| dc.format.mimetype | application/pdf | |
| dc.identifier.citation | Bellés-Muñoz M, Whitehat B, Baylina J, Daza V, Muñoz-Tapia JL. Twisted Edwards elliptic curves for zero-knowledge circuits. Mathematics. 2021;9(23):3022. DOI: 10.3390/math9233022 | |
| dc.identifier.doi | http://doi.org/10.3390/math9233022 | |
| dc.identifier.issn | 2227-7390 | |
| dc.identifier.uri | http://hdl.handle.net/10230/53624 | |
| dc.language.iso | eng | |
| dc.publisher | MDPI | |
| dc.relation.projectID | info:eu-repo/grantAgreement/EC/H2020/871754 | |
| dc.rights | © 2021 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https:// creativecommons.org/licenses/by/ 4.0/). | |
| dc.rights.accessRights | info:eu-repo/semantics/openAccess | |
| dc.rights.uri | http://creativecommons.org/licenses/by/4.0/ | |
| dc.subject.keyword | zero-knowledge proof | |
| dc.subject.keyword | elliptic curve | |
| dc.subject.keyword | blockchain | |
| dc.subject.keyword | privacy | |
| dc.title | Twisted Edwards elliptic curves for zero-knowledge circuits | |
| dc.type | info:eu-repo/semantics/article | |
| dc.type.version | info:eu-repo/semantics/publishedVersion |
Files
Original bundle
1 - 1 of 1
License
