[go: up one dir, main page]

What a lovely hat

Is it made out of tin foil?

Paper 2024/1051

Adaptor Signatures: New Security Definition and A Generic Construction for NP Relations

Xiangyu Liu, Purdue University West Lafayette, Georgia Institute of Technology
Ioannis Tzannetos, Purdue University West Lafayette, National Technical University of Athens
Vassilis Zikas, Georgia Institute of Technology
Abstract

An adaptor signatures (AS) scheme is an extension of digital signatures that allows the signer to generate a pre-signature for an instance of a hard relation. This pre-signature can later be adapted to a full signature with a corresponding witness. Meanwhile, the signer can extract a witness from both the pre-signature and the signature. AS have recently garnered more attention due to its scalability and interoperability. Dai et al. [INDOCRYPT 2022] proved that AS can be constructed for any NP relation using a generic construction. However, their construction has a shortcoming: the associated witness is exposed by the adapted signature. This flaw poses limits the applications of AS, even in its motivating setting, i.e., blockchain, where the adapted signature is typically uploaded to the blockchain and is public to everyone. To address this issue, in this work we augment the security definition of AS by a natural property which we call witness hiding. We then prove the existence of AS for any NP relation, assuming the existence of one-way functions. Concretely, we propose a generic construction of witness-hiding AS from signatures and a weak variant of trapdoor commitments, which we term trapdoor commitments with a specific adaptable message. We instantiate the latter based on the Hamiltonian cycle problem. Since the Hamiltonian cycle problem is NP-complete, we can obtain witness hiding adaptor signatures for any NP relation.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published by the IACR in ASIACRYPT 2024
Keywords
Adaptor signaturesAtomic swapsBlockchainNP relations
Contact author(s)
liu3894 @ purdue edu
itzannet @ purdue edu
vzikas @ gatech edu
History
2024-09-13: revised
2024-06-28: received
See all versions
Short URL
https://ia.cr/2024/1051
License
No rights reserved
CC0

BibTeX

@misc{cryptoeprint:2024/1051,
      author = {Xiangyu Liu and Ioannis Tzannetos and Vassilis Zikas},
      title = {Adaptor Signatures: New Security Definition and A Generic Construction for {NP} Relations},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/1051},
      year = {2024},
      url = {https://eprint.iacr.org/2024/1051}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.