Abstract examples Zero-knowledge proof

-












the ali baba cave

there well-known story presenting fundamental ideas of zero-knowledge proofs, first published jean-jacques quisquater , others in paper how explain zero-knowledge protocols children . common practice (see alice , bob) label 2 parties in zero-knowledge proof peggy (the prover of statement) , victor (the verifier of statement).


in story, peggy has uncovered secret word used open magic door in cave. cave shaped ring, entrance on 1 side , magic door blocking opposite side. victor wants know whether peggy knows secret word; peggy, being private person, not want reveal knowledge (the secret word) victor or reveal fact of knowledge world in general.


they label left , right paths entrance , b. first, victor waits outside cave peggy goes in. peggy takes either path or b; victor not allowed see path takes. then, victor enters cave , shouts name of path wants use return, either or b, chosen @ random. providing know magic word, easy: opens door, if necessary, , returns along desired path.


however, suppose did not know word. then, able return named path if victor give name of same path had entered. since victor choose or b @ random, have 50% chance of guessing correctly. if repeat trick many times, 20 times in row, chance of anticipating of victor s requests become vanishingly small (about 1 in million).


thus, if peggy repeatedly appears @ exit victor names, can conclude probable—astronomically probable—that peggy in fact know secret word.


one side note respect third-party observers: if victor wearing hidden camera records whole transaction, thing camera record in 1 case victor shouting a! , peggy appearing @ or in other case victor shouting b! , peggy appearing @ b. recording of type trivial 2 people fake (requiring peggy , victor agree beforehand on sequence of s , b s victor shout). such recording never convincing original participants. in fact, person present observer @ original experiment unconvinced, since victor , peggy might have orchestrated whole experiment start finish.


further notice if victor chooses s , b s flipping coin on-camera, protocol loses zero-knowledge property; on-camera coin flip convincing person watching recording later. thus, although not reveal secret word victor, make possible victor convince world in general peggy has knowledge—counter peggy s stated wishes. however, digital cryptography flips coins relying on pseudo-random number generator, akin coin fixed pattern of heads , tails known coin s owner. if victor s coin behaved way, again possible victor , peggy have faked experiment , using pseudo-random number generator not reveal peggy s knowledge world in same way using flipped coin would.


notice peggy prove victor knows magic word, without revealing him, in single trial. if both victor , peggy go mouth of cave, victor can watch peggy go in through , come out through b. prove certainty peggy knows magic word, without revealing magic word victor. however, such proof observed third party, or recorded victor , such proof convincing anybody. in other words, peggy not refute such proof claiming colluded victor, , therefore no longer in control of aware of knowledge.


two balls , colour-blind friend

this example requires 2 identical objects different colours, such 2 coloured balls, , considered 1 of easiest explanations of how interactive zero-knowledge proofs work. first demonstrated live software engineers konstantinos chalkias , mike hearn @ blockchain related conference in september 2017 , inspired work of prof. oded goldreich, used 2 differently coloured cards.


imagine friend colour-blind , have 2 balls: 1 red , 1 green, otherwise identical. friend seem identical , sceptical distinguishable. want prove him in fact differently-coloured, nothing else, not reveal 1 red , green.


here proof system. give 2 balls friend , puts them behind back. next, gets 1 of balls , brings out behind back. on put ball behind , probability 50% reveal 1 of 2 balls. each time ask you, did switch ball?


by looking @ colours, can of course certainty whether or not switched them. on other hand, if same colour , hence indistinguishable, there no way guess correctly probability higher 50%.


if , friend repeat proof multiple times (e.g. 128), friend should become convinced ( completeness ) balls indeed differently coloured; otherwise, probability have randomly succeeded @ identifying switch/non-switches close 0 ( soundness ).


the above proof zero-knowledge because friend never learns ball green , red; indeed, gains no knowledge how distinguish balls.








Comments

Post a Comment

Popular posts from this blog

The Missionaries and the Congo Congo Free State propaganda war

-
1 missionaries , congo 1.1 william sheppard 1.2 e.v. sjöblom 1.3 george washington williams 1.4 leopold vs. williams the missionaries , congo king leopold allowed several hundred foreign protestant missionaries england, united states, , sweden go congo. given goals of iaa hardly refuse offers civilize africans. missionaries went congo evangelize, fight polygamy, , create fear of sin in africans. congolese run , hide @ mere sight of european. one british missionary wrote african congregation asked, has savior tell of power save rubber trouble? other missionaries became aware of bloody events around posts. 1 swedish missionary noted sorrowful song death , tyranny many sang @ post. missionaries began protest violence through personal letters leopold, through letters newspapers , magazines. efforts had little effect in drawing public attention situation. william sheppard william sheppard in late 1880s william sheppard, african-american protestant missionary, started write american news
Read more

Discography Tommy Denander

-
1 discography 1.1 purpose of discography list many of tommy s sessions possible , try , find different versions also 1.2 solo artist 1.3 selected top work 1.4 atc 1.5 bruce gaitsch 1.6 fergie frederiksen 1.7 radioactive 1.8 impera 1.9 prisoner 1.10 rainmaker 1.11 lion s share 1.12 talk of town 1.13 speedy gonzales 1.14 deacon street project 1.15 spin gallery 1.16 talisman 1.17 house of lords 1.18 robin beck 1.19 aor 1.20 phenomena 1.21 jim jidhed 1.22 houston 1.23 street talk 1.24 sha-boom 1.25 liberty & justice 1.26 silver 1.27 locomotive breath 1.28 mountain of power 1.29 last autumn s dream 1.30 various artist compilations 1.31 various artist tribute albums 1.32 bootlegs 1.33 gold & platinum awards 1.34 other recordings - lp/cd 1.35 1983 1.36 1984 1.37 1985 1.38 1986 1.39 1987 1.40 1988 1.41 1989 1.42 1990 1.43 1991 1.44 1992 1.45 1993 1.46 1994 1.47 1995 1.48 1996 1.49 1997 1.50 1998 1.51 1999 1.52 2000 1.53 2001 1.54 2002 1.55 2003 1.56 2004 1.57 2005 1.58 2006 1.59 2007 1
Read more

Fuji List of motion picture film stocks

-
1 fuji 1.1 color negatives (1980s) 1.2 reversal (1980s) 1.3 black-and-white 1.4 f-series (1988) 1.5 super f-series (1990s) 1.6 reala 1.7 eterna (2004-2013) 1.8 print films 1.9 intermediate film 1.10 recording film fuji fujifilm stopped production of motion picture , still film stocks on march 31, 2013. negative stocks, 85 prefix designates 35 mm, 86 prefix designates 16 mm stock. stock numbers ending in 2 fuji s super-f emulsions (1990s) , stocks ending in 3 new eterna emulsions. also, eterna vivid series negatives last second suffix 4 , , ending suffix different e.i. . for intermediate stocks, negatives , adding 45 prefix designates 35 mm in polyester(pet) base, , 87 prefix designates 65/70 mm. for positive , print stocks, 35 indicates 35 mm print film, , 36 indicates 16 mm print film. fuji introduced reala film - color stock 4th color emulsion layer, fastest daylight balanced color motion picture stock ever offered @ 500 iso. as of march 2013, fuji had ceased prod
Read more