Abstract:A Zero-Knowledge Protocol (ZKP) allows one party to convince another party of a fact without disclosing any extra knowledge except the validity of the fact. For example, it could be used to allow a customer to prove their identity to a potentially malicious bank machine without giving away private information such as a personal identification number. This way, any knowledge gained by a malicious bank machine during an interaction cannot be used later to compromise the client's banking account. An important tool in many ZKPs is bit commitment, which is essentially a digital way for a sender to put a message in a lock-box, lock it, and send it to the receiver. Later, the key is sent for the receiver to open the lock box and read the message. This way, the message is hidden from the receiver until they receive the key, and the sender is unable to change their mind after sending the lock box. In this paper, the homomorphic properties of a particular multi-party commitment scheme are exploited to allow the receiver to perform operations on commitments, resulting in polynomial time ZKPs for two NP-Complete problems: the Subset Sum Problem and 3SAT. These ZKPs are secure with no computational restrictions on the provers, even with shared quantum entanglement. In terms of efficiency, the Subset Sum ZKP is competitive with other practical quantum-secure ZKPs in the literature, with less rounds required, and fewer computations.

What problem does this paper attempt to address?

### Problems the Paper Attempts to Solve This paper aims to address two NP-complete problems in Zero-Knowledge Proof (ZKP): the Subset Sum Problem and the 3SAT Problem. Specifically, the authors utilize a homomorphic commitment scheme to design zero-knowledge proof protocols that can be completed in polynomial time. These protocols are not only computationally efficient but also secure against quantum attacks. ### Key Points Summary 1. **Background and Motivation**: - Zero-knowledge proofs allow one party to convince another of the truth of a statement without revealing any additional information. - Bit commitment is an important tool in many zero-knowledge protocols, ensuring that a message remains hidden until it is unlocked and that the sender cannot alter the sent message. - This paper leverages the homomorphic properties of a specific multi-party commitment scheme, allowing the receiver to operate on the commitment without unlocking it. 2. **Main Contributions**: - Designed zero-knowledge proof protocols for the Subset Sum Problem and the 3SAT Problem. - These protocols are completed in polynomial time and are secure for the prover even without computational limitations, despite the presence of shared quantum entanglement. - In terms of efficiency, the zero-knowledge proof protocol for the Subset Sum Problem is competitive in practical applications, requiring fewer rounds and computational resources. 3. **Technical Details**: - Utilized a relativistic bit commitment scheme, which relies solely on spatial separation between participants to ensure security. - Through homomorphic properties, the contents of multiple commitments can be combined and verified in a single decommitment. - Detailed analysis of the protocol's security and zero-knowledge properties, especially against quantum malicious provers. 4. **Experiments and Applications**: - Experiments validated the effectiveness and efficiency of the protocols. - Experimental results show that compared to other existing quantum-secure zero-knowledge proof protocols, the proposed protocols have advantages in communication volume and computational complexity. ### Conclusion By introducing a homomorphic multi-party commitment scheme, this paper successfully designs efficient and secure zero-knowledge proof protocols that solve the Subset Sum Problem and the 3SAT Problem. These protocols perform well in classical computing environments and exhibit strong security in quantum computing environments.

Zero-Knowledge MIPs using Homomorphic Commitment Schemes

MPC-in-Multi-Heads: A Multi-Prover Zero-Knowledge Proof System (or: How to Jointly Prove Any NP Statements in ZK)

Two prover perfect zero knowledge for MIP*

Zeromorph: Zero-Knowledge Multilinear-Evaluation Proofs from Homomorphic Univariate Commitments

Formal security analysis of MPC-in-the-head zero-knowledge protocols

Lightweight Zero-Knowledge Proofs for Crypto-Computing Protocols.

Multivariate Multi-Polynomial Commitment and its Applications

On Zero-Knowledge Proofs over the Quantum Internet

ZKPs: Does This Make The Cut? Recent Advances and Success of Zero-Knowledge Security Protocols

Concise ID-based Mercurial Functional Commitments and Applications to Zero-Knowledge Sets.

Experimental relativistic zero-knowledge proofs

Amortized Complexity of Zero-Knowledge Proofs Revisited: Achieving Linear Soundness Slack

Efficient Non-Interactive Zero Knowledge Arguments for Set Operations.

Zero-Knowledge Proof Systems for QMA.

Oblivious Transfer from Zero-Knowledge Proofs, or How to Achieve Round-Optimal Quantum Oblivious Transfer and Zero-Knowledge Proofs on Quantum States

5-Round Computational Zero-Knowledge Proof with Negligible Error Probability for Any NP from Any One-Way Permutation

Quantum Zero-Knowledge Protocol Using Quantum Bit Commitment without Quantum Memory

Streaming Zero-Knowledge Proofs

Verifiable computation over encrypted data via MPC-in-the-head zero-knowledge proofs

A Black-Box Approach to Post-Quantum Zero-Knowledge in Constant Rounds

Experimental Implementation of A Quantum Zero-Knowledge Proof for User Authentication