International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Prastudy Fauzi

Publications

Year
Venue
Title
2021
ASIACRYPT
Verifiably-Extractable OWFs and Their Applications to Subversion Zero-Knowledge 📺
Arne Tobias Ødegaard Helger Lipmaa Michał Zając Prastudy Fauzi Janno Siim
An extractable one-way function (EOWF), introduced by Canetti and Dakdouk (ICALP 2008) and generalized by Bitansky et al. (SIAM Journal on Computing vol. 45), is an OWF that allows for efficient extraction of a preimage for the function. We study (generalized) EOWFs that have a public image verification algorithm. We call such OWFs verifiably-extractable and show that several previously known constructions satisfy this notion. We study how such OWFs relate to subversion zero-knowledge (Sub-ZK) NIZKs by using them to generically construct a Sub-ZK NIZK from a NIZK satisfying certain additional properties, and conversely show how to obtain them from any Sub-ZK NIZK. Prior to our work, the Sub-ZK property of NIZKs was achieved using concrete knowledge assumptions.
2019
ASIACRYPT
Quisquis: A New Design for Anonymous Cryptocurrencies
Prastudy Fauzi Sarah Meiklejohn Rebekah Mercer Claudio Orlandi
Despite their usage of pseudonyms rather than persistent identifiers, most existing cryptocurrencies do not provide users with any meaningful levels of privacy. This has prompted the creation of privacy-enhanced cryptocurrencies such as Monero and Zcash, which are specifically designed to counteract the tracking analysis possible in currencies like Bitcoin. These cryptocurrencies, however, also suffer from some drawbacks: in both Monero and Zcash, the set of potential unspent coins is always growing, which means users cannot store a concise representation of the blockchain. Additionally, Zcash requires a common reference string and the fact that addresses are reused multiple times in Monero has led to attacks to its anonymity.In this paper we propose a new design for anonymous cryptocurrencies, Quisquis, that achieves provably secure notions of anonymity. Quisquis stores a relatively small amount of data, does not require trusted setup, and in Quisquis each address appears on the blockchain at most twice: once when it is generated as output of a transaction, and once when it is spent as input to a transaction. Our result is achieved by combining a DDH-based tool (that we call updatable keys) with efficient zero-knowledge arguments.
2017
ASIACRYPT
An Efficient Pairing-Based Shuffle Argument
Prastudy Fauzi Helger Lipmaa Janno Siim Michał Zając
2016
ASIACRYPT
A Shuffle Argument Secure in the Generic Model 📺
Prastudy Fauzi Helger Lipmaa Michał Zając

Coauthors

Helger Lipmaa (3)
Sarah Meiklejohn (1)
Rebekah Mercer (1)
Claudio Orlandi (1)
Arne Tobias Ødegaard (1)
Janno Siim (2)
Michał Zając (3)