zbMATH — the first resource for mathematics

Hardness amplification of weakly verifiable puzzles. (English) Zbl 1079.94538
Kilian, Joe (ed.), Theory of cryptography. Second theory of cryptography conference, TCC 2005, Cambridge, MA, USA, February 10–12, 2005. Proceedings. Berlin: Springer (ISBN 3-540-24573-1/pbk). Lecture Notes in Computer Science 3378, 17-33 (2005).
Summary: Is it harder to solve many puzzles than it is to solve just one? This question has different answers, depending on how you define puzzles. For the case of inverting one-way functions it was shown by Yao that solving many independent instances simultaneously is indeed harder than solving a single instance (cf. the transformation from weak to strong one-way functions). The known proofs of that result, however, use in an essential way the fact that for one-way functions, verifying candidate solutions to a given puzzle is easy. We extend this result to the case where solutions are efficiently verifiable only by the party that generated the puzzle. We call such puzzles weakly verifiable . That is, for weakly verifiable puzzles we show that if no efficient algorithm can solve a single puzzle with probability more than \(\epsilon\), then no efficient algorithm can solve \(n\) independent puzzles simultaneously with probability more than \(\epsilon^{n}\). We also demonstrate that when the puzzles are not even weakly verifiable, solving many puzzles may be no harder than solving a single one.
Hardness amplification of weakly verifiable puzzles turns out to be closely related to the reduction of soundness error under parallel repetition in computationally sound arguments. Indeed, the proof of Bellare, Impagliazzo and Naor that parallel repetition reduces soundness error in three-round argument systems implies a result similar to our first result, albeit with considerably worse parameters. Also, our second result is an adaptation of their proof that parallel repetition of four-round systems may not reduce the soundness error.
For the entire collection see [Zbl 1069.94500].

94A60 Cryptography
Full Text: DOI