Linking cryptographic keys to identities has been a long-standing problem because the introduction of public-key cryptography. The first concern is offering and sustaining a publicly accessible and constant mapping between identities and public keys. This problem is especially related within the context of web3, the place transparency and anonymity are paramount.
Based on a16z crypto, three fundamental approaches exist for addressing this concern: public key directories, identity-based encryption (IBE), and the newer registration-based encryption (RBE). Every methodology presents distinct trade-offs by way of anonymity, interactivity, and effectivity.
The Three Approaches
The standard method includes a public key infrastructure (PKI) with a public key listing at its core. This methodology requires a trusted third occasion to keep up the listing, which may be pricey and liable to errors. Moreover, the general public key listing method isn’t succinct, considerably interactive, and lacks sender anonymity.
Identification-based encryption (IBE), proposed by Adi Shamir in 1984, eliminates the necessity for a public key listing by utilizing identifiers like telephone numbers or electronic mail addresses as public keys. Nonetheless, IBE introduces a robust belief assumption, because it requires a trusted key generator to concern keys. This method is extra space-efficient and presents non-interactive encryption and decryption, however the danger related to the grasp secret secret’s vital.
Registration-based encryption (RBE), proposed in 2018, replaces the trusted key generator with a clear key curator. The blockchain setting, the place a wise contract can function the important thing curator, makes RBE a pure match. RBE presents the advantages of each PKI and IBE whereas mitigating their respective drawbacks. It makes use of much less on-chain storage than a public key listing and avoids the robust belief assumption of IBE.
Evaluating the Commerce-offs
RBE requires succinct parameters, which means the scale of parameters to be saved on-chain is sublinear within the variety of customers. That is smaller than the full storage required for a public key listing however nonetheless greater than IBE. Encryption and decryption are considerably interactive, requiring periodic updates to public parameters and auxiliary info. Nonetheless, RBE gives sender anonymity and transparency, making it a compelling choice for privacy-conscious customers.
Efficiency Comparability
By way of value, RBE has a better setup and registration value in comparison with PKI and IBE. Nonetheless, it presents stronger anonymity and lowered belief assumptions, making it a viable choice for individuals who prioritize privateness and trustless setups. Based on a efficiency analysis by a16z crypto, RBE may be feasibly deployed on the Ethereum mainnet right now, regardless of its larger prices.
Total, whereas RBE is costlier, it gives vital benefits by way of privateness and trustlessness, making it a horny choice for blockchain key administration.
Extra Concerns
Dealing with key updates and revocations is simple for a public key listing, however extra advanced for IBE and RBE. IBE requires periodic updates to keys, whereas RBE may be prolonged to help these functionalities by further mechanisms. Transferring information off-chain with information availability options can cut back on-chain storage for each public key directories and RBE, additional enhancing their effectivity.
The views expressed listed here are these of the person AH Capital Administration, L.L.C. (“a16z”) personnel quoted and will not be the views of a16z or its associates. Sure info contained in right here has been obtained from third-party sources, together with from portfolio corporations of funds managed by a16z. Whereas taken from sources believed to be dependable, a16z has not independently verified such info and makes no representations in regards to the enduring accuracy of the data or its appropriateness for a given scenario.
This content material is supplied for informational functions solely, and shouldn’t be relied upon as authorized, enterprise, funding, or tax recommendation. You need to seek the advice of your personal advisers as to these issues. References to any securities, digital property, tokens, and/or cryptocurrencies are for illustrative functions solely and don’t represent a advice to spend money on any such instrument nor do such references represent a proposal to supply funding advisory providers. Moreover, this content material isn’t directed at nor supposed to be used by any traders or potential traders, and will not beneath any circumstances be relied upon when making a call to spend money on any fund managed by a16z. (An providing to spend money on an a16z fund can be made solely by the non-public placement memorandum, subscription settlement, and different related documentation of any such fund and must be learn of their entirety.) Any investments or portfolio corporations talked about, referred to, or described will not be consultant of all investments in automobiles managed by a16z, and there may be no assurance that the investments can be worthwhile or that different investments made sooner or later can have related traits or outcomes. An inventory of investments made by funds managed by Andreessen Horowitz (excluding investments for which the issuer has not supplied permission for a16z to reveal publicly in addition to unannounced investments in publicly traded digital property) is obtainable at https://a16z.com/investments/.
Charts and graphs supplied inside are for informational functions solely and shouldn’t be relied upon when making any funding choice. Previous efficiency isn’t indicative of future outcomes. The content material speaks solely as of the date indicated. Any projections, estimates, forecasts, targets, prospects, and/or opinions expressed in these supplies are topic to alter with out discover and will differ or be opposite to opinions expressed by others. Please see https://a16z.com/disclosures for added necessary info.
Picture supply: Shutterstock