TR13-085 Authors: Eli Ben-Sasson, Yohay Kaplan, Swastik Kopparty, Or Meir, Henning Stichtenoth

Publication: 13th June 2013 03:41

Downloads: 2162

Keywords:

The PCP theorem (Arora et. al., J. ACM 45(1,3)) says that every NP-proof can be encoded to another proof, namely, a probabilistically checkable proof (PCP), which can be tested by a verifier that queries only a small part of the PCP. A natural question is how large is the blow-up incurred by this encoding, i.e., how long is the PCP compared to the original NP-proof. The state-of-the-art work of Ben-Sasson and Sudan (SICOMP 38(2)) and Dinur (J. ACM 54(3)) shows that one can encode proofs of length $n$ by PCPs of length $n\cdot\log^{O(1)} n$ that can be verified using a constant number of queries. In this work, we show that if the query complexity is relaxed to $n^{\varepsilon}$, then one can construct PCPs of length $O(n)$ for circuit-SAT, and PCPs of length $O(t\log t)$ for any language in NTIME($t$).

More specifically, for any $\varepsilon>0$ we present (non-uniform) probabilistically checkable proofs (PCPs) of length $2^{O(1/\varepsilon)}\cdot n$ that can be checked using $n^{\varepsilon}$ queries for circuit-SAT instances of size $n$. Our PCPs have perfect completeness and constant soundness. This is the first constant-rate PCP construction that achieves constant soundness with nontrivial query complexity ($o(n)$).

Our proof replaces the low-degree polynomials in algebraic PCP constructions with tensors of transitive algebraic geometry (AG) codes. We show that the automorphisms of an AG code can be used to simulate the role of affine transformations which are crucial in earlier high-rate algebraic PCP constructions. Using this observation we conclude that any asymptotically good family of transitive AG codes over a constant-sized alphabet leads to a family of constant-rate PCPs with polynomially small query complexity. Such codes are constructed in the appendix to this paper for the first time for every message length, after they have been constructed for infinitely many message lengths by Stichtenoth [Trans. Information Theory 2006].