Computational Soundness of Coinductive Symbolic Security under Active Attacks

Hajiabadi, Mohammad; Kapron, Bruce M.

doi:10.1007/978-3-642-36594-2_30

Cited by 3 publications

(1 citation statement)

References 47 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Anonymity can be expressed as single entity's unidentification in the set of entities, so a suitable method for the study of anonymity is observational equivalence . Equivalent traces were presented firstly in the paper , and the paper also made use of equivalent traces to analyze anonymity of protocols.…”

Section: Introductionmentioning

confidence: 99%

A new method of formalizing anonymity based on protocol composition logic

Tao

Han

Xian

et al. 2014

Security Comm Networks

View full text Add to dashboard Cite

In order to make protocol composition logic (PCL) model satisfy the special needs of anonymous analysis, based on observational equivalence theory, this paper extended PCL to be anonymity PCL (APCL). In anonymity PCL, equivalent messages and equivalent traces were proposed. On the basis of equivalent traces, three kinds of anonymity were defined: sender anonymity, recipient anonymity, and relation anonymity. Finally, taking direct anonymous attestation (DAA) as an example, we formalized the anonymity of DAA by the new framework, the result of which demonstrates that DAA satisfies anonymity and verifies the correctness and feasibility of the new framework. Copyright © 2014 John Wiley & Sons, Ltd.

show abstract

Section: Introductionmentioning

confidence: 99%

A new method of formalizing anonymity based on protocol composition logic

Tao

Han

Xian

et al. 2014

Security Comm Networks

View full text Add to dashboard Cite

show abstract

Symbolic Encryption with Pseudorandom Keys

Micciancio

2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Computational Soundness of Coinductive Symbolic Security under Active Attacks

Hajiabadi

Kapron

2013

Theory of Cryptography

Self Cite

View full text Add to dashboard Cite

Abstract. In Eurocrypt 2010, Miccinacio initiated an investigation of cryptographically sound, symbolic security analysis with respect to coinductive adversarial knowledge, and demonstrated that under an adversarially passive model, certain security criteria (e.g. indistinguishability) may be given a computationally sound symbolic characterization, without the assumption of key acyclicity. Left open in his work was the fundamental question of "the viability of extending the coinductive approach to prove computational soundness results in the presence of active adversaries." In this paper we make some initial steps toward answering this question in the affirmative with respect to an extension of a trace-based security model (proposed by Micciancio and Warinschi in TCC 2004) including asymmetric and symmetric encryption; in particular we prove that a random computational trace can be soundly abstracted by a coinductive symbolic trace with overwhelming probability, provided that both the underlying encryption schemes provide IND-CCA2 security (plus ciphertext integrity for the symmetric scheme), and that the diameter of the underlying coinductively-hidden subgraph is constant in every symbolic trace. This result holds even if the protocol allows arbitrarily nested applications of symmetric/asymmetric encryption, unrestricted transmission of symmetric keys, and adversaries who adaptively corrupt users, along with other forms of active attack. As part of our proof, we formulate a game-based definition of encryption security allowing adaptive corruptions of keys and certain forms of adaptive key-dependent plaintext attack, along with other common forms of CCA2 attack. We prove that (with assumptions similar to above,) security under this game is implied by IND-CCA2 security. This also characterizes a provably benign form of cyclic encryption which can be achieved under standard notions of encryption security, which may be of independent interest.

show abstract

Computational Soundness of Coinductive Symbolic Security under Active Attacks

Cited by 3 publications

References 47 publications

A new method of formalizing anonymity based on protocol composition logic

A new method of formalizing anonymity based on protocol composition logic

Symbolic Encryption with Pseudorandom Keys

Computational Soundness of Coinductive Symbolic Security under Active Attacks

Contact Info

Product

Resources

About