Time-Bounded Task-PIOAs: A Framework for Analyzing Security Protocols

Abstract. We define a new primitive, input-aware equivocable commitment, baring similar hardness assumptions as plaintext-aware encryption and featuring equivocability. We construct an actual input-aware equivocable commitment protocol, based on a flavor of Diffie-Hellman assumptions allowing adversarially chosen domain parameters. On a parallel front, and since our commitment is extractable and equivocable in a straight-line way, we show that our commitment enjoys UC-security, when atomic exchanges are available as a UC setup. We further compare our protocol and our UC setup with similar, existing ones (i.e., in terms of efficiency, assumptions needed, etc.). Finally, we show that cryptography becomes UC-realizable in a natural way when participants are able to have "close encounters" or when atomic exchanges can be enforced onto the communication.

Section: B Proof Of Th 10mentioning

confidence: 99%

Input-Aware Equivocable Commitments and UC-secure Commitments with Atomic Exchanges

Boureanu

Vaudenay

2013

“…Such assumptions on the idealprocess adversary are relatively wide-spread, but little-researched. They appeared already in the original report introducing universal composability [19], where the ideal signature functionality F SIG assumed the adversary to return a bit-string representing the signature when asked so. The rationale of putting such restrictions on the ideal adversary are twofold.…”

Section: Ideal Librarymentioning

confidence: 99%

Threshold Homomorphic Encryption in the Universally Composable Cryptographic Library

Laud

Ngo

2008

Abstract. The universally composable cryptographic library by Backes, Pfitzmann and Waidner provides Dolev-Yao-like, but cryptographically sound abstractions to common cryptographic primitives like encryptions and signatures. The library has been used to give the correctness proofs of various protocols; while the arguments in such proofs are similar to the ones done with the Dolev-Yao model that has been researched for a couple of decades already, the conclusions that such arguments provide are cryptographically sound. Various interesting protocols, for example e-voting, make extensive use of primitives that the library currently does not provide. The library can certainly be extended, and in this paper we provide one such extensionwe add threshold homomorphic encryption to the universally composable cryptographic library and demonstrate its usefulness by (re)proving the security of a well-known e-voting protocol.

“…Most of the recent approaches to primitive-construction employ the universal composability (UC) framework [6] in order to specify and prove the correctness/security of their cryptographic designs. The UC framework is a formalism that allows for cryptographic protocols to be computationally analysed in a single session, yet the security guarantees thereby obtained are preserved when multiple sessions are composed concurrently, in parallel and/or sequentially.…”

Section: Introductionmentioning

confidence: 99%

“…The UC framework is a formalism that allows for cryptographic protocols to be computationally analysed in a single session, yet the security guarantees thereby obtained are preserved when multiple sessions are composed concurrently, in parallel and/or sequentially. See Appendix A, for a short wrap-up on UC frameworks [6,8] and UC proofs. In [6], Canetti shows that any polynomial-time multi-party functionality is feasible in the UC framework if the majority of participants are honest.…”

Section: Introductionmentioning

confidence: 99%

“…See Appendix A, for a short wrap-up on UC frameworks [6,8] and UC proofs. In [6], Canetti shows that any polynomial-time multi-party functionality is feasible in the UC framework if the majority of participants are honest. Otherwise, feasibility is usually attained if the models are augmented with "setup-assumptions", obtaining the so-called "UC hybrid models" (i.e., extra ideal functionalities are made available to the parties).…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Several Weak Bit-Commitments Using Seal-Once Tamper-Evident Devices

Boureanu

Vaudenay

2012

Following both theoretical and practical arguments, we construct UC-secure bit-commitment protocols that place their strength on the sender's side and are built using tamper-evident devices, e.g., a type of distinguishable, sealed envelopes. We show that by using a second formalisation of tamper-evident distinguishable envelopes we can attain better security guarantees, i.e., EUC-security. We show the relations between several flavours of weak bit-commitments, bit-commitments and distinguishable tamper-evident envelopes. We focus, at all points, on the lightweight nature of the underlying mechanisms and on the end-to-end human verifiability.