Advertisement

On the Notion of Statistical Security in Simulatability Definitions

  • Dennis Hofheinz
  • Dominique Unruh
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3650)

Abstract

We investigate the definition of statistical security (i.e., security against unbounded adversaries) in the framework of reactive simulatability. This framework allows to formulate and analyze multi-party protocols modularly by providing a composition theorem for protocols. However, we show that the notion of statistical security, as defined by Backes, Pfitzmann and Waidner for the reactive simulatability framework, does not allow for secure composition of protocols. This in particular invalidates the proof of the composition theorem.

We give evidence that the reason for the non-composability of statistical security is no artifact of the framework itself, but of the particular formulation of statistical security. Therefore, we give a modified notion of statistical security in the reactive simulatability framework. We prove that this notion allows for secure composition of protocols.

As to the best of our knowledge, no formal definition of statistical security has been fixed for Canetti’s universal composability framework, we believe that our observations and results can also help to avoid potential pitfalls there.

Keywords

Reactive simulatability universal composability statistical security protocol composition 

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Backes, M.: Cryptographically Sound Analysis of Security Protocols. PhD thesis, Universität des Saarlandes (2002)Google Scholar
  2. 2.
    Backes, M., Pfitzmann, B., Waidner, M.: A universally composable cryptographic library. IACR ePrint Archive (January 2003)Google Scholar
  3. 3.
    Backes, M., Pfitzmann, B., Waidner, M.: Secure asynchronous reactive systems. IACR ePrint Archive (March 2004)Google Scholar
  4. 4.
    Canetti, R.: Universally composable security: A new paradigm for cryptographic protocols. In: 42th Annual Symposium on Foundations of Computer Science, Proceedings of FOCS 2001, pp. 136–145. IEEE Computer Society Press, Los Alamitos (2001)Google Scholar
  5. 5.
    Canetti, R.: Universally composable security: A new paradigm for cryptographic protocols. IACR ePrint Archive (January 2005)Google Scholar
  6. 6.
    Canetti, R., Kushilevitz, E., Lindell, Y.: On the limitations of universally composable two-party computation without set-up assumptions. In: Biham, E. (ed.) EUROCRYPT 2003. LNCS, vol. 2656, pp. 68–86. Springer, Heidelberg (2003)CrossRefGoogle Scholar
  7. 7.
    Dolev, D., Yao, A.C.: On the security of public key protocols. IEEE Transactions on Information Theory 29(2), 198–208 (1983)zbMATHCrossRefMathSciNetGoogle Scholar
  8. 8.
    Goldreich, O., Krawczyk, H.: On the composition of zero-knowledge proof systems. In: Paterson, M. (ed.) ICALP 1990. LNCS, vol. 443, pp. 268–282. Springer, Heidelberg (1990)CrossRefGoogle Scholar
  9. 9.
    Goldwasser, S., Micali, S.: Probabilistic encryption. Journal of Computer and System Sciences 28(2), 270–299 (1984)zbMATHCrossRefMathSciNetGoogle Scholar
  10. 10.
    Hofheinz, D., Unruh, D.: Comparing two notions of simulatability. In: Kilian, J. (ed.) TCC 2005. LNCS, vol. 3378, pp. 86–103. Springer, Heidelberg (2005)CrossRefGoogle Scholar
  11. 11.
    Hofheinz, D., Unruh, D.: On the notion of statistical security in simulatability definitions. IACR ePrint Archive (February 2005)Google Scholar
  12. 12.
    Pfitzmann, B., Waidner, M.: A model for asynchronous reactive systems and its application to secure message transmission. In: IEEE Symposium on Security and Privacy, Proceedings of SSP 2001, pp. 184–200. IEEE Computer Society, Los Alamitos (2001)CrossRefGoogle Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2005

Authors and Affiliations

  • Dennis Hofheinz
    • 1
  • Dominique Unruh
    • 1
  1. 1.IAKS, Arbeitsgruppe Systemsicherheit, Prof. Dr. Th. Beth, Fakultät für InformatikUniversität KarlsruheGermany

Personalised recommendations