Composition Implies Adaptive Security in Minicrypt

  • Krzysztof Pietrzak
Part of the Lecture Notes in Computer Science book series (LNCS, volume 4004)


To prove that a secure key-agreement protocol exists one must at least show PNP. Moreover any proof that the sequential composition of two non-adaptively secure pseudorandom functions is secure against at least two adaptive queries must falsify the decisional Diffie-Hellman assumption, a standard assumption from public-key cryptography. Hence proving any of this two seemingly unrelated statements would require a significant breakthrough. We show that at least one of the two statements is true.

To our knowledge this gives the first positive cryptographic result (namely that composition implies some weak adaptive security) which holds in Minicrypt, but not in Cryptomania, i.e. under the assumption that one-way functions exist, but public-key cryptography does not.


Sequential Composition Security Parameter Oblivious Transfer Pseudorandom Function Random Coin 


  1. 1.
    Diffie, W., Hellman, M.E.: New directions in cryptography. IEEE Transactions on Information Theory IT-22(6), 644–654 (1976)MathSciNetCrossRefMATHGoogle Scholar
  2. 2.
    El-Gamal, T.: A public key cryptosystem and a signature scheme based on discrete logarithms. IEEE Transactions on Information Theory 31(4), 469–472 (1985)MathSciNetCrossRefGoogle Scholar
  3. 3.
    Gertner, Y., Kannan, S., Malkin, T., Reingold, O., Viswanathan, M.: The Relationship between Public Key Encryption and Oblivious Transfer. In: FOCS, pp. 325–335 (2000)Google Scholar
  4. 4.
    Goldreich, O., Goldwasser, S., Micali, S.: How to construct random functions. J. ACM 33(4), 792–807 (1986)MathSciNetCrossRefMATHGoogle Scholar
  5. 5.
    Harnik, D., Naor, M.: On the Compressibility of NP instances and Cryptographic Applications (manuscript, 2005)Google Scholar
  6. 6.
    Holenstein, T.: Personal Communication (2005)Google Scholar
  7. 7.
    Holenstein, T.: Immunization of key-agreement schemes, PhD.thesis. PhD thesis, ETH Zürich (to appear, 2006)Google Scholar
  8. 8.
    Impagliazzo, R.: A personal view of average-case complexity. In: Structure in Complexity Theory Conference, pp. 134–147 (1995)Google Scholar
  9. 9.
    Impagliazzo, R., Rudich, S.: Limits on the Provable Consequences of One-way Permutations. In: Proc, 21th ACM Symposium on the Theory of Computing (STOC), pp. 44–61 (1989)Google Scholar
  10. 10.
    Maurer, U.M.: Secret key agreement by public discussion from common information. IEEE Transactions on Information Theory 39(3), 733–742 (1993)MathSciNetCrossRefMATHGoogle Scholar
  11. 11.
    Maurer, U., Pietrzak, K., Renner, R.: Indistinguishability Amplification (manuscript, 2006)Google Scholar
  12. 12.
    Myers, S.: Black-box composition does not imply adaptive security. In: Cachin, C., Camenisch, J.L. (eds.) EUROCRYPT 2004. LNCS, vol. 3027, pp. 189–206. Springer, Heidelberg (2004)CrossRefGoogle Scholar
  13. 13.
    Pietrzak, K.: Composition does not imply adaptive security. In: Shoup, V. (ed.) CRYPTO 2005. LNCS, vol. 3621, pp. 55–65. Springer, Heidelberg (2005)CrossRefGoogle Scholar
  14. 14.
    Reingold, O., Trevisan, L., Vadhan, S.P.: Notions of reducibility between cryptographic primitives. In: Naor, M. (ed.) TCC 2004. LNCS, vol. 2951, pp. 1–20. Springer, Heidelberg (2004)CrossRefGoogle Scholar
  15. 15.
    Rudich, S.: The use of interaction in public cryptosystems (extended abstract). In: Feigenbaum, J. (ed.) CRYPTO 1991. LNCS, vol. 576, pp. 242–251. Springer, Heidelberg (1992)Google Scholar
  16. 16.
    Shannon, C.E.: A mathematical theory of communication. Bell Systems Technical Journal 27, 373–423, 623–656 (1948)MathSciNetCrossRefMATHGoogle Scholar
  17. 17.
    Wee, H.: Finding pessiland. In: Halevi, S., Rabin, T. (eds.) TCC 2006. LNCS, vol. 3876, pp. 429–442. Springer, Heidelberg (2006)CrossRefGoogle Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2006

Authors and Affiliations

  • Krzysztof Pietrzak
    • 1
  1. 1.Département d’informatique, Ecole Normale SupérieureParisFrance

Personalised recommendations