Agile cryptography: A universally composable approach

Christian Badertscher; Michele Ciampi; Aggelos Kiayias

doi:10.1007/978-3-031-48624-1_18

Agile cryptography: A universally composable approach

Christian Badertscher^*, Michele Ciampi, Aggelos Kiayias

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Being capable of updating cryptographic algorithms is an inevitable and essential practice in cryptographic engineering. This cryptographic agility, as it has been called, is a fundamental desideratum for long term cryptographic system security that still poses significant challenges from a modeling perspective. For instance, current formulations of agility fail to express the fundamental security that is expected to stem from timely implementation updates, namely the fact that the system retains some of its security properties provided that the update is performed prior to the deprecated implementation becoming exploited. In this work we put forth a novel framework for expressing updateability in the context of cryptographic primitives within the universal composition model. Our updatable ideal functionality framework provides a general template for expressing the security we expect from cryptographic agility capturing in a fine grained manner all the properties that can be retained across implementation updates. We exemplify our framework over two basic cryptographic primitives, digital signatures and non-interactive zero-knowledge (NIZK), where we demonstrate how to achieve updateability with consistency and backwards-compatibility across updates in a composable manner. We also illustrate how our notion is a continuation of a much broader scope of the concept of agility introduced by Acar, Belenkiy, Bellare, and Cash in Eurocrypt 2010 in the context of symmetric cryptographic primitives.

Original language	English
Title of host publication	Theory of Cryptography
Subtitle of host publication	21st International Conference
Editors	Guy Rothblum, Hoeteck Wee
Publisher	Springer
Pages	480-509
Number of pages	30
Volume	14372
Edition	1
ISBN (Electronic)	9783031486159
ISBN (Print)	9783031486142
DOIs	https://doi.org/10.1007/978-3-031-48624-1_18
Publication status	Published - 27 Nov 2023
Event	21st International conference on Theory of Cryptography Conference - Taipei, Taiwan, Province of China Duration: 29 Nov 2023 → 2 Dec 2023 https://tcc.iacr.org/2023

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer
Volume	14372
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	21st International conference on Theory of Cryptography Conference
Abbreviated title	TCC 2023
Country/Territory	Taiwan, Province of China
City	Taipei
Period	29/11/23 → 2/12/23
Internet address	https://tcc.iacr.org/2023

Access to Document

10.1007/978-3-031-48624-1_18

BadertscherEtalTCC2023AgileCryptographyAUniversallySubmitted manuscript, 1 MBLicence: Creative Commons: Attribution (CC-BY)

https://ia.cr/2022/1367Licence: Creative Commons: Attribution (CC-BY)

Cite this

@inproceedings{79c1dead608647728bac01527da20514,

title = "Agile cryptography: A universally composable approach",

abstract = "Being capable of updating cryptographic algorithms is an inevitable and essential practice in cryptographic engineering. This cryptographic agility, as it has been called, is a fundamental desideratum for long term cryptographic system security that still poses significant challenges from a modeling perspective. For instance, current formulations of agility fail to express the fundamental security that is expected to stem from timely implementation updates, namely the fact that the system retains some of its security properties provided that the update is performed prior to the deprecated implementation becoming exploited. In this work we put forth a novel framework for expressing updateability in the context of cryptographic primitives within the universal composition model. Our updatable ideal functionality framework provides a general template for expressing the security we expect from cryptographic agility capturing in a fine grained manner all the properties that can be retained across implementation updates. We exemplify our framework over two basic cryptographic primitives, digital signatures and non-interactive zero-knowledge (NIZK), where we demonstrate how to achieve updateability with consistency and backwards-compatibility across updates in a composable manner. We also illustrate how our notion is a continuation of a much broader scope of the concept of agility introduced by Acar, Belenkiy, Bellare, and Cash in Eurocrypt 2010 in the context of symmetric cryptographic primitives.",

author = "Christian Badertscher and Michele Ciampi and Aggelos Kiayias",

year = "2023",

month = nov,

day = "27",

doi = "10.1007/978-3-031-48624-1_18",

language = "English",

isbn = "9783031486142",

volume = "14372",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "480--509",

editor = "Guy Rothblum and Hoeteck Wee",

booktitle = "Theory of Cryptography",

address = "United Kingdom",

edition = "1",

note = "21st International conference on Theory of Cryptography Conference, TCC 2023 ; Conference date: 29-11-2023 Through 02-12-2023",

url = "https://tcc.iacr.org/2023",

}

Badertscher, C, Ciampi, M & Kiayias, A 2023, Agile cryptography: A universally composable approach. in G Rothblum & H Wee (eds), Theory of Cryptography: 21st International Conference. 1 edn, vol. 14372, Lecture Notes in Computer Science, vol. 14372, Springer, pp. 480-509, 21st International conference on Theory of Cryptography Conference, Taipei, Taiwan, Province of China, 29/11/23. https://doi.org/10.1007/978-3-031-48624-1_18

Agile cryptography: A universally composable approach. / Badertscher, Christian; Ciampi, Michele ; Kiayias, Aggelos.
Theory of Cryptography: 21st International Conference. ed. / Guy Rothblum; Hoeteck Wee. Vol. 14372 1. ed. Springer, 2023. p. 480-509 (Lecture Notes in Computer Science; Vol. 14372).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Agile cryptography

T2 - 21st International conference on Theory of Cryptography Conference

AU - Badertscher, Christian

AU - Ciampi, Michele

AU - Kiayias, Aggelos

PY - 2023/11/27

Y1 - 2023/11/27

N2 - Being capable of updating cryptographic algorithms is an inevitable and essential practice in cryptographic engineering. This cryptographic agility, as it has been called, is a fundamental desideratum for long term cryptographic system security that still poses significant challenges from a modeling perspective. For instance, current formulations of agility fail to express the fundamental security that is expected to stem from timely implementation updates, namely the fact that the system retains some of its security properties provided that the update is performed prior to the deprecated implementation becoming exploited. In this work we put forth a novel framework for expressing updateability in the context of cryptographic primitives within the universal composition model. Our updatable ideal functionality framework provides a general template for expressing the security we expect from cryptographic agility capturing in a fine grained manner all the properties that can be retained across implementation updates. We exemplify our framework over two basic cryptographic primitives, digital signatures and non-interactive zero-knowledge (NIZK), where we demonstrate how to achieve updateability with consistency and backwards-compatibility across updates in a composable manner. We also illustrate how our notion is a continuation of a much broader scope of the concept of agility introduced by Acar, Belenkiy, Bellare, and Cash in Eurocrypt 2010 in the context of symmetric cryptographic primitives.

AB - Being capable of updating cryptographic algorithms is an inevitable and essential practice in cryptographic engineering. This cryptographic agility, as it has been called, is a fundamental desideratum for long term cryptographic system security that still poses significant challenges from a modeling perspective. For instance, current formulations of agility fail to express the fundamental security that is expected to stem from timely implementation updates, namely the fact that the system retains some of its security properties provided that the update is performed prior to the deprecated implementation becoming exploited. In this work we put forth a novel framework for expressing updateability in the context of cryptographic primitives within the universal composition model. Our updatable ideal functionality framework provides a general template for expressing the security we expect from cryptographic agility capturing in a fine grained manner all the properties that can be retained across implementation updates. We exemplify our framework over two basic cryptographic primitives, digital signatures and non-interactive zero-knowledge (NIZK), where we demonstrate how to achieve updateability with consistency and backwards-compatibility across updates in a composable manner. We also illustrate how our notion is a continuation of a much broader scope of the concept of agility introduced by Acar, Belenkiy, Bellare, and Cash in Eurocrypt 2010 in the context of symmetric cryptographic primitives.

UR - http://www.scopus.com/inward/record.url?scp=85178658375&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-48624-1_18

DO - 10.1007/978-3-031-48624-1_18

M3 - Conference contribution

AN - SCOPUS:85178658375

SN - 9783031486142

VL - 14372

T3 - Lecture Notes in Computer Science

SP - 480

EP - 509

BT - Theory of Cryptography

A2 - Rothblum, Guy

A2 - Wee, Hoeteck

PB - Springer

Y2 - 29 November 2023 through 2 December 2023

ER -

Agile cryptography: A universally composable approach

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this