Universally Composable Simultaneous Broadcast against a Dishonest Majority

Myrto Arapinis; Thomas Zacharias; Nikolaos Lamprou; Liam Medley; Ábel Kocsis

doi:10.1145/3583668

Universally Composable Simultaneous Broadcast against a Dishonest Majority

Myrto Arapinis, Thomas Zacharias, Nikolaos Lamprou, Liam Medley, Ábel Kocsis

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Simultaneous broadcast (SBC) protocols, introduced in [Chor et al., FOCS 1985], constitute a special class of broadcast channels which, besides consistency, guarantee that all senders broadcast their messages independently of the messages broadcast by other parties. SBC has proved extremely useful in the design of various distributed computing constructions (e.g., multiparty computation, coin flipping, electronic voting, fair bidding). As with any communication channel, it is crucial that SBC security is composable, i.e., it is preserved under concurrent protocol executions. The work of [Hevia, SCN 2006] proposes a formal treatment of SBC in the state-of-the-art Universal Composability (UC) framework [Canetti, FOCS 2001] and a construction that is secure assuming an honest majority.

In this work, we provide a comprehensive revision of SBC in the UC setting and improve the results of [Hevia, SCN 2006]. In particular, we present a new SBC functionality that captures \emph{both simultaneity and liveness} by considering a broadcast period such that (i) within this period all messages are broadcast independently and (ii) after the period ends, the session is terminated without requiring full participation of all parties. Next, we employ time-lock encryption (TLE) over a standard broadcast channel to devise an SBC protocol that realizes our functionality against any adaptive adversary corrupting up to all-but-one parties. In our study, we capture synchronicity via a global clock [Katz et al., TCC 2013], thus lifting the restrictions of the original synchronous communication setting used in [Hevia, SCN 2006]. As a building block of independent interest, we prove the first TLE protocol that is \emph{adaptively} secure in the UC setting, strengthening the main result of [Arapinis et al., ASIACRYPT 2021].

Finally, we formally exhibit the power of our SBC construction in the design of UC-secure applications by presenting two interesting use cases: (i) distributed generation of uniform random strings, and (ii) decentralized electronic voting systems, without the presence of a special trusted party.

Original language	English
Title of host publication	PODC '23: Proceedings of the 2023 ACM Symposium on Principles of Distributed Computing
Place of Publication	New York
Publisher	ACM
Pages	200-210
Number of pages	11
ISBN (Electronic)	9798400701214
DOIs	https://doi.org/10.1145/3583668
Publication status	Published - 16 Jun 2023
Event	The 42nd ACM Symposium on Principles of Distributed Computing - Orlando, United States Duration: 19 Jun 2023 → 23 Jun 2023 Conference number: 42 https://www.podc.org/podc2023/call-for-papers/

Conference

Conference	The 42nd ACM Symposium on Principles of Distributed Computing
Abbreviated title	ACM PODC 2023
Country/Territory	United States
City	Orlando
Period	19/06/23 → 23/06/23
Internet address	https://www.podc.org/podc2023/call-for-papers/

Keywords / Materials (for Non-textual outputs)

secure broadcast
universal composability
Time-lock encryption

Access to Document

10.1145/3583668Licence: All Rights Reserved

Universally composable_ARAPINIS_DOA26032023_AFV_CC-BYAccepted author manuscript, 1.33 MBLicence: Creative Commons: Attribution (CC-BY)

https://dl.acm.org/doi/10.1145/3583668.3594591Licence: All Rights Reserved

Cite this

@inproceedings{7fcc1eeb346240c99071de909cae4978,

title = "Universally Composable Simultaneous Broadcast against a Dishonest Majority",

abstract = "Simultaneous broadcast (SBC) protocols, introduced in [Chor et al., FOCS 1985], constitute a special class of broadcast channels which, besides consistency, guarantee that all senders broadcast their messages independently of the messages broadcast by other parties. SBC has proved extremely useful in the design of various distributed computing constructions (e.g., multiparty computation, coin flipping, electronic voting, fair bidding). As with any communication channel, it is crucial that SBC security is composable, i.e., it is preserved under concurrent protocol executions. The work of [Hevia, SCN 2006] proposes a formal treatment of SBC in the state-of-the-art Universal Composability (UC) framework [Canetti, FOCS 2001] and a construction that is secure assuming an honest majority.In this work, we provide a comprehensive revision of SBC in the UC setting and improve the results of [Hevia, SCN 2006]. In particular, we present a new SBC functionality that captures \emph{both simultaneity and liveness} by considering a broadcast period such that (i) within this period all messages are broadcast independently and (ii) after the period ends, the session is terminated without requiring full participation of all parties. Next, we employ time-lock encryption (TLE) over a standard broadcast channel to devise an SBC protocol that realizes our functionality against any adaptive adversary corrupting up to all-but-one parties. In our study, we capture synchronicity via a global clock [Katz et al., TCC 2013], thus lifting the restrictions of the original synchronous communication setting used in [Hevia, SCN 2006]. As a building block of independent interest, we prove the first TLE protocol that is \emph{adaptively} secure in the UC setting, strengthening the main result of [Arapinis et al., ASIACRYPT 2021].Finally, we formally exhibit the power of our SBC construction in the design of UC-secure applications by presenting two interesting use cases: (i) distributed generation of uniform random strings, and (ii) decentralized electronic voting systems, without the presence of a special trusted party.",

keywords = "secure broadcast, universal composability, Time-lock encryption",

author = "Myrto Arapinis and Thomas Zacharias and Nikolaos Lamprou and Liam Medley and {\'A}bel Kocsis",

note = "Funding Information: Zacharias was supported by Input Output (https://iohk.io) through their funding of the Edinburgh Blockchain Technology Lab. Publisher Copyright: {\textcopyright} 2023 ACM.; The 42nd ACM Symposium on Principles of Distributed Computing, ACM PODC 2023 ; Conference date: 19-06-2023 Through 23-06-2023",

year = "2023",

month = jun,

day = "16",

doi = "10.1145/3583668",

language = "English",

pages = "200--210",

booktitle = "PODC '23: Proceedings of the 2023 ACM Symposium on Principles of Distributed Computing",

publisher = "ACM",

url = "https://www.podc.org/podc2023/call-for-papers/",

}

Arapinis, M, Zacharias, T, Lamprou, N, Medley, L & Kocsis, Á 2023, Universally Composable Simultaneous Broadcast against a Dishonest Majority. in PODC '23: Proceedings of the 2023 ACM Symposium on Principles of Distributed Computing. ACM, New York, pp. 200-210, The 42nd ACM Symposium on Principles of Distributed Computing, Orlando, Florida, United States, 19/06/23. https://doi.org/10.1145/3583668

TY - GEN

T1 - Universally Composable Simultaneous Broadcast against a Dishonest Majority

AU - Arapinis, Myrto

AU - Zacharias, Thomas

AU - Lamprou, Nikolaos

AU - Medley, Liam

AU - Kocsis, Ábel

N1 - Conference code: 42

PY - 2023/6/16

Y1 - 2023/6/16

N2 - Simultaneous broadcast (SBC) protocols, introduced in [Chor et al., FOCS 1985], constitute a special class of broadcast channels which, besides consistency, guarantee that all senders broadcast their messages independently of the messages broadcast by other parties. SBC has proved extremely useful in the design of various distributed computing constructions (e.g., multiparty computation, coin flipping, electronic voting, fair bidding). As with any communication channel, it is crucial that SBC security is composable, i.e., it is preserved under concurrent protocol executions. The work of [Hevia, SCN 2006] proposes a formal treatment of SBC in the state-of-the-art Universal Composability (UC) framework [Canetti, FOCS 2001] and a construction that is secure assuming an honest majority.In this work, we provide a comprehensive revision of SBC in the UC setting and improve the results of [Hevia, SCN 2006]. In particular, we present a new SBC functionality that captures \emph{both simultaneity and liveness} by considering a broadcast period such that (i) within this period all messages are broadcast independently and (ii) after the period ends, the session is terminated without requiring full participation of all parties. Next, we employ time-lock encryption (TLE) over a standard broadcast channel to devise an SBC protocol that realizes our functionality against any adaptive adversary corrupting up to all-but-one parties. In our study, we capture synchronicity via a global clock [Katz et al., TCC 2013], thus lifting the restrictions of the original synchronous communication setting used in [Hevia, SCN 2006]. As a building block of independent interest, we prove the first TLE protocol that is \emph{adaptively} secure in the UC setting, strengthening the main result of [Arapinis et al., ASIACRYPT 2021].Finally, we formally exhibit the power of our SBC construction in the design of UC-secure applications by presenting two interesting use cases: (i) distributed generation of uniform random strings, and (ii) decentralized electronic voting systems, without the presence of a special trusted party.

AB - Simultaneous broadcast (SBC) protocols, introduced in [Chor et al., FOCS 1985], constitute a special class of broadcast channels which, besides consistency, guarantee that all senders broadcast their messages independently of the messages broadcast by other parties. SBC has proved extremely useful in the design of various distributed computing constructions (e.g., multiparty computation, coin flipping, electronic voting, fair bidding). As with any communication channel, it is crucial that SBC security is composable, i.e., it is preserved under concurrent protocol executions. The work of [Hevia, SCN 2006] proposes a formal treatment of SBC in the state-of-the-art Universal Composability (UC) framework [Canetti, FOCS 2001] and a construction that is secure assuming an honest majority.In this work, we provide a comprehensive revision of SBC in the UC setting and improve the results of [Hevia, SCN 2006]. In particular, we present a new SBC functionality that captures \emph{both simultaneity and liveness} by considering a broadcast period such that (i) within this period all messages are broadcast independently and (ii) after the period ends, the session is terminated without requiring full participation of all parties. Next, we employ time-lock encryption (TLE) over a standard broadcast channel to devise an SBC protocol that realizes our functionality against any adaptive adversary corrupting up to all-but-one parties. In our study, we capture synchronicity via a global clock [Katz et al., TCC 2013], thus lifting the restrictions of the original synchronous communication setting used in [Hevia, SCN 2006]. As a building block of independent interest, we prove the first TLE protocol that is \emph{adaptively} secure in the UC setting, strengthening the main result of [Arapinis et al., ASIACRYPT 2021].Finally, we formally exhibit the power of our SBC construction in the design of UC-secure applications by presenting two interesting use cases: (i) distributed generation of uniform random strings, and (ii) decentralized electronic voting systems, without the presence of a special trusted party.

KW - secure broadcast

KW - universal composability

KW - Time-lock encryption

U2 - 10.1145/3583668

DO - 10.1145/3583668

M3 - Conference contribution

SP - 200

EP - 210

BT - PODC '23: Proceedings of the 2023 ACM Symposium on Principles of Distributed Computing

PB - ACM

CY - New York

T2 - The 42nd ACM Symposium on Principles of Distributed Computing

Y2 - 19 June 2023 through 23 June 2023

ER -

Universally Composable Simultaneous Broadcast against a Dishonest Majority

Abstract

Conference

Keywords / Materials (for Non-textual outputs)

Access to Document

Fingerprint

Cite this