Public immunization against complete subversion without random oracles

Research output: Contribution to book/anthology/report/proceedingArticle in proceedingsResearchpeer-review

  • Giuseppe Ateniese, Stevens Institute of Technology
  • ,
  • Danilo Francati, Stevens Institute of Technology
  • ,
  • Bernardo Magri
  • Daniele Venturi, Sapienza University of Rome

We seek constructions of general-purpose immunizers that take arbitrary cryptographic primitives, and transform them into ones that withstand a powerful "malicious but proud" adversary, who attempts to break security by possibly subverting the implementation of all algorithms (including the immunizer itself!), while trying not to be detected. This question is motivated by the recent evidence of cryptographic schemes being intentionally weakened, or designed together with hidden backdoors, e.g., with the scope of mass surveillance.

Our main result is a subversion-secure immunizer in the plain model (assuming collision-resistant hashing), that works for a fairly large class of deterministic primitives, i.e., cryptoschemes where a secret (but tamperable) random source is used to generate the keys and the public parameters, whereas all other algorithms are deterministic. The immunizer relies on an additional independent source of public randomness, which is used to sample a public seed. While the public source is untamperable, the subversion of all other algorithms is allowed to depend on it.

Previous work in the area only obtained subversion-secure immunization for very restricted classes of primitives, often in weaker models of subversion and relying on random oracles, or by leveraging a higher number of independent random sources.

Original languageEnglish
Title of host publicationApplied Cryptography and Network Security
EditorsRobert H. Deng, Valérie Gauthier-Umanã, Martin Ochoa, Moti Yung
Number of pages21
Place of publicationCham
PublisherSpringer
Publication year2019
Pages465-485
ISBN (print)978-3-030-21567-5
DOIs
Publication statusPublished - 2019
Event17th International Conference on Applied Cryptography and Network Security (ACNS) - Bogota, Colombia
Duration: 5 Jun 20197 Jun 2019

Conference

Conference17th International Conference on Applied Cryptography and Network Security (ACNS)
LandColombia
ByBogota
Periode05/06/201907/06/2019
SeriesLecture Notes in Computer Science
Volume11464
ISSN0302-9743

    Research areas

  • SECURITY

See relations at Aarhus University Citationformats

ID: 176050428