Universally Composable Security

Research output: Contribution to journalArticlepeer-review


This work presents a general framework for describing cryptographic protocols and analyzing their security. The framework allows specifying the security requirements of practically any cryptographic task in a unified and systematic way. Furthermore, in this framework the security of protocols is preserved under a general composition operation, called universal composition. The proposed framework with its security-preserving composition operation allows for modular design and analysis of complex cryptographic protocols from simpler building blocks. Moreover, within this framework, protocols are guaranteed to maintain their security in any context, even in the presence of an unbounded number of arbitrary protocol sessions that run concurrently in an adversarially controlled manner. This is a useful guarantee, which allows arguing about the security of cryptographic protocols in complex and unpredictable environments such as modern communication networks.

Original languageEnglish
Article number28
JournalJournal of the ACM
Issue number5
StatePublished - Oct 2020
Externally publishedYes


  • Security modeling
  • and analysis
  • modular security
  • security-preserving composition
  • specification
  • universal composition


Dive into the research topics of 'Universally Composable Security'. Together they form a unique fingerprint.

Cite this