Universally Composable Security

Ran Canetti*

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

45 Scopus citations

Abstract

This work presents a general framework for describing cryptographic protocols and analyzing their security. The framework allows specifying the security requirements of practically any cryptographic task in a unified and systematic way. Furthermore, in this framework the security of protocols is preserved under a general composition operation, called universal composition. The proposed framework with its security-preserving composition operation allows for modular design and analysis of complex cryptographic protocols from simpler building blocks. Moreover, within this framework, protocols are guaranteed to maintain their security in any context, even in the presence of an unbounded number of arbitrary protocol sessions that run concurrently in an adversarially controlled manner. This is a useful guarantee, which allows arguing about the security of cryptographic protocols in complex and unpredictable environments such as modern communication networks.

Original languageEnglish
Article number28
JournalJournal of the ACM
Volume67
Issue number5
DOIs
StatePublished - Oct 2020
Externally publishedYes

Funding

FundersFunder number
National Science Foundation1801564, 1414119, 1931714

    Keywords

    • Security modeling
    • and analysis
    • modular security
    • security-preserving composition
    • specification
    • universal composition

    Fingerprint

    Dive into the research topics of 'Universally Composable Security'. Together they form a unique fingerprint.

    Cite this