Paper 2014/601

Adaptive versus Static Security in the UC Model

Ivan Damgård and Jesper Buus Nielsen

Abstract

We show that for certain class of unconditionally secure protocols and target functionalities, static security implies adaptive security in the UC model. Similar results were previously only known for models with weaker security and/or composition guarantees. The result is, for instance, applicable to a wide range of protocols based on secret sharing. It ``explains'' why an often used proof technique for such protocols works, namely where the simulator runs in its head a copy of the honest players using dummy inputs and generates a protocol execution by letting the dummy players interact with the adversary. When a new player is corrupted, the simulator adjusts the state of its dummy copy of to be consistent with the real inputs and outputs of and gives the state to the adversary. Our result gives a characterisation of the cases where this idea will work to prove adaptive security. As a special case, we use our framework to give the first proof of adaptive security of the seminal BGW protocol in the UC framework.

Metadata
Available format(s)
PDF
Category
Foundations
Publication info
Preprint. MINOR revision.
Keywords
universally composable securityadaptive security
Contact author(s)
jbn @ cs au dk
History
2014-08-11: received
Short URL
https://ia.cr/2014/601
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2014/601,
      author = {Ivan Damgård and Jesper Buus Nielsen},
      title = {Adaptive versus Static Security in the {UC} Model},
      howpublished = {Cryptology {ePrint} Archive, Paper 2014/601},
      year = {2014},
      url = {https://eprint.iacr.org/2014/601}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.