Paper 2000/066

A Model for Asynchronous Reactive Systems and its Application to Secure Message Transmission

Birgit Pfitzmann and Michael Waidner


We present the first rigorous model for secure reactive systems in asynchronous networks with a sound cryptographic semantics, supporting abstract specifications and the composition of secure systems. This enables modular proofs of security, which is essential in bridging the gap between the rigorous proof techniques of cryptography and tool-supported formal proof techniques. The model follows the general simulatability approach of modern cryptography. A variety of network structures and trust models can be described, such as static and adaptive adversaries. As an example of our specification methodology we provide the first abstract and complete specification for Secure Message Transmission, improving on recent results by Lynch, and verify one concrete implementation. Our proof is based on a general theorem on the security of encryption in a reactive multi-user setting, generalizing a recent result by Bellare

Available format(s)
Publication info
Published elsewhere. Full version of a paper accepted for the IEEE Symposium on Security and Privacy, Oakland, May 2001.
Contact author(s)
wmi @ zurich ibm com
2001-02-23: last of 2 revisions
2000-12-20: received
See all versions
Short URL
Creative Commons Attribution


      author = {Birgit Pfitzmann and Michael Waidner},
      title = {A Model for Asynchronous Reactive Systems and its Application to Secure Message Transmission},
      howpublished = {Cryptology ePrint Archive, Paper 2000/066},
      year = {2000},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.