Cryptology ePrint Archive: Report 2021/1078

Reflection, Rewinding, and Coin-Toss in EasyCrypt

Denis Firsov and Dominique Unruh

Abstract: In this paper we derive a suit of lemmas which allows users to internally reflect EasyCrypt programs into distributions which correspond to their denotational semantics (probabilistic reflection). Based on this we develop techniques for reasoning about rewinding of adversaries in EasyCrypt. (A widely used technique in cryptology.) We use reflection and rewindability results to prove the security of a coin-toss protocol.

Category / Keywords: foundations / cryptography, formal methods, EasyCrypt, reflection, rewindability, commitments, binding, coin-toss

Date: received 22 Aug 2021

Contact author: denis firsov at gmail com

Available format(s): PDF | BibTeX Citation

Version: 20210823:063640 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]