Paper 2024/1807

An Unstoppable Ideal Functionality for Signatures and a Modular Analysis of the Dolev-Strong Broadcast

Ran Cohen, Reichman University
Jack Doerner, Brown University
Eysa Lee, Brown University
Anna Lysyanskaya, Brown University
Lawrence Roy, Aarhus University
Abstract

Many foundational results in the literature of consensus follow the Dolev-Yao model (FOCS '81), which treats digital signatures as ideal objects with perfect correctness and unforgeability. However, no work has yet formalized an ideal signature scheme that is both suitable for this methodology and possible to instantiate, or a composition theorem that ensures security when instantiating it cryptographically. The Universal Composition (UC) framework would ensure composition if we could specify an ideal functionality for signatures and prove it UC-realizable. Unfortunately, all signature functionalities heretofore proposed are problematic when used to construct higher-level protocols: either the functionality internally computes a computationally secure signature, and therefore higher-level protocols must rely upon computational assumptions, or else the functionality introduces a new attack surface that does not exist when the functionality is realized. As a consequence, no consensus protocol has ever been analyzed in a modular way using existing ideal signature functionalities. We propose a new unstoppable ideal functionality for signatures that is UC-realized exactly by the set of standard EUF-CMA signature schemes that are consistent and linear time. No adversary can prevent honest parties from obtaining perfectly ideal signature services from our functionality. We showcase its usefulness by presenting the first modular analysis of the Dolev-Strong broadcast protocol (SICOMP '83) in the UC framework. Our result can be interpreted as a step toward a sound realization of the Dolev-Yao methodology. We also generalize our result to the threshold setting.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint.
Keywords
Signature FunctionalitiesBroadcastByzantine AgreementSignaturesThreshold SignaturesUniversal Composition
Contact author(s)
cohenran @ runi ac il
j @ ckdoerner net
eysa_lee @ brown edu
anna_lysyanskaya @ brown edu
ldr709 @ gmail com
History
2024-12-17: revised
2024-11-05: received
See all versions
Short URL
https://ia.cr/2024/1807
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2024/1807,
      author = {Ran Cohen and Jack Doerner and Eysa Lee and Anna Lysyanskaya and Lawrence Roy},
      title = {An Unstoppable Ideal Functionality for Signatures and a Modular Analysis of the Dolev-Strong Broadcast},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/1807},
      year = {2024},
      url = {https://eprint.iacr.org/2024/1807}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.