Paper 2024/1938

A Formal Treatment of Key Transparency Systems with Scalability Improvements

Nicholas Brandt, ETH Zurich
Mia Filić, ETH Zurich
Sam A. Markelon, University of Florida
Abstract

Key Transparency (KT) systems have emerged as a critical technology for securely distributing and verifying the correctness of public keys used in end-to-end encrypted messaging services. Despite substantial academic interest, increased industry adoption, and IETF standardization efforts, KT systems lack a holistic and formalized security model, limiting their resilience to practical threats and constraining future development. In this paper, we introduce the first cryptographically sound formalization of KT as an ideal functionality, clarifying the assumptions, security properties, and potential vulnerabilities of deployed KT systems. We identify a significant security concern — a possible impersonation attack by a malicious service provider — and propose a backward-compatible solution. Additionally, we address a core scalability bottleneck by designing and implementing a novel, privacy-preserving verifiable Bloom filter (VBF) that significantly improves KT efficiency without compromising security. Experimental results demonstrate the effectiveness of our approach, marking a step forward in both the theoretical and practical deployment of scalable KT solutions.

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Preprint.
Keywords
Key TransparencyVerifiable Data StructuresAuthenticated Data StructuresBloom FilterLarge Deployments
Contact author(s)
nicholas brandt @ inf ethz ch
mia filic @ inf ethz ch
smarkelon @ ufl edu
History
2024-12-02: approved
2024-11-29: received
See all versions
Short URL
https://ia.cr/2024/1938
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2024/1938,
      author = {Nicholas Brandt and Mia Filić and Sam A. Markelon},
      title = {A Formal Treatment of Key Transparency Systems with Scalability Improvements},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/1938},
      year = {2024},
      url = {https://eprint.iacr.org/2024/1938}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.