Publikation:

Hide-and-Seek and the Non-resignability of the BUFF Transform

Vorschaubild

Dateien

Zu diesem Dokument gibt es keine Dateien.

Datum

2025

Autor:innen

Don, Jelle
Fehr, Serge
Huang, Yu-Hsuan
Liao, Jyun-Jie

Herausgeber:innen

Kontakt

ISSN der Zeitschrift

Electronic ISSN

ISBN

Bibliografische Daten

Verlag

Schriftenreihe

Auflagebezeichnung

URI (zitierfähiger Link)
DOI (zitierfähiger Link)
https://doi.org/10.1007/978-3-031-78020-2_12
ArXiv-ID

Internationale Patentnummer

Angaben zur Forschungsförderung

U.S. National Science Foundation (NSF): 2045576

Projekt

Open Access-Veröffentlichung

Sammlungen

Informatik und Informationswissenschaft: Publikationen
Core Facility der Universität Konstanz

Gesperrt bis

Titel in einer weiteren Sprache

Publikationstyp
Beitrag zu einem Konferenzband
Publikationsstatus
Published

Erschienen in

BOYLE, Elette, Hrsg., Mohammad MAHMOODY, Hrsg.. Theory of Cryptography : 22nd International Conference, TCC 2024, Proceedings, Part III. Cham: Springer, 2025, S. 347-370. Lecture Notes in Computer Science (LNCS). 15366. ISSN 0302-9743. eISSN 1611-3349. ISBN 978-3-031-78019-6. Verfügbar unter: doi: 10.1007/978-3-031-78020-2_12

Zusammenfassung

The BUFF transform, due to Cremers et al. (S&P’21), is a generic transformation for digital signature scheme, with the purpose of obtaining additional security guarantees beyond unforgeability: exclusive ownership, message-bound signatures, and non-resignability. Non-resignability (which essentially challenges an adversary to re-sign an unknown message for which it only obtains the signature) turned out to be a delicate matter, as recently Don et al. (CRYPTO’24) showed that the initial definition is essentially unachievable; in particular, it is not achieved by the BUFF transform. This led to the introduction of new, weakened versions of non-resignability, which are (potentially) achievable. In particular, it was shown that a salted variant of the BUFF transform does achieves some weakened version of non-resignability. However, the salting requires additional randomness and leads to slightly larger signatures. Whether the original BUFF transform also achieves some meaningful notion of non-resignability remained a natural open question.

In this work, we answer this question in the affirmative. We show that the BUFF transform satisfies the (almost) strongest notions of non-resignability one can hope for, facing the known impossibility results. Our results cover both the statistical and the computational case, and both the classical and the quantum setting. At the core of our analysis lies a new security game for random oracles that we call Hide-and-Seek. While seemingly innocent at first glance, it turns out to be surprisingly challenging to rigorously analyze.

Zusammenfassung in einer weiteren Sprache

Fachgebiet (DDC)
004 Informatik

Schlagwörter

Konferenz

22nd Theory of Cryptography Conference (TCC 2024), 2. Dez. 2024 - 6. Dez. 2024, Milan, Italy
Rezension
undefined / . - undefined, undefined

Forschungsvorhaben

Organisationseinheiten

Zeitschriftenheft

Zugehörige Datensätze in KOPS

Zitieren

ISO 690DON, Jelle, Serge FEHR, Yu-Hsuan HUANG, Jyun-Jie LIAO, Patrick STRUCK, 2025. Hide-and-Seek and the Non-resignability of the BUFF Transform. 22nd Theory of Cryptography Conference (TCC 2024). Milan, Italy, 2. Dez. 2024 - 6. Dez. 2024. In: BOYLE, Elette, Hrsg., Mohammad MAHMOODY, Hrsg.. Theory of Cryptography : 22nd International Conference, TCC 2024, Proceedings, Part III. Cham: Springer, 2025, S. 347-370. Lecture Notes in Computer Science (LNCS). 15366. ISSN 0302-9743. eISSN 1611-3349. ISBN 978-3-031-78019-6. Verfügbar unter: doi: 10.1007/978-3-031-78020-2_12
BibTex
@inproceedings{Don2025Hidea-73918,
  title={Hide-and-Seek and the Non-resignability of the BUFF Transform},
  year={2025},
  doi={10.1007/978-3-031-78020-2_12},
  number={15366},
  isbn={978-3-031-78019-6},
  issn={0302-9743},
  address={Cham},
  publisher={Springer},
  series={Lecture Notes in Computer Science (LNCS)},
  booktitle={Theory of Cryptography : 22nd International Conference, TCC 2024, Proceedings, Part III},
  pages={347--370},
  editor={Boyle, Elette and Mahmoody, Mohammad},
  author={Don, Jelle and Fehr, Serge and Huang, Yu-Hsuan and Liao, Jyun-Jie and Struck, Patrick}
}
RDF
<rdf:RDF
    xmlns:dcterms="http://purl.org/dc/terms/"
    xmlns:dc="http://purl.org/dc/elements/1.1/"
    xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
    xmlns:bibo="http://purl.org/ontology/bibo/"
    xmlns:dspace="http://digital-repositories.org/ontologies/dspace/0.1.0#"
    xmlns:foaf="http://xmlns.com/foaf/0.1/"
    xmlns:void="http://rdfs.org/ns/void#"
    xmlns:xsd="http://www.w3.org/2001/XMLSchema#" > 
  <rdf:Description rdf:about="https://kops.uni-konstanz.de/server/rdf/resource/123456789/73918">
    <dc:creator>Struck, Patrick</dc:creator>
    <dc:date rdf:datatype="http://www.w3.org/2001/XMLSchema#dateTime">2025-07-11T10:02:56Z</dc:date>
    <bibo:uri rdf:resource="https://kops.uni-konstanz.de/handle/123456789/73918"/>
    <dcterms:abstract>The BUFF transform, due to Cremers et al. (S&amp;P’21), is a generic transformation for digital signature scheme, with the purpose of obtaining additional security guarantees beyond unforgeability: exclusive ownership, message-bound signatures, and non-resignability. Non-resignability (which essentially challenges an adversary to re-sign an unknown message for which it only obtains the signature) turned out to be a delicate matter, as recently Don et al. (CRYPTO’24) showed that the initial definition is essentially unachievable; in particular, it is not achieved by the BUFF transform. This led to the introduction of new, weakened versions of non-resignability, which are (potentially) achievable. In particular, it was shown that a salted variant of the BUFF transform does achieves some weakened version of non-resignability. However, the salting requires additional randomness and leads to slightly larger signatures. Whether the original BUFF transform also achieves some meaningful notion of non-resignability remained a natural open question.

In this work, we answer this question in the affirmative. We show that the BUFF transform satisfies the (almost) strongest notions of non-resignability one can hope for, facing the known impossibility results. Our results cover both the statistical and the computational case, and both the classical and the quantum setting. At the core of our analysis lies a new security game for random oracles that we call Hide-and-Seek. While seemingly innocent at first glance, it turns out to be surprisingly challenging to rigorously analyze.</dcterms:abstract>
    <dspace:isPartOfCollection rdf:resource="https://kops.uni-konstanz.de/server/rdf/resource/123456789/36"/>
    <foaf:homepage rdf:resource="http://localhost:8080/"/>
    <dcterms:issued>2025</dcterms:issued>
    <dcterms:title>Hide-and-Seek and the Non-resignability of the BUFF Transform</dcterms:title>
    <dcterms:isPartOf rdf:resource="https://kops.uni-konstanz.de/server/rdf/resource/123456789/36"/>
    <dc:contributor>Fehr, Serge</dc:contributor>
    <void:sparqlEndpoint rdf:resource="http://localhost/fuseki/dspace/sparql"/>
    <dc:contributor>Huang, Yu-Hsuan</dc:contributor>
    <dc:language>eng</dc:language>
    <dc:contributor>Don, Jelle</dc:contributor>
    <dc:contributor>Liao, Jyun-Jie</dc:contributor>
    <dc:creator>Don, Jelle</dc:creator>
    <dc:creator>Liao, Jyun-Jie</dc:creator>
    <dc:creator>Fehr, Serge</dc:creator>
    <dc:creator>Huang, Yu-Hsuan</dc:creator>
    <dc:contributor>Struck, Patrick</dc:contributor>
    <dcterms:available rdf:datatype="http://www.w3.org/2001/XMLSchema#dateTime">2025-07-11T10:02:56Z</dcterms:available>
  </rdf:Description>
</rdf:RDF>

Interner Vermerk

xmlui.Submission.submit.DescribeStep.inputForms.label.kops_note_fromSubmitter

Kontakt
URL der Originalveröffentl.

Prüfdatum der URL

Prüfungsdatum der Dissertation

Finanzierungsart

Kommentar zur Publikation

Allianzlizenz
Corresponding Authors der Uni Konstanz vorhanden
Internationale Co-Autor:innen
Universitätsbibliographie
Ja
Begutachtet
Diese Publikation teilen