2018-03-01
AUTHORSChristian Badertscher , Ueli Maurer , Björn Tackmann
ABSTRACTA digital signature scheme (DSS), which consists of a key-generation, a signing, and a verification algorithm, is an invaluable tool in cryptography. The first and still most widely used security definition for a DSS, existential unforgeability under chosen-message attack, was introduced by Goldwasser, Micali, and Rivest in 1988.As DSSs serve as a building block in numerous complex cryptographic protocols, a security definition that specifies the guarantees of a DSS under composition is needed. Canetti (FOCS 2001, CSFW 2004) as well as Backes, Pfitzmann, and Waidner (CCS 2003) have described ideal functionalities for signatures in their respective composable-security frameworks. While several variants of these functionalities exist, they all share that the verification key and signature values appear explicitly.In this paper, we describe digital signature schemes from a different, more abstract perspective. Instead of modeling all aspects of a DSS in a monolithic ideal functionality, our approach characterizes a DSS as a construction of a repository for authentically reading values written by a certain party from certain assumed repositories, e.g., for transmitting verification key and signature values. This approach resolves several technical complications of previous simulation-based approaches, captures the security of signature schemes in an abstract way, and allows for modular proofs.We show that our definition is equivalent to existential unforgeability. We then model two example applications: (1) the certification of values via a signature from a specific entity, which with public keys as values is the core functionality of public-key infrastructures, and (2) the authentication of a session between a client and a server with the help of a digitally signed assertion from an identity provider. Single-sign-on mechanisms such as SAML rely on the soundness of the latter approach. More... »
PAGES494-523
Public-Key Cryptography – PKC 2018
ISBN
978-3-319-76577-8
978-3-319-76578-5
http://scigraph.springernature.com/pub.10.1007/978-3-319-76578-5_17
DOIhttp://dx.doi.org/10.1007/978-3-319-76578-5_17
DIMENSIONShttps://app.dimensions.ai/details/publication/pub.1101266835
JSON-LD is the canonical representation for SciGraph data.
TIP: You can open this SciGraph record using an external JSON-LD service: JSON-LD Playground Google SDTT
[
{
"@context": "https://springernature.github.io/scigraph/jsonld/sgcontext.json",
"about": [
{
"id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/08",
"inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/",
"name": "Information and Computing Sciences",
"type": "DefinedTerm"
},
{
"id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0802",
"inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/",
"name": "Computation Theory and Mathematics",
"type": "DefinedTerm"
},
{
"id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0804",
"inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/",
"name": "Data Format",
"type": "DefinedTerm"
}
],
"author": [
{
"affiliation": {
"alternateName": "Department of Computer Science, ETH Zurich, 8092, Z\u00fcrich, Switzerland",
"id": "http://www.grid.ac/institutes/grid.5801.c",
"name": [
"Department of Computer Science, ETH Zurich, 8092, Z\u00fcrich, Switzerland"
],
"type": "Organization"
},
"familyName": "Badertscher",
"givenName": "Christian",
"id": "sg:person.010232721040.24",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.010232721040.24"
],
"type": "Person"
},
{
"affiliation": {
"alternateName": "Department of Computer Science, ETH Zurich, 8092, Z\u00fcrich, Switzerland",
"id": "http://www.grid.ac/institutes/grid.5801.c",
"name": [
"Department of Computer Science, ETH Zurich, 8092, Z\u00fcrich, Switzerland"
],
"type": "Organization"
},
"familyName": "Maurer",
"givenName": "Ueli",
"id": "sg:person.01316567627.91",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.01316567627.91"
],
"type": "Person"
},
{
"affiliation": {
"alternateName": "IBM Research \u2013 Zurich, 8803, R\u00fcschlikon, Switzerland",
"id": "http://www.grid.ac/institutes/grid.410387.9",
"name": [
"IBM Research \u2013 Zurich, 8803, R\u00fcschlikon, Switzerland"
],
"type": "Organization"
},
"familyName": "Tackmann",
"givenName": "Bj\u00f6rn",
"id": "sg:person.07617171521.69",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.07617171521.69"
],
"type": "Person"
}
],
"datePublished": "2018-03-01",
"datePublishedReg": "2018-03-01",
"description": "A digital signature scheme (DSS), which consists of a key-generation, a signing, and a verification algorithm, is an invaluable tool in cryptography. The first and still most widely used security definition for a DSS, existential unforgeability under chosen-message attack, was introduced by Goldwasser, Micali, and Rivest in 1988.As DSSs serve as a building block in numerous complex cryptographic protocols, a security definition that specifies the guarantees of a DSS under composition is needed. Canetti (FOCS 2001, CSFW 2004) as well as Backes, Pfitzmann, and Waidner (CCS 2003) have described ideal functionalities for signatures in their respective composable-security frameworks. While several variants of these functionalities exist, they all share that the verification key and signature values appear explicitly.In this paper, we describe digital signature schemes from a different, more abstract perspective. Instead of modeling all aspects of a DSS in a monolithic ideal functionality, our approach characterizes a DSS as a construction of a repository for authentically reading values written by a certain party from certain assumed repositories, e.g., for transmitting verification key and signature values. This approach resolves several technical complications of previous simulation-based approaches, captures the security of signature schemes in an abstract way, and allows for modular proofs.We show that our definition is equivalent to existential unforgeability. We then model two example applications: (1) the certification of values via a signature from a specific entity, which with public keys as values is the core functionality of public-key infrastructures, and (2) the authentication of a session between a client and a server with the help of a digitally signed assertion from an identity provider. Single-sign-on mechanisms such as SAML rely on the soundness of the latter approach.",
"editor": [
{
"familyName": "Abdalla",
"givenName": "Michel",
"type": "Person"
},
{
"familyName": "Dahab",
"givenName": "Ricardo",
"type": "Person"
}
],
"genre": "chapter",
"id": "sg:pub.10.1007/978-3-319-76578-5_17",
"inLanguage": "en",
"isAccessibleForFree": false,
"isPartOf": {
"isbn": [
"978-3-319-76577-8",
"978-3-319-76578-5"
],
"name": "Public-Key Cryptography \u2013 PKC 2018",
"type": "Book"
},
"keywords": [
"digital signature scheme",
"signature scheme",
"security definitions",
"existential unforgeability",
"verification key",
"ideal functionality",
"complex cryptographic protocols",
"public key infrastructure",
"composable security framework",
"signature values",
"chosen-message attacks",
"identity providers",
"digital signature",
"cryptographic protocols",
"public key",
"core functionality",
"verification algorithm",
"composable security",
"simulation-based approach",
"modular proof",
"example application",
"abstract way",
"unforgeability",
"repository",
"security",
"abstract perspective",
"functionality",
"scheme",
"key",
"certain parties",
"authentication",
"server",
"cryptography",
"SAML",
"Pfitzmann",
"Goldwasser",
"Micali",
"Waidner",
"building blocks",
"Rivest",
"algorithm",
"guarantees",
"infrastructure",
"specific entity",
"Canetti",
"latter approach",
"Backes",
"attacks",
"soundness",
"clients",
"framework",
"definition",
"providers",
"protocol",
"tool",
"signatures",
"applications",
"signing",
"invaluable tool",
"proof",
"entities",
"help",
"way",
"parties",
"block",
"certification",
"construction",
"aspects",
"assertion",
"perspective",
"sessions",
"variants",
"values",
"mechanism",
"composition",
"technical complications",
"approach",
"paper",
"complications"
],
"name": "On Composable Security for Digital Signatures",
"pagination": "494-523",
"productId": [
{
"name": "dimensions_id",
"type": "PropertyValue",
"value": [
"pub.1101266835"
]
},
{
"name": "doi",
"type": "PropertyValue",
"value": [
"10.1007/978-3-319-76578-5_17"
]
}
],
"publisher": {
"name": "Springer Nature",
"type": "Organisation"
},
"sameAs": [
"https://doi.org/10.1007/978-3-319-76578-5_17",
"https://app.dimensions.ai/details/publication/pub.1101266835"
],
"sdDataset": "chapters",
"sdDatePublished": "2022-05-10T10:54",
"sdLicense": "https://scigraph.springernature.com/explorer/license/",
"sdPublisher": {
"name": "Springer Nature - SN SciGraph project",
"type": "Organization"
},
"sdSource": "s3://com-springernature-scigraph/baseset/20220509/entities/gbq_results/chapter/chapter_455.jsonl",
"type": "Chapter",
"url": "https://doi.org/10.1007/978-3-319-76578-5_17"
}
]Download the RDF metadata as: json-ld nt turtle xml License info
JSON-LD is a popular format for linked data which is fully compatible with JSON.
curl -H 'Accept: application/ld+json' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-76578-5_17'
N-Triples is a line-based linked data format ideal for batch operations.
curl -H 'Accept: application/n-triples' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-76578-5_17'
Turtle is a human-readable linked data format.
curl -H 'Accept: text/turtle' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-76578-5_17'
RDF/XML is a standard XML format for linked data.
curl -H 'Accept: application/rdf+xml' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-76578-5_17'
This table displays all metadata directly associated to this object as RDF triples.
165 TRIPLES
23 PREDICATES
105 URIs
97 LITERALS
7 BLANK NODES
| Subject | Predicate | Object | |
|---|---|---|---|
| 1 | sg:pub.10.1007/978-3-319-76578-5_17 | schema:about | anzsrc-for:08 |
| 2 | ″ | ″ | anzsrc-for:0802 |
| 3 | ″ | ″ | anzsrc-for:0804 |
| 4 | ″ | schema:author | N506f96868c254687983a0acd791c00a4 |
| 5 | ″ | schema:datePublished | 2018-03-01 |
| 6 | ″ | schema:datePublishedReg | 2018-03-01 |
| 7 | ″ | schema:description | A digital signature scheme (DSS), which consists of a key-generation, a signing, and a verification algorithm, is an invaluable tool in cryptography. The first and still most widely used security definition for a DSS, existential unforgeability under chosen-message attack, was introduced by Goldwasser, Micali, and Rivest in 1988.As DSSs serve as a building block in numerous complex cryptographic protocols, a security definition that specifies the guarantees of a DSS under composition is needed. Canetti (FOCS 2001, CSFW 2004) as well as Backes, Pfitzmann, and Waidner (CCS 2003) have described ideal functionalities for signatures in their respective composable-security frameworks. While several variants of these functionalities exist, they all share that the verification key and signature values appear explicitly.In this paper, we describe digital signature schemes from a different, more abstract perspective. Instead of modeling all aspects of a DSS in a monolithic ideal functionality, our approach characterizes a DSS as a construction of a repository for authentically reading values written by a certain party from certain assumed repositories, e.g., for transmitting verification key and signature values. This approach resolves several technical complications of previous simulation-based approaches, captures the security of signature schemes in an abstract way, and allows for modular proofs.We show that our definition is equivalent to existential unforgeability. We then model two example applications: (1) the certification of values via a signature from a specific entity, which with public keys as values is the core functionality of public-key infrastructures, and (2) the authentication of a session between a client and a server with the help of a digitally signed assertion from an identity provider. Single-sign-on mechanisms such as SAML rely on the soundness of the latter approach. |
| 8 | ″ | schema:editor | N03ae7c73c5fc44598d8f0905a7996a31 |
| 9 | ″ | schema:genre | chapter |
| 10 | ″ | schema:inLanguage | en |
| 11 | ″ | schema:isAccessibleForFree | false |
| 12 | ″ | schema:isPartOf | Nedf7fc3b7c344ea5bcc3a34232451e5d |
| 13 | ″ | schema:keywords | Backes |
| 14 | ″ | ″ | Canetti |
| 15 | ″ | ″ | Goldwasser |
| 16 | ″ | ″ | Micali |
| 17 | ″ | ″ | Pfitzmann |
| 18 | ″ | ″ | Rivest |
| 19 | ″ | ″ | SAML |
| 20 | ″ | ″ | Waidner |
| 21 | ″ | ″ | abstract perspective |
| 22 | ″ | ″ | abstract way |
| 23 | ″ | ″ | algorithm |
| 24 | ″ | ″ | applications |
| 25 | ″ | ″ | approach |
| 26 | ″ | ″ | aspects |
| 27 | ″ | ″ | assertion |
| 28 | ″ | ″ | attacks |
| 29 | ″ | ″ | authentication |
| 30 | ″ | ″ | block |
| 31 | ″ | ″ | building blocks |
| 32 | ″ | ″ | certain parties |
| 33 | ″ | ″ | certification |
| 34 | ″ | ″ | chosen-message attacks |
| 35 | ″ | ″ | clients |
| 36 | ″ | ″ | complex cryptographic protocols |
| 37 | ″ | ″ | complications |
| 38 | ″ | ″ | composable security |
| 39 | ″ | ″ | composable security framework |
| 40 | ″ | ″ | composition |
| 41 | ″ | ″ | construction |
| 42 | ″ | ″ | core functionality |
| 43 | ″ | ″ | cryptographic protocols |
| 44 | ″ | ″ | cryptography |
| 45 | ″ | ″ | definition |
| 46 | ″ | ″ | digital signature |
| 47 | ″ | ″ | digital signature scheme |
| 48 | ″ | ″ | entities |
| 49 | ″ | ″ | example application |
| 50 | ″ | ″ | existential unforgeability |
| 51 | ″ | ″ | framework |
| 52 | ″ | ″ | functionality |
| 53 | ″ | ″ | guarantees |
| 54 | ″ | ″ | help |
| 55 | ″ | ″ | ideal functionality |
| 56 | ″ | ″ | identity providers |
| 57 | ″ | ″ | infrastructure |
| 58 | ″ | ″ | invaluable tool |
| 59 | ″ | ″ | key |
| 60 | ″ | ″ | latter approach |
| 61 | ″ | ″ | mechanism |
| 62 | ″ | ″ | modular proof |
| 63 | ″ | ″ | paper |
| 64 | ″ | ″ | parties |
| 65 | ″ | ″ | perspective |
| 66 | ″ | ″ | proof |
| 67 | ″ | ″ | protocol |
| 68 | ″ | ″ | providers |
| 69 | ″ | ″ | public key |
| 70 | ″ | ″ | public key infrastructure |
| 71 | ″ | ″ | repository |
| 72 | ″ | ″ | scheme |
| 73 | ″ | ″ | security |
| 74 | ″ | ″ | security definitions |
| 75 | ″ | ″ | server |
| 76 | ″ | ″ | sessions |
| 77 | ″ | ″ | signature scheme |
| 78 | ″ | ″ | signature values |
| 79 | ″ | ″ | signatures |
| 80 | ″ | ″ | signing |
| 81 | ″ | ″ | simulation-based approach |
| 82 | ″ | ″ | soundness |
| 83 | ″ | ″ | specific entity |
| 84 | ″ | ″ | technical complications |
| 85 | ″ | ″ | tool |
| 86 | ″ | ″ | unforgeability |
| 87 | ″ | ″ | values |
| 88 | ″ | ″ | variants |
| 89 | ″ | ″ | verification algorithm |
| 90 | ″ | ″ | verification key |
| 91 | ″ | ″ | way |
| 92 | ″ | schema:name | On Composable Security for Digital Signatures |
| 93 | ″ | schema:pagination | 494-523 |
| 94 | ″ | schema:productId | N4a16010d25ac4fdcb3102335c5f7ada3 |
| 95 | ″ | ″ | N4bcd101c536341108be2cb2ff73c6d20 |
| 96 | ″ | schema:publisher | Ndfefbaa330e9455d9d682911b6b48460 |
| 97 | ″ | schema:sameAs | https://app.dimensions.ai/details/publication/pub.1101266835 |
| 98 | ″ | ″ | https://doi.org/10.1007/978-3-319-76578-5_17 |
| 99 | ″ | schema:sdDatePublished | 2022-05-10T10:54 |
| 100 | ″ | schema:sdLicense | https://scigraph.springernature.com/explorer/license/ |
| 101 | ″ | schema:sdPublisher | Ne357f1aa52894882b67a02bf2c7db43f |
| 102 | ″ | schema:url | https://doi.org/10.1007/978-3-319-76578-5_17 |
| 103 | ″ | sgo:license | sg:explorer/license/ |
| 104 | ″ | sgo:sdDataset | chapters |
| 105 | ″ | rdf:type | schema:Chapter |
| 106 | N03ae7c73c5fc44598d8f0905a7996a31 | rdf:first | Nc333f37c44f941f4821191c70cfa5364 |
| 107 | ″ | rdf:rest | N80abb8ceea1f4361954327c9f0dbf92e |
| 108 | N4a16010d25ac4fdcb3102335c5f7ada3 | schema:name | doi |
| 109 | ″ | schema:value | 10.1007/978-3-319-76578-5_17 |
| 110 | ″ | rdf:type | schema:PropertyValue |
| 111 | N4a1e6610da7244c4b27a903320a6416b | rdf:first | sg:person.07617171521.69 |
| 112 | ″ | rdf:rest | rdf:nil |
| 113 | N4bcd101c536341108be2cb2ff73c6d20 | schema:name | dimensions_id |
| 114 | ″ | schema:value | pub.1101266835 |
| 115 | ″ | rdf:type | schema:PropertyValue |
| 116 | N506f96868c254687983a0acd791c00a4 | rdf:first | sg:person.010232721040.24 |
| 117 | ″ | rdf:rest | Ndd6f9f603c824632bbf91a763ca95a56 |
| 118 | N80abb8ceea1f4361954327c9f0dbf92e | rdf:first | Ndb1c977933b445e691932f8cda32eb1a |
| 119 | ″ | rdf:rest | rdf:nil |
| 120 | Nc333f37c44f941f4821191c70cfa5364 | schema:familyName | Abdalla |
| 121 | ″ | schema:givenName | Michel |
| 122 | ″ | rdf:type | schema:Person |
| 123 | Ndb1c977933b445e691932f8cda32eb1a | schema:familyName | Dahab |
| 124 | ″ | schema:givenName | Ricardo |
| 125 | ″ | rdf:type | schema:Person |
| 126 | Ndd6f9f603c824632bbf91a763ca95a56 | rdf:first | sg:person.01316567627.91 |
| 127 | ″ | rdf:rest | N4a1e6610da7244c4b27a903320a6416b |
| 128 | Ndfefbaa330e9455d9d682911b6b48460 | schema:name | Springer Nature |
| 129 | ″ | rdf:type | schema:Organisation |
| 130 | Ne357f1aa52894882b67a02bf2c7db43f | schema:name | Springer Nature - SN SciGraph project |
| 131 | ″ | rdf:type | schema:Organization |
| 132 | Nedf7fc3b7c344ea5bcc3a34232451e5d | schema:isbn | 978-3-319-76577-8 |
| 133 | ″ | ″ | 978-3-319-76578-5 |
| 134 | ″ | schema:name | Public-Key Cryptography – PKC 2018 |
| 135 | ″ | rdf:type | schema:Book |
| 136 | anzsrc-for:08 | schema:inDefinedTermSet | anzsrc-for: |
| 137 | ″ | schema:name | Information and Computing Sciences |
| 138 | ″ | rdf:type | schema:DefinedTerm |
| 139 | anzsrc-for:0802 | schema:inDefinedTermSet | anzsrc-for: |
| 140 | ″ | schema:name | Computation Theory and Mathematics |
| 141 | ″ | rdf:type | schema:DefinedTerm |
| 142 | anzsrc-for:0804 | schema:inDefinedTermSet | anzsrc-for: |
| 143 | ″ | schema:name | Data Format |
| 144 | ″ | rdf:type | schema:DefinedTerm |
| 145 | sg:person.010232721040.24 | schema:affiliation | grid-institutes:grid.5801.c |
| 146 | ″ | schema:familyName | Badertscher |
| 147 | ″ | schema:givenName | Christian |
| 148 | ″ | schema:sameAs | https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.010232721040.24 |
| 149 | ″ | rdf:type | schema:Person |
| 150 | sg:person.01316567627.91 | schema:affiliation | grid-institutes:grid.5801.c |
| 151 | ″ | schema:familyName | Maurer |
| 152 | ″ | schema:givenName | Ueli |
| 153 | ″ | schema:sameAs | https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.01316567627.91 |
| 154 | ″ | rdf:type | schema:Person |
| 155 | sg:person.07617171521.69 | schema:affiliation | grid-institutes:grid.410387.9 |
| 156 | ″ | schema:familyName | Tackmann |
| 157 | ″ | schema:givenName | Björn |
| 158 | ″ | schema:sameAs | https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.07617171521.69 |
| 159 | ″ | rdf:type | schema:Person |
| 160 | grid-institutes:grid.410387.9 | schema:alternateName | IBM Research – Zurich, 8803, Rüschlikon, Switzerland |
| 161 | ″ | schema:name | IBM Research – Zurich, 8803, Rüschlikon, Switzerland |
| 162 | ″ | rdf:type | schema:Organization |
| 163 | grid-institutes:grid.5801.c | schema:alternateName | Department of Computer Science, ETH Zurich, 8092, Zürich, Switzerland |
| 164 | ″ | schema:name | Department of Computer Science, ETH Zurich, 8092, Zürich, Switzerland |
| 165 | ″ | rdf:type | schema:Organization |