Bringing State-Separating Proofs to EasyCrypt A Security Proof for Cryptobox

Francois Dupressoir; Konrad Kohbrok; Sabine Oechsner

doi:10.1109/CSF54842.2022.9919671

Bringing State-Separating Proofs to EasyCrypt A Security Proof for Cryptobox

Francois Dupressoir, Konrad Kohbrok, Sabine Oechsner

Research output: Chapter in Book / Report / Conference proceeding › Conference contribution › Academic › peer-review

Abstract

Machine-checked cryptography aims to reinforce confidence in the primitives and protocols that underpin all digital security. However, machine-checked proof techniques remain in practice difficult to apply to real-world constructions. A particular challenge is structured reasoning about complex constructions at different levels of abstraction. The State-Separating Proofs (SSP) methodology for guiding cryptographic proofs by Brzuska, Delignat-Lavaud, Fournet, Kohbrok and Kohlweiss (ASIACRYPT'18) is a promising contestant to support such reasoning. In this work, we explore how SSPs can guide EasyCrypt formalisations of proofs for modular constructions. Concretely, we propose a mapping from SSP to EasyCrypt concepts which enables us to enhance cryptographic proofs with SSP insights while maintaining compatibility with existing EasyCrypt proof support. To showcase our insights, we develop a formal security proof for the cryptobox family of public-key authenticated encryption schemes based on non-interactive key exchange and symmetric authenticated encryption. As a side effect, we obtain the first formal security proof for NaCl's instantiation of cryptobox. Finally we discuss changes to the practice of SSP on paper and potential implications for future tool designers.

Original language	English
Title of host publication	2022 IEEE 35th Computer Security Foundations Symposium (CSF)
Subtitle of host publication	[Proceedings]
Publisher	IEEE Computer Society
Pages	227-242
Number of pages	16
ISBN (Electronic)	9781665484176
ISBN (Print)	9781665484183
DOIs	https://doi.org/10.1109/CSF54842.2022.9919671
Publication status	Published - 2022
Externally published	Yes
Event	35th IEEE Computer Security Foundations Symposium, CSF 2022 - Haifa, Israel Duration: 7 Aug 2022 → 10 Aug 2022

Publication series

Name	Proceedings - IEEE Computer Security Foundations Symposium
Volume	2022-August
ISSN (Print)	1940-1434

Conference

Conference	35th IEEE Computer Security Foundations Symposium, CSF 2022
Country/Territory	Israel
City	Haifa
Period	7/08/22 → 10/08/22

Funding

Fran\u00E7ois Dupressoir\u2019s work is supported in part by REPHRAIN: The National Research Centre on Privacy, Harm Reduction and Adversarial Influence Online, under UKRI grant: EP/V011189/1. Konrad Kohbrok was supported by Microsoft Research through its PhD Scholarship Programme. Sabine Oechsner\u2019s work was supported by the Danish Independent Research Council under Grant-ID DFF-8021-00366B (BETHE) and the Blockchain Technology Laboratory at the University of Edinburgh and funded by Input Output Global. We thank Dan Bernstein and the anonymous CSF reviewers for feedback on early versions of this work, which led to significant changes in its presentation. We thank Mike Rosulek, Markulf Kohlweiss and Chris Brzuska for insightful discussions about composable proofs. We thank the rest of the EasyCrypt team for its continued support and development of the tool. Fran ois Dupressoir s work is supported in part by REPHRAIN: The National Research Centre on Privacy, Harm Reduction and Adversarial Influence Online, under UKRI grant: EP/V011189/1. Konrad Kohbrok was supported by Microsoft Research through its PhD Scholarship Programme. Sabine Oechsner s work was supported by the Danish Independent Research Council under Grant-ID DFF-8021-00366B (BETHE) and the Blockchain Technology Laboratory at the University of Edinburgh and funded by Input Output Global.

Funders	Funder number
University of Edinburgh
National Research Centre on Privacy
Microsoft Research
BETHE
Blockchain Technology Laboratory
UK Research and Innovation
Engineering and Physical Sciences Research Council	EP/V011189/1
Danmarks Frie Forskningsfond	DFF-8021-00366B

Access to Document

10.1109/CSF54842.2022.9919671

Persistent URL (handle)

Persistent link

Cite this

Dupressoir, F., Kohbrok, K., & Oechsner, S. (2022). Bringing State-Separating Proofs to EasyCrypt A Security Proof for Cryptobox. In 2022 IEEE 35th Computer Security Foundations Symposium (CSF): [Proceedings] (pp. 227-242). (Proceedings - IEEE Computer Security Foundations Symposium; Vol. 2022-August). IEEE Computer Society. https://doi.org/10.1109/CSF54842.2022.9919671

@inproceedings{c000dec79b594ac38c4d534dd0f64249,

title = "Bringing State-Separating Proofs to EasyCrypt A Security Proof for Cryptobox",

abstract = "Machine-checked cryptography aims to reinforce confidence in the primitives and protocols that underpin all digital security. However, machine-checked proof techniques remain in practice difficult to apply to real-world constructions. A particular challenge is structured reasoning about complex constructions at different levels of abstraction. The State-Separating Proofs (SSP) methodology for guiding cryptographic proofs by Brzuska, Delignat-Lavaud, Fournet, Kohbrok and Kohlweiss (ASIACRYPT'18) is a promising contestant to support such reasoning. In this work, we explore how SSPs can guide EasyCrypt formalisations of proofs for modular constructions. Concretely, we propose a mapping from SSP to EasyCrypt concepts which enables us to enhance cryptographic proofs with SSP insights while maintaining compatibility with existing EasyCrypt proof support. To showcase our insights, we develop a formal security proof for the cryptobox family of public-key authenticated encryption schemes based on non-interactive key exchange and symmetric authenticated encryption. As a side effect, we obtain the first formal security proof for NaCl's instantiation of cryptobox. Finally we discuss changes to the practice of SSP on paper and potential implications for future tool designers.",

author = "Francois Dupressoir and Konrad Kohbrok and Sabine Oechsner",

year = "2022",

doi = "10.1109/CSF54842.2022.9919671",

language = "English",

isbn = "9781665484183",

series = "Proceedings - IEEE Computer Security Foundations Symposium",

publisher = "IEEE Computer Society",

pages = "227--242",

booktitle = "2022 IEEE 35th Computer Security Foundations Symposium (CSF)",

note = "35th IEEE Computer Security Foundations Symposium, CSF 2022 ; Conference date: 07-08-2022 Through 10-08-2022",

}

Dupressoir, F, Kohbrok, K & Oechsner, S 2022, Bringing State-Separating Proofs to EasyCrypt A Security Proof for Cryptobox. in 2022 IEEE 35th Computer Security Foundations Symposium (CSF): [Proceedings]. Proceedings - IEEE Computer Security Foundations Symposium, vol. 2022-August, IEEE Computer Society, pp. 227-242, 35th IEEE Computer Security Foundations Symposium, CSF 2022, Haifa, Israel, 7/08/22. https://doi.org/10.1109/CSF54842.2022.9919671

Bringing State-Separating Proofs to EasyCrypt A Security Proof for Cryptobox. / Dupressoir, Francois; Kohbrok, Konrad; Oechsner, Sabine.
2022 IEEE 35th Computer Security Foundations Symposium (CSF): [Proceedings]. IEEE Computer Society, 2022. p. 227-242 (Proceedings - IEEE Computer Security Foundations Symposium; Vol. 2022-August).

Research output: Chapter in Book / Report / Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Bringing State-Separating Proofs to EasyCrypt A Security Proof for Cryptobox

AU - Dupressoir, Francois

AU - Kohbrok, Konrad

AU - Oechsner, Sabine

PY - 2022

Y1 - 2022

N2 - Machine-checked cryptography aims to reinforce confidence in the primitives and protocols that underpin all digital security. However, machine-checked proof techniques remain in practice difficult to apply to real-world constructions. A particular challenge is structured reasoning about complex constructions at different levels of abstraction. The State-Separating Proofs (SSP) methodology for guiding cryptographic proofs by Brzuska, Delignat-Lavaud, Fournet, Kohbrok and Kohlweiss (ASIACRYPT'18) is a promising contestant to support such reasoning. In this work, we explore how SSPs can guide EasyCrypt formalisations of proofs for modular constructions. Concretely, we propose a mapping from SSP to EasyCrypt concepts which enables us to enhance cryptographic proofs with SSP insights while maintaining compatibility with existing EasyCrypt proof support. To showcase our insights, we develop a formal security proof for the cryptobox family of public-key authenticated encryption schemes based on non-interactive key exchange and symmetric authenticated encryption. As a side effect, we obtain the first formal security proof for NaCl's instantiation of cryptobox. Finally we discuss changes to the practice of SSP on paper and potential implications for future tool designers.

AB - Machine-checked cryptography aims to reinforce confidence in the primitives and protocols that underpin all digital security. However, machine-checked proof techniques remain in practice difficult to apply to real-world constructions. A particular challenge is structured reasoning about complex constructions at different levels of abstraction. The State-Separating Proofs (SSP) methodology for guiding cryptographic proofs by Brzuska, Delignat-Lavaud, Fournet, Kohbrok and Kohlweiss (ASIACRYPT'18) is a promising contestant to support such reasoning. In this work, we explore how SSPs can guide EasyCrypt formalisations of proofs for modular constructions. Concretely, we propose a mapping from SSP to EasyCrypt concepts which enables us to enhance cryptographic proofs with SSP insights while maintaining compatibility with existing EasyCrypt proof support. To showcase our insights, we develop a formal security proof for the cryptobox family of public-key authenticated encryption schemes based on non-interactive key exchange and symmetric authenticated encryption. As a side effect, we obtain the first formal security proof for NaCl's instantiation of cryptobox. Finally we discuss changes to the practice of SSP on paper and potential implications for future tool designers.

UR - https://www.scopus.com/pages/publications/85141816510

UR - https://www.scopus.com/inward/citedby.url?scp=85141816510&partnerID=8YFLogxK

U2 - 10.1109/CSF54842.2022.9919671

DO - 10.1109/CSF54842.2022.9919671

M3 - Conference contribution

SN - 9781665484183

T3 - Proceedings - IEEE Computer Security Foundations Symposium

SP - 227

EP - 242

BT - 2022 IEEE 35th Computer Security Foundations Symposium (CSF)

PB - IEEE Computer Society

T2 - 35th IEEE Computer Security Foundations Symposium, CSF 2022

Y2 - 7 August 2022 through 10 August 2022

ER -

Bringing State-Separating Proofs to EasyCrypt A Security Proof for Cryptobox

Abstract

Publication series

Conference

Funding

Access to Document

Persistent URL (handle)

Other files and links

Fingerprint

Cite this