{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,11]],"date-time":"2025-09-11T21:43:50Z","timestamp":1757627030584,"version":"3.44.0"},"publisher-location":"Cham","reference-count":32,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031944475"},{"type":"electronic","value":"9783031944482"}],"license":[{"start":{"date-parts":[[2025,9,1]],"date-time":"2025-09-01T00:00:00Z","timestamp":1756684800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,9,1]],"date-time":"2025-09-01T00:00:00Z","timestamp":1756684800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-3-031-94448-2_18","type":"book-chapter","created":{"date-parts":[[2025,8,31]],"date-time":"2025-08-31T19:08:36Z","timestamp":1756667316000},"page":"353-375","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Substitution Attacks on\u00a0Asymmetric (Group) Message Franking"],"prefix":"10.1007","author":[{"given":"Yumin","family":"Chen","sequence":"first","affiliation":[]},{"given":"Yi","family":"Wang","sequence":"additional","affiliation":[]},{"given":"Rongmao","family":"Chen","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2025,9,1]]},"reference":[{"key":"18_CR1","doi-asserted-by":"publisher","unstructured":"Armour, M., Poettering, B.: Substitution attacks against message authentication. Cryptology ePrint Archive, Paper 2019\/989 (2019). https:\/\/doi.org\/10.13154\/tosc.v2019.i3.152-168, https:\/\/eprint.iacr.org\/2019\/989","DOI":"10.13154\/tosc.v2019.i3.152-168"},{"key":"18_CR2","doi-asserted-by":"crossref","unstructured":"Armour, M., Poettering, B.: Subverting decryption in AEAD. In: Cryptography and Coding: 17th IMA International Conference, IMACC 2019, Oxford, UK, December 16\u201318, 2019, Proceedings 17, pp. 22\u201341. Springer (2019)","DOI":"10.1007\/978-3-030-35199-1_2"},{"issue":"5","key":"18_CR3","doi-asserted-by":"publisher","first-page":"1027","DOI":"10.1007\/s10207-022-00596-5","volume":"21","author":"M Armour","year":"2022","unstructured":"Armour, M., Poettering, B.: Algorithm substitution attacks against receivers. Int. J. Inf. Secur. 21(5), 1027\u20131050 (2022)","journal-title":"Int. J. Inf. Secur."},{"key":"18_CR4","doi-asserted-by":"crossref","unstructured":"Ateniese, G., Magri, B., Venturi, D.: Subversion-resilient signature schemes. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 364\u2013375 (2015)","DOI":"10.1145\/2810103.2813635"},{"key":"18_CR5","unstructured":"Ball, J., Borger, J., Greenwald, G., et\u00a0al.: Revealed: how us and UK spy agencies defeat internet privacy and security. Know Your Neighborhood (2013)"},{"key":"18_CR6","doi-asserted-by":"crossref","unstructured":"Bellare, M., Jaeger, J., Kane, D.: Mass-surveillance without the state: strongly undetectable algorithm-substitution attacks. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 1431\u20131440 (2015)","DOI":"10.1145\/2810103.2813681"},{"key":"18_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-662-44371-2_1","volume-title":"Advances in Cryptology \u2013 CRYPTO 2014","author":"M Bellare","year":"2014","unstructured":"Bellare, M., Paterson, K.G., Rogaway, P.: Security of symmetric encryption against mass surveillance. In: Garay, J.A., Gennaro, R. (eds.) CRYPTO 2014. LNCS, vol. 8616, pp. 1\u201319. Springer, Heidelberg (2014). https:\/\/doi.org\/10.1007\/978-3-662-44371-2_1"},{"key":"18_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"627","DOI":"10.1007\/978-3-030-75245-3_23","volume-title":"Public-Key Cryptography \u2013 PKC 2021","author":"P Bemmann","year":"2021","unstructured":"Bemmann, P., Chen, R., Jager, T.: Subversion-resilient public key encryption with practical watchdogs. In: Garay, J.A. (ed.) PKC 2021. LNCS, vol. 12710, pp. 627\u2013658. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-75245-3_23"},{"issue":"1","key":"18_CR9","doi-asserted-by":"publisher","first-page":"23","DOI":"10.1145\/1008908.1008911","volume":"15","author":"M Blum","year":"1983","unstructured":"Blum, M.: Coin flipping by telephone a protocol for solving impossible problems. ACM SIGACT News 15(1), 23\u201327 (1983)","journal-title":"ACM SIGACT News"},{"key":"18_CR10","unstructured":"Boneh, D., Shoup, V.: A graduate course in applied cryptography. Draft 0.6 (2023)"},{"key":"18_CR11","doi-asserted-by":"publisher","first-page":"732","DOI":"10.1007\/978-3-030-56880-1_26","volume-title":"Advances in Cryptology \u2013 CRYPTO 2020: 40th Annual International Cryptology Conference, CRYPTO 2020, Santa Barbara, CA, USA, August 17\u201321, 2020, Proceedings, Part II","author":"S Chakraborty","year":"2020","unstructured":"Chakraborty, S., Dziembowski, S., Nielsen, J.B.: Reverse\u00a0firewalls\u00a0for\u00a0actively\u00a0secure\u00a0MPCs. In: Micciancio, D., Ristenpart, T. (eds.) Advances in Cryptology \u2013 CRYPTO 2020: 40th Annual International Cryptology Conference, CRYPTO 2020, Santa Barbara, CA, USA, August 17\u201321, 2020, Proceedings, Part II, pp. 732\u2013762. Springer International Publishing, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-56880-1_26"},{"key":"18_CR12","doi-asserted-by":"publisher","first-page":"335","DOI":"10.1007\/978-3-030-92075-3_12","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2021: 27th International Conference on the Theory and Application of Cryptology and Information Security, Singapore, December 6\u201310, 2021, Proceedings, Part II","author":"S Chakraborty","year":"2021","unstructured":"Chakraborty, S., Ganesh, C., Pancholi, M., Sarkar, P.: Reverse firewalls for adaptively secure MPC without setup. In: Tibouchi, M., Wang, H. (eds.) Advances in Cryptology \u2013 ASIACRYPT 2021: 27th International Conference on the Theory and Application of Cryptology and Information Security, Singapore, December 6\u201310, 2021, Proceedings, Part II, pp. 335\u2013364. Springer International Publishing, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-92075-3_12"},{"key":"18_CR13","doi-asserted-by":"publisher","first-page":"239","DOI":"10.1007\/978-3-031-30545-0_9","volume-title":"Advances in Cryptology - EUROCRYPT 2023","author":"S Chakraborty","year":"2023","unstructured":"Chakraborty, S., Ganesh, C., Sarkar, P.: Reverse firewalls for oblivious transfer extension and applications to zero-knowledge. In: Hazay, C., Stam, M. (eds.) Advances in Cryptology - EUROCRYPT 2023, pp. 239\u2013270. Springer Nature Switzerland, Cham (2023)"},{"key":"18_CR14","doi-asserted-by":"publisher","first-page":"272","DOI":"10.1007\/978-3-031-06944-4_10","volume-title":"Advances in Cryptology - EUROCRYPT 2022","author":"S Chakraborty","year":"2022","unstructured":"Chakraborty, S., Magri, B., Nielsen, J.B., Venturi, D.: Universally composable subversion-resilient cryptography. In: Dunkelman, O., Dziembowski, S. (eds.) Advances in Cryptology - EUROCRYPT 2022, pp. 272\u2013302. Springer International Publishing, Cham (2022)"},{"key":"18_CR15","doi-asserted-by":"publisher","first-page":"281","DOI":"10.1007\/978-3-642-29011-4_18","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2012","author":"M Chase","year":"2012","unstructured":"Chase, M., Kohlweiss, M., Lysyanskaya, A., Meiklejohn, S.: Malleable proof systems and applications. In: Pointcheval, D., Johansson, T. (eds.) Advances in Cryptology \u2013 EUROCRYPT 2012, pp. 281\u2013300. Springer Berlin Heidelberg, Berlin, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-29011-4_18"},{"key":"18_CR16","doi-asserted-by":"publisher","first-page":"98","DOI":"10.1007\/978-3-030-64834-3_4","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2020: 26th International Conference on the Theory and Application of Cryptology and Information Security, Daejeon, South Korea, December 7\u201311, 2020, Proceedings, Part II","author":"R Chen","year":"2020","unstructured":"Chen, R., Huang, X., Yung, M.: Subvert KEM to break DEM: practical algorithm-substitution attacks on public-key encryption. In: Moriai, S., Wang, H. (eds.) Advances in Cryptology \u2013 ASIACRYPT 2020: 26th International Conference on the Theory and Application of Cryptology and Information Security, Daejeon, South Korea, December 7\u201311, 2020, Proceedings, Part II, pp. 98\u2013128. Springer International Publishing, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-64834-3_4"},{"key":"18_CR17","doi-asserted-by":"publisher","first-page":"221","DOI":"10.1007\/978-3-030-17253-4_8","volume-title":"Public-Key Cryptography \u2013 PKC 2019: 22nd IACR International Conference on Practice and Theory of Public-Key Cryptography, Beijing, China, April 14-17, 2019, Proceedings, Part I","author":"SSM Chow","year":"2019","unstructured":"Chow, S.S.M., Russell, A., Tang, Q., Yung, M., Zhao, Y., Zhou, H.-S.: Let a non-barking watchdog bite: cliptographic signatures with an offline watchdog. In: Lin, D., Sako, K. (eds.) Public-Key Cryptography \u2013 PKC 2019: 22nd IACR International Conference on Practice and Theory of Public-Key Cryptography, Beijing, China, April 14-17, 2019, Proceedings, Part I, pp. 221\u2013251. Springer International Publishing, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-17253-4_8"},{"key":"18_CR18","doi-asserted-by":"publisher","unstructured":"Dauterman, E., Corrigan-Gibbs, H., Mazi\u00e8res, D., Boneh, D., Rizzo, D.: True2f: Backdoor-resistant authentication tokens. In: 2019 IEEE Symposium on Security and Privacy (SP), pp. 398\u2013416 (2019). https:\/\/doi.org\/10.1109\/SP.2019.00048","DOI":"10.1109\/SP.2019.00048"},{"key":"18_CR19","doi-asserted-by":"publisher","first-page":"579","DOI":"10.1007\/978-3-662-48116-5_28","volume-title":"Fast Software Encryption","author":"JP Degabriele","year":"2015","unstructured":"Degabriele, J.P., Farshim, P., Poettering, B.: A more cautious approach to security against mass surveillance. In: Leander, G. (ed.) Fast Software Encryption, pp. 579\u2013598. Springer, Berlin Heidelberg, Berlin, Heidelberg (2015)"},{"key":"18_CR20","doi-asserted-by":"publisher","first-page":"341","DOI":"10.1007\/978-3-662-53018-4_13","volume-title":"Advances in Cryptology \u2013 CRYPTO 2016: 36th Annual International Cryptology Conference, Santa Barbara, CA, USA, August 14-18, 2016, Proceedings, Part I","author":"Y Dodis","year":"2016","unstructured":"Dodis, Y., Mironov, I., Stephens-Davidowitz, N.: Message transmission with reverse firewalls\u2014secure communication on corrupted machines. In: Robshaw, M., Katz, J. (eds.) Advances in Cryptology \u2013 CRYPTO 2016: 36th Annual International Cryptology Conference, Santa Barbara, CA, USA, August 14-18, 2016, Proceedings, Part I, pp. 341\u2013372. Springer Berlin Heidelberg, Berlin, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53018-4_13"},{"issue":"4","key":"18_CR21","doi-asserted-by":"publisher","first-page":"469","DOI":"10.1109\/TIT.1985.1057074","volume":"31","author":"T ElGamal","year":"1985","unstructured":"ElGamal, T.: A public key cryptosystem and a signature scheme based on discrete logarithms. IEEE Trans. Inf. Theory 31(4), 469\u2013472 (1985)","journal-title":"IEEE Trans. Inf. Theory"},{"key":"18_CR22","doi-asserted-by":"crossref","unstructured":"Fischlin, M., Mazaheri, S.: Self-guarding cryptographic protocols against algorithm substitution attacks. In: 2018 IEEE 31st Computer Security Foundations Symposium (CSF), pp. 76\u201390. IEEE (2018)","DOI":"10.1109\/CSF.2018.00013"},{"key":"18_CR23","doi-asserted-by":"publisher","first-page":"66","DOI":"10.1007\/978-3-319-63697-9_3","volume-title":"Advances in Cryptology \u2013 CRYPTO 2017: 37th Annual International Cryptology Conference, Santa Barbara, CA, USA, August 20\u201324, 2017, Proceedings, Part III","author":"P Grubbs","year":"2017","unstructured":"Grubbs, P., Lu, J., Ristenpart, T.: Message franking via committing authenticated encryption. In: Katz, J., Shacham, H. (eds.) Advances in Cryptology \u2013 CRYPTO 2017: 37th Annual International Cryptology Conference, Santa Barbara, CA, USA, August 20\u201324, 2017, Proceedings, Part III, pp. 66\u201397. Springer International Publishing, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-63697-9_3"},{"issue":"6","key":"18_CR24","doi-asserted-by":"publisher","first-page":"373","DOI":"10.1007\/s10207-011-0146-1","volume":"10","author":"Q Huang","year":"2011","unstructured":"Huang, Q., Yang, G., Wong, D.S., Susilo, W.: Efficient strong designated verifier signature schemes without random oracle or with non-delegatability. Int. J. Inf. Secur. 10(6), 373\u2013385 (2011). https:\/\/doi.org\/10.1007\/s10207-011-0146-1","journal-title":"Int. J. Inf. Secur."},{"key":"18_CR25","unstructured":"Issa, R., Alhaddad, N., Varia, M.: Hecate: Abuse reporting in secure messengers with sealed sender. In: 31st USENIX Security Symposium (USENIX Security 22), pp. 2335\u20132352 (2022)"},{"key":"18_CR26","doi-asserted-by":"publisher","first-page":"67","DOI":"10.1007\/978-3-031-30589-4_3","volume-title":"Advances in Cryptology - EUROCRYPT 2023","author":"J Lai","year":"2023","unstructured":"Lai, J., Zeng, G., Huang, Z., Yiu, S.M., Mu, X., Weng, J.: Asymmetric group message franking: Definitions and constructions. In: Hazay, C., Stam, M. (eds.) Advances in Cryptology - EUROCRYPT 2023, pp. 67\u201397. Springer Nature Switzerland, Cham (2023)"},{"key":"18_CR27","unstructured":"Millican, J.: Challenges of e2e encryption in facebook messenger. Real World Cryptography conference (2017). https:\/\/www.realworldcrypto.com\/rwc2017\/program"},{"key":"18_CR28","doi-asserted-by":"publisher","first-page":"657","DOI":"10.1007\/978-3-662-46803-6_22","volume-title":"Advances in Cryptology - EUROCRYPT 2015: 34th Annual International Conference on the Theory and Applications of Cryptographic Techniques, Sofia, Bulgaria, April 26-30, 2015, Proceedings, Part II","author":"I Mironov","year":"2015","unstructured":"Mironov, I., Stephens-Davidowitz, N.: Cryptographic reverse firewalls. In: Oswald, E., Fischlin, M. (eds.) Advances in Cryptology - EUROCRYPT 2015: 34th Annual International Conference on the Theory and Applications of Cryptographic Techniques, Sofia, Bulgaria, April 26-30, 2015, Proceedings, Part II, pp. 657\u2013686. Springer Berlin Heidelberg, Berlin, Heidelberg (2015). https:\/\/doi.org\/10.1007\/978-3-662-46803-6_22"},{"key":"18_CR29","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"34","DOI":"10.1007\/978-3-662-53890-6_2","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2016","author":"A Russell","year":"2016","unstructured":"Russell, A., Tang, Q., Yung, M., Zhou, H.-S.: Cliptography: clipping the power of kleptographic attacks. In: Cheon, J.H., Takagi, T. (eds.) ASIACRYPT 2016. LNCS, vol. 10032, pp. 34\u201364. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53890-6_2"},{"key":"18_CR30","doi-asserted-by":"crossref","unstructured":"Russell, A., Tang, Q., Yung, M., Zhou, H.S.: Generic semantic security against a kleptographic adversary. In: Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, pp. 907\u2013922 (2017)","DOI":"10.1145\/3133956.3133993"},{"key":"18_CR31","doi-asserted-by":"crossref","unstructured":"Trengove, M., Kazim, E., Almeida, D., Hilliard, A., Zannone, S., Lomas, E.: A critical review of the online safety bill. Patterns 3(8) (2022)","DOI":"10.1016\/j.patter.2022.100544"},{"key":"18_CR32","doi-asserted-by":"publisher","first-page":"222","DOI":"10.1007\/978-3-030-26954-8_8","volume-title":"Advances in Cryptology \u2013 CRYPTO 2019: 39th Annual International Cryptology Conference, Santa Barbara, CA, USA, August 18\u201322, 2019, Proceedings, Part III","author":"N Tyagi","year":"2019","unstructured":"Tyagi, N., Grubbs, P., Len, J., Miers, I., Ristenpart, T.: Asymmetric message franking: content moderation for metadata-private end-to-end encryption. In: Boldyreva, A., Micciancio, D. (eds.) Advances in Cryptology \u2013 CRYPTO 2019: 39th Annual International Cryptology Conference, Santa Barbara, CA, USA, August 18\u201322, 2019, Proceedings, Part III, pp. 222\u2013250. Springer International Publishing, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-26954-8_8"}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Security and Privacy in Communication Networks"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-94448-2_18","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,9,10]],"date-time":"2025-09-10T00:24:44Z","timestamp":1757463884000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-94448-2_18"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,9,1]]},"ISBN":["9783031944475","9783031944482"],"references-count":32,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-94448-2_18","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"type":"print","value":"1867-8211"},{"type":"electronic","value":"1867-822X"}],"subject":[],"published":{"date-parts":[[2025,9,1]]},"assertion":[{"value":"1 September 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SecureComm","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Security and Privacy in Communication Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Dubai","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"United Arab Emirates","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"28 October 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30 October 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"securecomm2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/securecomm.eai-conferences.org\/2024\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}