{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,7]],"date-time":"2025-12-07T13:10:50Z","timestamp":1765113050851,"version":"3.41.0"},"publisher-location":"Cham","reference-count":40,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031957635","type":"print"},{"value":"9783031957642","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-95764-2_20","type":"book-chapter","created":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T06:44:57Z","timestamp":1750315497000},"page":"510-539","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Protection Against Subversion Corruptions via\u00a0Reverse Firewalls in\u00a0the Plain Universal Composability Framework"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0005-4939-4754","authenticated-orcid":false,"given":"Paula","family":"Arnold","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4177-8081","authenticated-orcid":false,"given":"Sebastian","family":"Berndt","sequence":"additional","affiliation":[]},{"given":"J\u00f6rn","family":"M\u00fcller-Quade","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0009-0007-3082-216X","authenticated-orcid":false,"given":"Astrid","family":"Ottenhues","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2025,6,20]]},"reference":[{"issue":"5","key":"20_CR1","doi-asserted-by":"publisher","first-page":"1027","DOI":"10.1007\/s10207-022-00596-5","volume":"21","author":"M Armour","year":"2022","unstructured":"Armour, M., Poettering, B.: Algorithm substitution attacks against receivers. Int. J. Inf. Sec. 21(5), 1027\u20131050 (2022)","journal-title":"Int. J. Inf. Sec."},{"key":"20_CR2","unstructured":"MISC"},{"key":"20_CR3","doi-asserted-by":"crossref","unstructured":"G. Ateniese, B. Magri, and D. Venturi: Subversion-Resilient Signature Schemes. In: CCS, pp. 364\u2013375. ACM (2015)","DOI":"10.1145\/2810103.2813635"},{"key":"20_CR4","doi-asserted-by":"crossref","unstructured":"M. Bellare, J. Jaeger, and D. Kane: Mass-surveillance without the State: Strongly Undetectable Algorithm-Substitution Attacks. In: CCS, pp. 1431\u20131440. ACM (2015)","DOI":"10.1145\/2810103.2813681"},{"key":"20_CR5","doi-asserted-by":"crossref","unstructured":"M. Bellare, K.G. Paterson, and P. Rogaway: Security of Symmetric Encryption against Mass Surveillance. In: CRYPTO (1). Lecture Notes in Computer Science, pp. 1\u201319. Springer (2014)","DOI":"10.1007\/978-3-662-44371-2_1"},{"key":"20_CR6","doi-asserted-by":"crossref","unstructured":"S. Berndt and M. Liskiewicz: Algorithm Substitution Attacks from a Steganographic Perspective. In: CCS, pp. 1649\u20131660. ACM (2017)","DOI":"10.1145\/3133956.3133981"},{"key":"20_CR7","doi-asserted-by":"crossref","unstructured":"S. Berndt, J. Wichelmann, C. Pott, T. Traving, and T. Eisenbarth: ASAP: Algorithm Substitution Attacks on Cryptographic Protocols. In: AsiaCCS, pp. 712\u2013726. ACM (2022)","DOI":"10.1145\/3488932.3517387"},{"key":"20_CR8","doi-asserted-by":"crossref","unstructured":"A. Bossuat, X. Bultel, P. Fouque, C. Onete, and T. van der Merwe: Designing Reverse Firewalls for the Real World. In: ESORICS (1). Lecture Notes in Computer Science, pp. 193\u2013213. Springer (2020)","DOI":"10.1007\/978-3-030-58951-6_10"},{"key":"20_CR9","unstructured":"B. Broadnax, A. Koch, J. Mechler, T. M\u00fcller, J. M\u00fcller-Quade, and M. Nagel: Fortified Universal Composability: Taking Advantage of Simple Secure Hardware Modules. IACR Cryptol. ePrint Arch. (2018)"},{"key":"20_CR10","doi-asserted-by":"crossref","unstructured":"R. Canetti: Universally Composable Security. J. ACM 67(5), 28:1\u201328:94 (2020)","DOI":"10.1145\/3402457"},{"key":"20_CR11","doi-asserted-by":"crossref","unstructured":"R. Canetti: Universally Composable Security: A New Paradigm for Cryptographic Protocols. IACR Cryptol. ePrint Arch. (2000)","DOI":"10.1109\/SFCS.2001.959888"},{"key":"20_CR12","doi-asserted-by":"crossref","unstructured":"R. Canetti: Universally Composable Security: A New Paradigm for Cryptographic Protocols. In: FOCS, pp. 136\u2013145. IEEE Computer Society (2001)","DOI":"10.1109\/SFCS.2001.959888"},{"key":"20_CR13","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"277","DOI":"10.1007\/978-3-030-64840-4_10","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2020","author":"R Canetti","year":"2020","unstructured":"Canetti, R., Sarkar, P., Wang, X.: Efficient and Round-Optimal Oblivious Transfer and Commitment with Adaptive Security. In: Moriai, S., Wang, H. (eds.) ASIACRYPT 2020. LNCS, vol. 12493, pp. 277\u2013308. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-64840-4_10"},{"key":"20_CR14","doi-asserted-by":"crossref","unstructured":"S. Chakraborty, S. Dziembowski, and J.B. Nielsen: Reverse Firewalls for Actively Secure MPCs. In: CRYPTO (2). Lecture Notes in Computer Science, pp. 732\u2013762. Springer (2020)","DOI":"10.1007\/978-3-030-56880-1_26"},{"key":"20_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"335","DOI":"10.1007\/978-3-030-92075-3_12","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2021","author":"S Chakraborty","year":"2021","unstructured":"Chakraborty, S., Ganesh, C., Pancholi, M., Sarkar, P.: Reverse Firewalls for Adaptively Secure MPC Without Setup. In: Tibouchi, M., Wang, H. (eds.) ASIACRYPT 2021. LNCS, vol. 13091, pp. 335\u2013364. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-92075-3_12"},{"key":"20_CR16","doi-asserted-by":"crossref","unstructured":"S. Chakraborty, C. Ganesh, and P. Sarkar: Reverse Firewalls for Oblivious Transfer Extension and Applications to Zero-Knowledge. In: EUROCRYPT (1). Lecture Notes in Computer Science, pp. 239\u2013270. Springer (2023)","DOI":"10.1007\/978-3-031-30545-0_9"},{"key":"20_CR17","doi-asserted-by":"crossref","unstructured":"S. Chakraborty, L. Magliocco, B. Magri, and D. Venturi: Key Exchange in the Postsnowden Era: Universally Composable Subversion-Resilient PAKE. In: ASIACRYPT (5). Lecture Notes in Computer Science, pp. 101\u2013133. Springer (2024)","DOI":"10.1007\/978-981-96-0935-2_4"},{"key":"20_CR18","doi-asserted-by":"crossref","unstructured":"S. Chakraborty, B. Magri, J.B. Nielsen, and D. Venturi: Universally Composable Subversion-Resilient Cryptography. In: EUROCRYPT (1). Lecture Notes in Computer Science, pp. 272\u2013302. Springer (2022)","DOI":"10.1007\/978-3-031-06944-4_10"},{"key":"20_CR19","unstructured":"S. Checkoway, R. Niederhagen, A. Everspaugh, M. Green, T. Lange, T. Ristenpart, D.J. Bernstein, J. Maskiewicz, H. Shacham, and M. Fredrikson: On the Practical Exploitability of Dual EC in TLS Implementations. In: USENIX Security Symposium, pp. 319\u2013335. USENIX Association (2014)"},{"key":"20_CR20","doi-asserted-by":"crossref","unstructured":"R. Chen, X. Huang, and M. Yung: Subvert KEM to Break DEM: Practical Algorithm- Substitution Attacks on Public-Key Encryption. In: ASIACRYPT (2). Lecture Notes in Computer Science, pp. 98\u2013128. Springer (2020)","DOI":"10.1007\/978-3-030-64834-3_4"},{"key":"20_CR21","doi-asserted-by":"crossref","unstructured":"J. Cheng, Y. Wang, R. Chen, and X. Huang: Subverting Cryptographic Protocols from a Fine-Grained Perspective- A Case Study on 2-Party ECDSA. In: ACISP (2). Lecture Notes in Computer Science, pp. 370\u2013390. Springer (2024)","DOI":"10.1007\/978-981-97-5028-3_19"},{"key":"20_CR22","doi-asserted-by":"crossref","unstructured":"J.P. Degabriele, P. Farshim, and B. Poettering: A More Cautious Approach to Security Against Mass Surveillance. In: FSE. Lecture Notes in Computer Science, pp. 579\u2013598. Springer (2015)","DOI":"10.1007\/978-3-662-48116-5_28"},{"key":"20_CR23","unstructured":"MISC"},{"key":"20_CR24","doi-asserted-by":"crossref","unstructured":"Y. Dodis, I. Mironov, and N. Stephens-Davidowitz: Message Transmission with Reverse Firewalls - Secure Communication on Corrupted Machines. In: CRYPTO (1). Lecture Notes in Computer Science, pp. 341\u2013372. Springer (2016)","DOI":"10.1007\/978-3-662-53018-4_13"},{"key":"20_CR25","doi-asserted-by":"publisher","first-page":"104","DOI":"10.1016\/j.tcs.2020.11.043","volume":"855","author":"C Ganesh","year":"2021","unstructured":"Ganesh, C., Magri, B., Venturi, D.: Cryptographic reverse firewalls for interactive proof systems. Theor. Comput. Sci. 855, 104\u2013132 (2021)","journal-title":"Theor. Comput. Sci."},{"key":"20_CR26","doi-asserted-by":"crossref","unstructured":"O. Goldreich, S. Micali, and A. Wigderson: How to Play any Mental Game or A Completeness Theorem for Protocols with Honest Majority. In: STOC, pp. 218\u2013229. ACM (1987)","DOI":"10.1145\/28395.28420"},{"issue":"3","key":"20_CR27","doi-asserted-by":"publisher","first-page":"423","DOI":"10.1007\/s00145-013-9160-y","volume":"28","author":"D Hofheinz","year":"2015","unstructured":"Hofheinz, D., Shoup, V.: GNUC: A New Universal Composability Framework. J. Cryptol. 28(3), 423\u2013508 (2015)","journal-title":"J. Cryptol."},{"issue":"3","key":"20_CR28","doi-asserted-by":"publisher","first-page":"1121","DOI":"10.1137\/080725398","volume":"39","author":"Y Ishai","year":"2009","unstructured":"Ishai, Y., Kushilevitz, E., Ostrovsky, R., Sahai, A.: Zero-Knowledge Proofs from Secure Multiparty Computation. SIAM J. Comput. 39(3), 1121\u20131152 (2009)","journal-title":"SIAM J. Comput."},{"key":"20_CR29","doi-asserted-by":"crossref","unstructured":"G. Li, J. Liu, Z. Zhang, and Y. Zhang: UC-Secure Cryptographic Reverse Firewall- Guarding Corrupted Systems with the Minimum Trusted Module. In: Inscrypt. Lecture Notes in Computer Science, pp. 85\u2013110. Springer (2021)","DOI":"10.1007\/978-3-030-88323-2_5"},{"key":"20_CR30","doi-asserted-by":"crossref","unstructured":"Y. Lin, R. Chen, Y. Wang, B. Wang, and L. Liu: Substitution Attacks Against Sigma Protocols. In: CSS. Lecture Notes in Computer Science, pp. 192\u2013208. Springer (2022)","DOI":"10.1007\/978-3-031-18067-5_14"},{"key":"20_CR31","doi-asserted-by":"crossref","unstructured":"D. Marchiori, A.A. Giron, J.P.A. do Nascimento, and R. Cust\u00f3dio: Timing analysis of algorithm substitution attacks in a post-quantum TLS protocol. In: Anais do XXI Simp\u00f3sio Brasileiro em Seguran\u00e7a da Informa\u00e7\u00e3o e de Sistemas Computacionais, pp. 127\u2013140 (2021)","DOI":"10.5753\/sbseg.2021.17311"},{"key":"20_CR32","doi-asserted-by":"crossref","unstructured":"I. Mironov and N. Stephens-Davidowitz: Cryptographic Reverse Firewalls. In: EUROCRYPT (2). Lecture Notes in Computer Science, pp. 657\u2013686. Springer (2015)","DOI":"10.1007\/978-3-662-46803-6_22"},{"key":"20_CR33","unstructured":"N Perlroth, J Larson, and S Shane: Secret documents reveal NSA campaign against encryption. New York Times. September 5 (2013)"},{"key":"20_CR34","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"34","DOI":"10.1007\/978-3-662-53890-6_2","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2016","author":"A Russell","year":"2016","unstructured":"Russell, A., Tang, Q., Yung, M., Zhou, H.-S.: Cliptography: Clipping the Power of Kleptographic Attacks. In: Cheon, J.H., Takagi, T. (eds.) ASIACRYPT 2016. LNCS, vol. 10032, pp. 34\u201364. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53890-6_2"},{"key":"20_CR35","doi-asserted-by":"crossref","unstructured":"A. Russell, Q. Tang, and J. Zhu: Crooked Indifferentiability of the Feistel Construction. In: ASIACRYPT (6). Lecture Notes in Computer Science, pp. 427\u2013460. Springer (2024)","DOI":"10.1007\/978-981-96-0938-3_14"},{"issue":"4","key":"20_CR36","doi-asserted-by":"publisher","first-page":"452","DOI":"10.1109\/49.668969","volume":"16","author":"GJ Simmons","year":"1998","unstructured":"Simmons, G.J.: The history of subliminal channels. IEEE J. Sel. Areas Commun. 16(4), 452\u2013462 (1998)","journal-title":"IEEE J. Sel. Areas Commun."},{"key":"20_CR37","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"73","DOI":"10.1007\/978-3-030-03638-6_5","volume-title":"Secure IT Systems","author":"G Te\u015feleanu","year":"2018","unstructured":"Te\u015feleanu, G.: Unifying Kleptographic Attacks. In: Gruschka, N. (ed.) NordSec 2018. LNCS, vol. 11252, pp. 73\u201387. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-030-03638-6_5"},{"key":"20_CR38","doi-asserted-by":"crossref","unstructured":"A.L. Young and M. Yung: Kleptography: Using Cryptography Against Cryptography. In: EUROCRYPT. Lecture Notes in Computer Science, pp. 62\u201374. Springer (1997)","DOI":"10.1007\/3-540-69053-0_6"},{"key":"20_CR39","doi-asserted-by":"crossref","unstructured":"A.L. Young and M. Yung: The Dark Side of \"Black-Box\" Cryptography, or: Should We Trust Capstone? In: CRYPTO. Lecture Notes in Computer Science, pp. 89\u2013103. Springer (1996)","DOI":"10.1007\/3-540-68697-5_8"},{"key":"20_CR40","doi-asserted-by":"crossref","unstructured":"A.L. Young and M. Yung: The Prevalence of Kleptographic Attacks on Discrete-Log Based Cryptosystems. In: CRYPTO. Lecture Notes in Computer Science, pp. 264\u2013 276. Springer (1997)","DOI":"10.1007\/BFb0052241"}],"container-title":["Lecture Notes in Computer Science","Applied Cryptography and Network Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-95764-2_20","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T06:45:10Z","timestamp":1750315510000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-95764-2_20"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"ISBN":["9783031957635","9783031957642"],"references-count":40,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-95764-2_20","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025]]},"assertion":[{"value":"20 June 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ACNS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Applied Cryptography and Network Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Munich","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Germany","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23 June 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26 June 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"acns2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/acns2025.fordaysec.de\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}