{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,7]],"date-time":"2025-12-07T11:26:16Z","timestamp":1765106776729,"version":"3.46.0"},"publisher-location":"Singapore","reference-count":57,"publisher":"Springer Nature Singapore","isbn-type":[{"value":"9789819550951","type":"print"},{"value":"9789819550968","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,12,8]],"date-time":"2025-12-08T00:00:00Z","timestamp":1765152000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,12,8]],"date-time":"2025-12-08T00:00:00Z","timestamp":1765152000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-981-95-5096-8_4","type":"book-chapter","created":{"date-parts":[[2025,12,7]],"date-time":"2025-12-07T11:24:24Z","timestamp":1765106664000},"page":"103-136","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Universally Composable Subversion-Resilient Authenticated Key Exchange"],"prefix":"10.1007","author":[{"given":"Jiahao","family":"Liu","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0009-0009-1878-3625","authenticated-orcid":false,"given":"Yi","family":"Wang","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5113-387X","authenticated-orcid":false,"given":"Rongmao","family":"Chen","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0070-1707","authenticated-orcid":false,"given":"Xinyi","family":"Huang","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9273-616X","authenticated-orcid":false,"given":"Jinshu","family":"Su","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0848-0873","authenticated-orcid":false,"given":"Moti","family":"Yung","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2025,12,8]]},"reference":[{"key":"4_CR1","doi-asserted-by":"crossref","unstructured":"Armour, M., Poettering, B.: Algorithm substitution attacks against receivers. Int. J. Inf. Sec. 21(5), 1027\u20131050 (2022)","DOI":"10.1007\/s10207-022-00596-5"},{"key":"4_CR2","doi-asserted-by":"publisher","unstructured":"Arnold, P., Berndt, S., M\u00fcller-Quade, J., Ottenhues, A.: Protection against subversion corruptions via reverse firewalls in the plain universal composability framework. In: Fischlin, M., Moonsamy, V. (eds.) Applied Cryptography and Network Security, pp. 510\u2013539. Springer Nature Switzerland, Cham (2025). https:\/\/doi.org\/10.1007\/978-3-031-95764-2_20","DOI":"10.1007\/978-3-031-95764-2_20"},{"key":"4_CR3","doi-asserted-by":"publisher","unstructured":"Arnold, P., Berndt, S., M\u00fcller-Quade, J., Ottenhues, A.: Protection against subversion corruptions via reverse firewalls in the plain universal composability framework. Cryptology ePrint Archive, Paper 2023\/1951 (2023). https:\/\/doi.org\/10.1007\/978-3-031-95764-2_20, https:\/\/eprint.iacr.org\/2023\/1951","DOI":"10.1007\/978-3-031-95764-2_20"},{"key":"4_CR4","doi-asserted-by":"publisher","unstructured":"Ateniese, G., Magri, B., Venturi, D.: Subversion-resilient signature schemes. In: Ray, I., Li, N., Kruegel, C. (eds.) ACM CCS 2015: 22nd Conference on Computer and Communications Security, pp. 364\u2013375. ACM Press, Denver, CO, USA (Oct\u00a012\u201316) (2015). https:\/\/doi.org\/10.1145\/2810103.2813635","DOI":"10.1145\/2810103.2813635"},{"key":"4_CR5","doi-asserted-by":"publisher","unstructured":"Barak, B., Canetti, R., Lindell, Y., Pass, R., Rabin, T.: Secure computation without authentication. In: Shoup, V. (ed.) Advances in Cryptology \u2013 CRYPTO\u00a02005. Lecture Notes in Computer Science, vol.\u00a03621, pp. 361\u2013377. Springer, Heidelberg, Germany, Santa Barbara, CA, USA (Aug\u00a014\u201318, 2005). https:\/\/doi.org\/10.1007\/11535218_22","DOI":"10.1007\/11535218_22"},{"key":"4_CR6","doi-asserted-by":"publisher","unstructured":"Bellare, M., Canetti, R., Krawczyk, H.: A modular approach to the design and analysis of authentication and key exchange protocols (extended abstract). In: 30th Annual ACM Symposium on Theory of Computing, pp. 419\u2013428. ACM Press, Dallas, TX, USA (May\u00a023\u201326, 1998). https:\/\/doi.org\/10.1145\/276698.276854","DOI":"10.1145\/276698.276854"},{"key":"4_CR7","doi-asserted-by":"publisher","unstructured":"Bellare, M., Jaeger, J., Kane, D.: Mass-surveillance without the state: Strongly undetectable algorithm-substitution attacks. In: Ray, I., Li, N., Kruegel, C. (eds.) ACM CCS 2015: 22nd Conference on Computer and Communications Security, pp. 1431\u20131440. ACM Press, Denver, CO, USA (Oct\u00a012\u201316, 2015). https:\/\/doi.org\/10.1145\/2810103.2813681","DOI":"10.1145\/2810103.2813681"},{"key":"4_CR8","doi-asserted-by":"publisher","unstructured":"Bellare, M., Paterson, K.G., Rogaway, P.: Security of symmetric encryption against mass surveillance. In: Garay, J.A., Gennaro, R. (eds.) CRYPTO 2014. LNCS, vol. 8616, pp. 1\u201319. Springer, Heidelberg (2014). https:\/\/doi.org\/10.1007\/978-3-662-44371-2_1","DOI":"10.1007\/978-3-662-44371-2_1"},{"key":"4_CR9","doi-asserted-by":"publisher","unstructured":"Bemmann, P., Berndt, S., Chen, R.: Subversion-resilient signatures without random oracles. In: ACNS 24: 22nd International Conference on Applied Cryptography and Network Security, Part\u00a0I, pp. 351\u2013375. Lecture Notes in Computer Science, Springer, Cham, Switzerland (Jun\u00a021\u201324, 2024). https:\/\/doi.org\/10.1007\/978-3-031-54770-6_14","DOI":"10.1007\/978-3-031-54770-6_14"},{"key":"4_CR10","doi-asserted-by":"publisher","unstructured":"Bemmann, P., Berndt, S., Diemert, D., Eisenbarth, T., Jager, T.: Subversion-resilient authenticated encryption without random oracles. In: Tibouchi, M., Wang, X. (eds.) ACNS 23: 21st International Conference on Applied Cryptography and Network Security, Part\u00a0II. Lecture Notes in Computer Science, vol. 13906, pp. 460\u2013483. Springer, Heidelberg, Germany, Kyoto, Japan (Jun\u00a019\u201322, 2023). https:\/\/doi.org\/10.1007\/978-3-031-33491-7_17","DOI":"10.1007\/978-3-031-33491-7_17"},{"key":"4_CR11","doi-asserted-by":"publisher","unstructured":"Bemmann, P., Chen, R., Jager, T.: Subversion-resilient public key encryption with practical watchdogs. In: Garay, J. (ed.) PKC\u00a02021: 24th International Conference on Theory and Practice of Public Key Cryptography, Part\u00a0I. Lecture Notes in Computer Science, vol. 12710, pp. 627\u2013658. Springer, Heidelberg, Germany, Virtual Event (May\u00a010\u201313, 2021). https:\/\/doi.org\/10.1007\/978-3-030-75245-3_23","DOI":"10.1007\/978-3-030-75245-3_23"},{"key":"4_CR12","doi-asserted-by":"publisher","unstructured":"Berndt, S., Liskiewicz, M.: Algorithm substitution attacks from a steganographic perspective. In: Thuraisingham, B.M., Evans, D., Malkin, T., Xu, D. (eds.) ACM CCS 2017: 24th Conference on Computer and Communications Security, pp. 1649\u20131660. ACM Press, Dallas, TX, USA (Oct\u00a031\u2013Nov\u00a02, 2017). https:\/\/doi.org\/10.1145\/3133956.3133981","DOI":"10.1145\/3133956.3133981"},{"key":"4_CR13","doi-asserted-by":"publisher","unstructured":"- Berndt, S., Wichelmann, J., Pott, C., Traving, T.H., Eisenbarth, T.: ASAP: algorithm substitution attacks on cryptographic protocols. In: Suga, Y., Sakurai, K., Ding, X., Sako, K. (eds.) ASIACCS 22: 17th ACM Symposium on Information, Computer and Communications Security, pp. 712\u2013726. ACM Press, Nagasaki, Japan (May\u00a030\u2013Jun\u00a03, 2022). https:\/\/doi.org\/10.1145\/3488932.3517387","DOI":"10.1145\/3488932.3517387"},{"key":"4_CR14","doi-asserted-by":"publisher","unstructured":"Bossuat, A., Bultel, X., Fouque, P.-A., Onete, C., van der Merwe, T.: Designing reverse firewalls for the real world. In: Chen, L., Li, N., Liang, K., Schneider, S. (eds.) ESORICS 2020. LNCS, vol. 12308, pp. 193\u2013213. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-58951-6_10","DOI":"10.1007\/978-3-030-58951-6_10"},{"key":"4_CR15","doi-asserted-by":"crossref","unstructured":"Canetti, R.: Universally composable security. J. ACM 67(5), 28:1\u201328:94 (2020)","DOI":"10.1145\/3402457"},{"key":"4_CR16","doi-asserted-by":"publisher","unstructured":"Canetti, R., Jain, P., Swanberg, M., Varia, M.: Universally composable end-to-end secure messaging. In: Dodis, Y., Shrimpton, T. (eds.) Advances in Cryptology \u2013 CRYPTO\u00a02022, Part\u00a0II. Lecture Notes in Computer Science, vol. 13508, pp. 3\u201333. Springer, Cham, Switzerland, Santa Barbara, CA, USA (Aug\u00a015\u201318, 2022). https:\/\/doi.org\/10.1007\/978-3-031-15979-4_1","DOI":"10.1007\/978-3-031-15979-4_1"},{"key":"4_CR17","doi-asserted-by":"publisher","unstructured":"Canetti, R., Krawczyk, H.: Universally Composable Notions of Key Exchange and Secure Channels. In: Knudsen, L.R. (ed.) EUROCRYPT 2002. LNCS, vol. 2332, pp. 337\u2013351. Springer, Heidelberg (2002). https:\/\/doi.org\/10.1007\/3-540-46035-7_22","DOI":"10.1007\/3-540-46035-7_22"},{"key":"4_CR18","doi-asserted-by":"publisher","unstructured":"Chakraborty, S., Dziembowski, S., Nielsen, J.B.: Reverse firewalls for actively secure MPCs. In: Micciancio, D., Ristenpart, T. (eds.) Advances in Cryptology \u2013 CRYPTO\u00a02020, Part\u00a0II. Lecture Notes in Computer Science, vol. 12171, pp. 732\u2013762. Springer, Heidelberg, Germany, Santa Barbara, CA, USA (Aug\u00a017\u201321) (2020). https:\/\/doi.org\/10.1007\/978-3-030-56880-1_26","DOI":"10.1007\/978-3-030-56880-1_26"},{"key":"4_CR19","doi-asserted-by":"publisher","unstructured":"Chakraborty, S., Ganesh, C., Pancholi, M., Sarkar, P.: Reverse firewalls for adaptively secure MPC without setup. In: Tibouchi, M., Wang, H. (eds.) ASIACRYPT 2021. LNCS, vol. 13091, pp. 335\u2013364. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-92075-3_12","DOI":"10.1007\/978-3-030-92075-3_12"},{"key":"4_CR20","doi-asserted-by":"publisher","unstructured":"Chakraborty, S., Ganesh, C., Sarkar, P.: Reverse firewalls for oblivious transfer extension and applications to zero-knowledge. In: Hazay, C., Stam, M. (eds.) Advances in Cryptology \u2013 EUROCRYPT\u00a02023, Part\u00a0I. Lecture Notes in Computer Science, vol. 14004, pp. 239\u2013270. Springer, Heidelberg, Germany, Lyon, France (Apr\u00a023\u201327, 2023). https:\/\/doi.org\/10.1007\/978-3-031-30545-0_9","DOI":"10.1007\/978-3-031-30545-0_9"},{"key":"4_CR21","unstructured":"Chakraborty, S., Magliocco, L., Magri, B., Venturi, D.: Key exchange in the post-snowden era: universally composable subversion-resilient PAKE. Cryptology ePrint Archive, Paper 2023\/1827 (2023). https:\/\/eprint.iacr.org\/2023\/1827"},{"key":"4_CR22","doi-asserted-by":"publisher","unstructured":"Chakraborty, S., Magliocco, L., Magri, B., Venturi, D.: Key exchange in the post-snowden era: Universally composable subversion-resilient PAKE. In: Advances in Cryptology \u2013 ASIACRYPT\u00a02024, Part\u00a0V. Lecture Notes in Computer Science, vol. 15488, pp. 101\u2013133. Springer, Singapore, Singapore (Dec\u00a07\u201311, 2024). https:\/\/doi.org\/10.1007\/978-981-96-0935-2_4","DOI":"10.1007\/978-981-96-0935-2_4"},{"key":"4_CR23","doi-asserted-by":"publisher","unstructured":"Chakraborty, S., Magri, B., Nielsen, J.B., Venturi, D.: Universally composable subversion-resilient cryptography. In: Dunkelman, O., Dziembowski, S. (eds.) Advances in Cryptology \u2013 EUROCRYPT\u00a02022, Part\u00a0I. Lecture Notes in Computer Science, vol. 13275, pp. 272\u2013302. Springer, Heidelberg, Germany, Trondheim, Norway (May\u00a030\u00a0\u2013\u00a0Jun\u00a03, 2022). https:\/\/doi.org\/10.1007\/978-3-031-06944-4_10","DOI":"10.1007\/978-3-031-06944-4_10"},{"key":"4_CR24","doi-asserted-by":"publisher","unstructured":"Chen, R., Huang, X., Yung, M.: Subvert KEM to break DEM: practical algorithm-substitution attacks on public-key encryption. In: Moriai, S., Wang, H. (eds.) Advances in Cryptology \u2013 ASIACRYPT\u00a02020, Part\u00a0II. Lecture Notes in Computer Science, vol. 12492, pp. 98\u2013128. Springer, Heidelberg, Germany, Daejeon, South Korea (Dec\u00a07\u201311, 2020). https:\/\/doi.org\/10.1007\/978-3-030-64834-3_4","DOI":"10.1007\/978-3-030-64834-3_4"},{"key":"4_CR25","doi-asserted-by":"publisher","unstructured":"Chen, R., Mu, Y., Yang, G., Susilo, W., Guo, F., Zhang, M.: Cryptographic reverse firewall via malleable smooth projective hash functions. In: Cheon, J.H., Takagi, T. (eds.) Advances in Cryptology \u2013 ASIACRYPT\u00a02016, Part\u00a0I. Lecture Notes in Computer Science, vol. 10031, pp. 844\u2013876. Springer, Heidelberg, Germany, Hanoi, Vietnam (Dec\u00a04\u20138, 2016). https:\/\/doi.org\/10.1007\/978-3-662-53887-6_31","DOI":"10.1007\/978-3-662-53887-6_31"},{"key":"4_CR26","doi-asserted-by":"publisher","unstructured":"Chow, S.S.M., Russell, A., Tang, Q., Yung, M., Zhao, Y., Zhou, H.-S.: Let a Non-barking Watchdog Bite: Cliptographic Signatures with an Offline Watchdog. In: Lin, D., Sako, K. (eds.) PKC 2019. LNCS, vol. 11442, pp. 221\u2013251. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-17253-4_8","DOI":"10.1007\/978-3-030-17253-4_8"},{"issue":"4","key":"4_CR27","doi-asserted-by":"publisher","first-page":"1914","DOI":"10.1007\/s00145-020-09360-1","volume":"33","author":"K Cohn-Gordon","year":"2020","unstructured":"Cohn-Gordon, K., Cremers, C., Dowling, B., Garratt, L., Stebila, D.: A formal security analysis of the signal messaging protocol. J. Cryptol. 33(4), 1914\u20131983 (2020). https:\/\/doi.org\/10.1007\/s00145-020-09360-1","journal-title":"J. Cryptol."},{"key":"4_CR28","doi-asserted-by":"publisher","unstructured":"Cohn-Gordon, K., Cremers, C., Gj\u00f8steen, K., Jacobsen, H., Jager, T.: Highly efficient key exchange protocols with optimal tightness. In: Boldyreva, A., Micciancio, D. (eds.) Advances in Cryptology \u2013 CRYPTO\u00a02019, Part\u00a0III. Lecture Notes in Computer Science, vol. 11694, pp. 767\u2013797. Springer, Heidelberg, Germany, Santa Barbara, CA, USA (Aug\u00a018\u201322, 2019). https:\/\/doi.org\/10.1007\/978-3-030-26954-8_25","DOI":"10.1007\/978-3-030-26954-8_25"},{"key":"4_CR29","doi-asserted-by":"publisher","unstructured":"Degabriele, J.P., Farshim, P., Poettering, B.: A more cautious approach to security against mass surveillance. In: Leander, G. (ed.) Fast Software Encryption \u2013 FSE\u00a02015. Lecture Notes in Computer Science, vol.\u00a09054, pp. 579\u2013598. Springer, Heidelberg, Germany, Istanbul, Turkey (Mar\u00a08\u201311, 2015). https:\/\/doi.org\/10.1007\/978-3-662-48116-5_28","DOI":"10.1007\/978-3-662-48116-5_28"},{"key":"4_CR30","doi-asserted-by":"publisher","unstructured":"Dodis, Y., Mironov, I., Stephens-Davidowitz, N.: Message transmission with reverse firewalls\u2014secure communication on corrupted machines. In: Robshaw, M., Katz, J. (eds.) Advances in Cryptology \u2013 CRYPTO\u00a02016, Part\u00a0I. Lecture Notes in Computer Science, vol.\u00a09814, pp. 341\u2013372. Springer, Heidelberg, Germany, Santa Barbara, CA, USA (Aug\u00a014\u201318, 2016). https:\/\/doi.org\/10.1007\/978-3-662-53018-4_13","DOI":"10.1007\/978-3-662-53018-4_13"},{"key":"4_CR31","doi-asserted-by":"publisher","unstructured":"Dowling, B., Fischlin, M., G\u00fcnther, F., Stebila, D.: A cryptographic analysis of the TLS 1.3 handshake protocol. J. Cryptol. 34(4), 37 (Oct 2021). https:\/\/doi.org\/10.1007\/s00145-021-09384-1","DOI":"10.1007\/s00145-021-09384-1"},{"key":"4_CR32","doi-asserted-by":"publisher","unstructured":"Faonio, A., Fiore, D., Herranz, J., R\u00e0fols, C.: Structure-preserving and re-randomizable RCCA-secure public key encryption and its applications. In: Galbraith, S.D., Moriai, S. (eds.) Advances in Cryptology \u2013 ASIACRYPT\u00a02019, Part\u00a0III. Lecture Notes in Computer Science, vol. 11923, pp. 159\u2013190. Springer, Cham, Switzerland, Kobe, Japan (Dec\u00a08\u201312, 2019). https:\/\/doi.org\/10.1007\/978-3-030-34618-8_6","DOI":"10.1007\/978-3-030-34618-8_6"},{"key":"4_CR33","doi-asserted-by":"publisher","unstructured":"Fischlin, M., Mazaheri, S.: Self-guarding cryptographic protocols against algorithm substitution attacks. In: Chong, S., Delaune, S. (eds.) CSF 2018: IEEE 31st Computer Security Foundations Symposium, pp. 76\u201390. IEEE Computer Society Press, Oxford, UK (Jul\u00a09\u201312, 2018). https:\/\/doi.org\/10.1109\/CSF.2018.00013","DOI":"10.1109\/CSF.2018.00013"},{"key":"4_CR34","unstructured":"Galteland, H., Gj\u00f8steen, K.: Subliminal channels in post-quantum digital signature schemes. Cryptology ePrint Archive, Report 2019\/574 (2019). https:\/\/eprint.iacr.org\/2019\/574"},{"key":"4_CR35","doi-asserted-by":"publisher","unstructured":"Ganesh, C., Magri, B., Venturi, D.: Cryptographic reverse firewalls for interactive proof systems. In: Czumaj, A., Dawar, A., Merelli, E. (eds.) ICALP 2020: 47th International Colloquium on Automata, Languages and Programming. LIPIcs, vol.\u00a0168, pp. 55:1\u201355:16. Schloss Dagstuhl - Leibniz-Zentrum fuer Informatik, Saarbr\u00fccken, Germany (Jul\u00a08\u201311, 2020). https:\/\/doi.org\/10.4230\/LIPIcs.ICALP.2020.55","DOI":"10.4230\/LIPIcs.ICALP.2020.55"},{"key":"4_CR36","doi-asserted-by":"publisher","unstructured":"Gellert, K., Gj\u00f8steen, K., Jacobsen, H., Jager, T.: On optimal tightness for key exchange with full forward secrecy via key confirmation. In: Handschuh, H., Lysyanskaya, A. (eds.) Advances in Cryptology \u2013 CRYPTO\u00a02023, Part\u00a0IV. Lecture Notes in Computer Science, vol. 14084, pp. 297\u2013329. Springer, Heidelberg, Germany, Santa Barbara, CA, USA (Aug\u00a020\u201324, 2023). https:\/\/doi.org\/10.1007\/978-3-031-38551-3_10","DOI":"10.1007\/978-3-031-38551-3_10"},{"key":"4_CR37","doi-asserted-by":"publisher","unstructured":"Gu, Y., Jarecki, S., Krawczyk, H.: KHAPE: Asymmetric PAKE from key-hiding key exchange. In: Malkin, T., Peikert, C. (eds.) Advances in Cryptology \u2013 CRYPTO\u00a02021, Part\u00a0IV. Lecture Notes in Computer Science, vol. 12828, pp. 701\u2013730. Springer, Heidelberg, Germany, Virtual Event (Aug\u00a016\u201320, 2021). https:\/\/doi.org\/10.1007\/978-3-030-84259-8_24","DOI":"10.1007\/978-3-030-84259-8_24"},{"key":"4_CR38","doi-asserted-by":"crossref","unstructured":"Gu, Y., Jarecki, S., Krawczyk, H.: KHAPE: Asymmetric PAKE from key-hiding key exchange. Cryptology ePrint Archive, Paper 2021\/873 (2021). https:\/\/eprint.iacr.org\/2021\/873","DOI":"10.1007\/978-3-030-84259-8_24"},{"key":"4_CR39","doi-asserted-by":"publisher","unstructured":"Hofheinz, D., M\u00fcller-Quade, J., Steinwandt, R.: Initiator-resilient universally composable key exchange. In: Snekkenes, E., Gollmann, D. (eds.) ESORICS\u00a02003: 8th European Symposium on Research in Computer Security. Lecture Notes in Computer Science, vol.\u00a02808, pp. 61\u201384. Springer, Heidelberg, Germany, Gj\u00f8vik, Norway (Oct\u00a013\u201315, 2003). https:\/\/doi.org\/10.1007\/978-3-540-39650-5_4","DOI":"10.1007\/978-3-540-39650-5_4"},{"key":"4_CR40","doi-asserted-by":"publisher","unstructured":"H\u00fclsing, A., Ning, K.C., Schwabe, P., Weber, F., Zimmermann, P.R.: Post-quantum WireGuard. In: 2021 IEEE Symposium on Security and Privacy, pp. 304\u2013321. IEEE Computer Society Press, San Francisco, CA, USA (May\u00a024\u201327, 2021). https:\/\/doi.org\/10.1109\/SP40001.2021.00030","DOI":"10.1109\/SP40001.2021.00030"},{"key":"4_CR41","doi-asserted-by":"publisher","unstructured":"Jarecki, S., Krawczyk, H., Xu, J.: OPAQUE: An Asymmetric PAKE Protocol Secure Against Pre-computation Attacks. In: Nielsen, J.B., Rijmen, V. (eds.) EUROCRYPT 2018. LNCS, vol. 10822, pp. 456\u2013486. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-78372-7_15","DOI":"10.1007\/978-3-319-78372-7_15"},{"key":"4_CR42","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"546","DOI":"10.1007\/11535218_33","volume-title":"Advances in Cryptology \u2013 CRYPTO 2005","author":"H Krawczyk","year":"2005","unstructured":"Krawczyk, H.: HMQV: a high-performance secure Diffie-Hellman protocol. In: Shoup, V. (ed.) CRYPTO 2005. LNCS, vol. 3621, pp. 546\u2013566. Springer, Heidelberg (2005). https:\/\/doi.org\/10.1007\/11535218_33"},{"key":"4_CR43","doi-asserted-by":"publisher","unstructured":"Liu, C., Chen, R., Wang, Y., Wang, Y.: Asymmetric subversion attacks on signature schemes. In: Susilo, W., Yang, G. (eds.) ACISP 18: 23rd Australasian Conference on Information Security and Privacy. Lecture Notes in Computer Science, vol. 10946, pp. 376\u2013395. Springer, Heidelberg, Germany, Wollongong, NSW, Australia (Jul\u00a011\u201313, 2018). https:\/\/doi.org\/10.1007\/978-3-319-93638-3_22","DOI":"10.1007\/978-3-319-93638-3_22"},{"key":"4_CR44","doi-asserted-by":"publisher","unstructured":"Liu, J., Chen, R., Wang, Y., Tang, X., Su, J.: Subversion-resilient authenticated key exchange with reverse firewalls. In: Liu, J.K., Chen, L., Sun, S.F., Liu, X. (eds.) Provable and Practical Security, pp. 181\u2013200. Springer Nature Singapore, Singapore (2025). https:\/\/doi.org\/10.1007\/978-981-96-0957-4_10","DOI":"10.1007\/978-981-96-0957-4_10"},{"key":"4_CR45","doi-asserted-by":"publisher","unstructured":"Liu, J., Wang, Y., Chen, R., Tang, X., Su, J.: srCPace: universally composable PAKE with subversion-resilience. In: Lin, D., Wang, M., Yung, M. (eds.) Information Security and Cryptology, pp. 211\u2013231. Springer Nature Singapore, Singapore (2025). https:\/\/doi.org\/10.1007\/978-981-96-4731-6_11","DOI":"10.1007\/978-981-96-4731-6_11"},{"issue":"3","key":"4_CR46","doi-asserted-by":"publisher","first-page":"3137","DOI":"10.1109\/TDSC.2024.3524681","volume":"22","author":"J Liu","year":"2025","unstructured":"Liu, J., Wang, Y., Tang, X., Chen, R., Huang, X., Su, J.: srTLS: secure TLS handshake on corrupted machines. IEEE Trans. Dependable Secur. Comput. 22(3), 3137\u20133154 (2025). https:\/\/doi.org\/10.1109\/TDSC.2024.3524681","journal-title":"IEEE Trans. Dependable Secur. Comput."},{"key":"4_CR47","doi-asserted-by":"publisher","unstructured":"Mironov, I., Stephens-Davidowitz, N.: Cryptographic reverse firewalls. In: Oswald, E., Fischlin, M. (eds.) Advances in Cryptology \u2013 EUROCRYPT\u00a02015, Part\u00a0II. Lecture Notes in Computer Science, vol.\u00a09057, pp. 657\u2013686. Springer, Heidelberg, Germany, Sofia, Bulgaria (Apr\u00a026\u201330, 2015). https:\/\/doi.org\/10.1007\/978-3-662-46803-6_22","DOI":"10.1007\/978-3-662-46803-6_22"},{"key":"4_CR48","unstructured":"Perlroth, N., Larson, J., Shane, S.: Secret documents reveal nsa campaign against encryption (2013). https:\/\/archive.nytimes.com\/www.nytimes.com\/interactive\/2013\/09\/05\/us\/documents-reveal-nsa-campaign-against-encryption.html"},{"key":"4_CR49","doi-asserted-by":"publisher","unstructured":"Russell, A., Tang, Q., Yung, M., Zhou, H.-S.: Cliptography: Clipping the Power of Kleptographic Attacks. In: Cheon, J.H., Takagi, T. (eds.) ASIACRYPT 2016. LNCS, vol. 10032, pp. 34\u201364. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53890-6_2","DOI":"10.1007\/978-3-662-53890-6_2"},{"key":"4_CR50","doi-asserted-by":"publisher","unstructured":"Russell, A., Tang, Q., Yung, M., Zhou, H.S.: Generic semantic security against a kleptographic adversary. In: Thuraisingham, B.M., Evans, D., Malkin, T., Xu, D. (eds.) ACM CCS 2017: 24th Conference on Computer and Communications Security, pp. 907\u2013922. ACM Press, Dallas, TX, USA (Oct\u00a031\u2013\u00a0Nov\u00a02, 2017). https:\/\/doi.org\/10.1145\/3133956.3133993","DOI":"10.1145\/3133956.3133993"},{"key":"4_CR51","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"241","DOI":"10.1007\/978-3-319-96881-0_9","volume-title":"Advances in Cryptology \u2013 CRYPTO 2018","author":"A Russell","year":"2018","unstructured":"Russell, A., Tang, Q., Yung, M., Zhou, H.-S.: Correcting subverted random oracles. In: Shacham, H., Boldyreva, A. (eds.) CRYPTO 2018. LNCS, vol. 10992, pp. 241\u2013271. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-96881-0_9"},{"key":"4_CR52","doi-asserted-by":"publisher","unstructured":"Santos, B.F.D., Gu, Y., Jarecki, S., Krawczyk, H.: Asymmetric PAKE with low computation and communication. In: Dunkelman, O., Dziembowski, S. (eds.) Advances in Cryptology \u2013 EUROCRYPT\u00a02022, Part\u00a0II. Lecture Notes in Computer Science, vol. 13276, pp. 127\u2013156. Springer, Heidelberg, Germany, Trondheim, Norway (May\u00a030\u00a0\u2013\u00a0Jun\u00a03, 2022). https:\/\/doi.org\/10.1007\/978-3-031-07085-3_5","DOI":"10.1007\/978-3-031-07085-3_5"},{"key":"4_CR53","unstructured":"Shoup, V.: A proposal for an ISO standard for public key encryption. Cryptology ePrint Archive, Report 2001\/112 (2001). https:\/\/eprint.iacr.org\/2001\/112"},{"key":"4_CR54","doi-asserted-by":"publisher","unstructured":"Steinfeld, R., Baek, J., Zheng, Y.: On the Necessity of Strong Assumptions for the Security of a Class of Asymmetric Encryption Schemes. In: Batten, L., Seberry, J. (eds.) ACISP 2002. LNCS, vol. 2384, pp. 241\u2013256. Springer, Heidelberg (2002). https:\/\/doi.org\/10.1007\/3-540-45450-0_20","DOI":"10.1007\/3-540-45450-0_20"},{"key":"4_CR55","doi-asserted-by":"publisher","unstructured":"Teseleanu, G.: Threshold kleptographic attacks on discrete logarithm based signatures. In: Lange, T., Dunkelman, O. (eds.) Progress in Cryptology - LATINCRYPT\u00a02017: 5th International Conference on Cryptology and Information Security in Latin America. Lecture Notes in Computer Science, vol. 11368, pp. 401\u2013414. Springer, Heidelberg, Germany, Havana, Cuba (Sep\u00a020\u201322, 2019). https:\/\/doi.org\/10.1007\/978-3-030-25283-0_21","DOI":"10.1007\/978-3-030-25283-0_21"},{"key":"4_CR56","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"89","DOI":"10.1007\/3-540-68697-5_8","volume-title":"Advances in Cryptology \u2014 CRYPTO \u201996","author":"A Young","year":"1996","unstructured":"Young, A., Yung, M.: The dark side of \u201cBlack-Box\u2019\u2019 cryptography or: should we trust capstone? In: Koblitz, N. (ed.) CRYPTO 1996. LNCS, vol. 1109, pp. 89\u2013103. Springer, Heidelberg (1996). https:\/\/doi.org\/10.1007\/3-540-68697-5_8"},{"key":"4_CR57","doi-asserted-by":"publisher","unstructured":"Young, A., Yung, M.: Kleptography: using cryptography against cryptography. In: Fumy, W. (ed.) Advances in Cryptology \u2013 EUROCRYPT\u201997. Lecture Notes in Computer Science, vol.\u00a01233, pp. 62\u201374. Springer, Heidelberg, Germany, Konstanz, Germany (May\u00a011\u201315, 1997). https:\/\/doi.org\/10.1007\/3-540-69053-0_6","DOI":"10.1007\/3-540-69053-0_6"}],"container-title":["Lecture Notes in Computer Science","Advances in Cryptology \u2013 ASIACRYPT 2025"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-95-5096-8_4","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,12,7]],"date-time":"2025-12-07T11:24:27Z","timestamp":1765106667000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-981-95-5096-8_4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,12,8]]},"ISBN":["9789819550951","9789819550968"],"references-count":57,"URL":"https:\/\/doi.org\/10.1007\/978-981-95-5096-8_4","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,12,8]]},"assertion":[{"value":"8 December 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ASIACRYPT","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on the Theory and Application of Cryptology and Information Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Melbourne, VIC","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Australia","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"8 December 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"12 December 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"31","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"asiacrypt2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/asiacrypt.iacr.org\/2025\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}