Paper 2025/1426
(Im)Possibility of Symmetric Encryption against Coordinated Algorithm Substitution Attacks and Key Exfiltration
, King's College London, CSEMAbstract
A growing body of work addresses the security of cryptographic systems in the presence of mass surveillance, a threat made concrete by Snowden’s revelations and the widespread use of spyware against journalists and activists. In this paper, we investigate the security of symmetric encryption faced with simultaneous algorithm substitution attacks (ASAs) and key exfiltration (KE). The security of symmetric encryption in presence of ASAs or KE alone was established but no result deals with their coordinated deployment. Yet, that is a necessary step to be made if we are to achieve actual security against mass surveillance. We formalize this setting, and prove that no scheme alone stands chance against coordinated ASA and KE, by describing a realistic attack. We then describe a new kind of schemes, which make use of externally supplied randomness. We formalize their security and give a construction which provably resists simultaneous ASAs and KE when paired with a verifiable source of randomness, with security bounds in the concrete security spirit.
Metadata
- Available format(s)
-
PDF
- Category
- Secret-key cryptography
- Publication info
- Published elsewhere. Major revision. LATINCRYPT
- Keywords
- Provable SecurityMass SurveillanceSymmetric Encryp- tionKey ExfiltrationAlgorithm Substitution
- Contact author(s)
-
simone colombo @ kcl ac uk
damian vizAr @ csem ch - History
- 2025-08-07: approved
- 2025-08-05: received
- See all versions
- Short URL
- https://ia.cr/2025/1426
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2025/1426,
author = {Simone Colombo and Damian Vizár},
title = {(Im)Possibility of Symmetric Encryption against Coordinated Algorithm Substitution Attacks and Key Exfiltration},
howpublished = {Cryptology {ePrint} Archive, Paper 2025/1426},
year = {2025},
url = {https://eprint.iacr.org/2025/1426}
}
