DeCAF: Decentralizable CGKA with fast healing
Alwen JF, Auerbach B, Cueto Noval M, Klein K, Pascual Perez G, Pietrzak KZ. 2024. DeCAF: Decentralizable CGKA with fast healing. Security and Cryptography for Networks: 14th International Conference. SCN: Security and Cryptography for Networks, LNCS, vol. 14974, 294–313.
Download
No fulltext has been uploaded. References only!
Conference Paper
| Published
| English
Author
Editor
Galdi, Clemente;
Phan, Duong Hieu
Corresponding author has ISTA affiliation
Department
Series Title
LNCS
Abstract
Abstract. Continuous group key agreement (CGKA) allows a group of
users to maintain a continuously updated shared key in an asynchronous
setting where parties only come online sporadically and their messages
are relayed by an untrusted server. CGKA captures the basic primitive
underlying group messaging schemes.
Current solutions including TreeKEM (“Messaging Layer Security”
(MLS) IETF RFC 9420) cannot handle concurrent requests while retaining low communication complexity. The exception being CoCoA, which
is concurrent while having extremely low communication complexity (in
groups of size n and for m concurrent updates the communication per
user is log(n), i.e., independent of m). The main downside of CoCoA
is that in groups of size n, users might have to do up to log(n) update
requests to the server to ensure their (potentially corrupted) key material has been refreshed.
In this work we present a “fast healing” concurrent CGKA protocol,
named DeCAF, where users will heal after at most log(t) requests, with
t being the number of corrupted users. While also suitable for the standard central-server setting, our protocol is particularly interesting for
realizing decentralized group messaging, where protocol messages (add,
remove, update) are being posted on some append-only data structure
rather than sent to a server. In this setting, concurrency is crucial once
the rate of requests exceeds, say, the rate at which new blocks are added
to a blockchain.
In the central-server setting, CoCoA (the only alternative with concurrency, sub-linear communication and basic post-compromise security)
enjoys much lower download communication. However, in the decentralized setting – where there is no server which can craft specific messages
for different users to reduce their download communication – our protocol
significantly outperforms CoCoA. DeCAF heals in fewer epochs (log(t)
vs. log(n)) while incurring a similar per epoch per user communication
cost.
Publishing Year
Date Published
2024-09-10
Proceedings Title
Security and Cryptography for Networks: 14th International Conference
Publisher
Springer Nature
Volume
14974
Page
294–313
Conference
SCN: Security and Cryptography for Networks
Conference Location
Amalfi, Italy
Conference Date
2024-09-11 – 2024-09-13
ISBN
ISSN
eISSN
IST-REx-ID
Cite this
Alwen JF, Auerbach B, Cueto Noval M, Klein K, Pascual Perez G, Pietrzak KZ. DeCAF: Decentralizable CGKA with fast healing. In: Galdi C, Phan DH, eds. Security and Cryptography for Networks: 14th International Conference. Vol 14974. Cham: Springer Nature; 2024:294–313. doi:10.1007/978-3-031-71073-5_14
Alwen, J. F., Auerbach, B., Cueto Noval, M., Klein, K., Pascual Perez, G., & Pietrzak, K. Z. (2024). DeCAF: Decentralizable CGKA with fast healing. In C. Galdi & D. H. Phan (Eds.), Security and Cryptography for Networks: 14th International Conference (Vol. 14974, pp. 294–313). Cham: Springer Nature. https://doi.org/10.1007/978-3-031-71073-5_14
Alwen, Joel F, Benedikt Auerbach, Miguel Cueto Noval, Karen Klein, Guillermo Pascual Perez, and Krzysztof Z Pietrzak. “DeCAF: Decentralizable CGKA with Fast Healing.” In Security and Cryptography for Networks: 14th International Conference, edited by Clemente Galdi and Duong Hieu Phan, 14974:294–313. Cham: Springer Nature, 2024. https://doi.org/10.1007/978-3-031-71073-5_14.
J. F. Alwen, B. Auerbach, M. Cueto Noval, K. Klein, G. Pascual Perez, and K. Z. Pietrzak, “DeCAF: Decentralizable CGKA with fast healing,” in Security and Cryptography for Networks: 14th International Conference, Amalfi, Italy, 2024, vol. 14974, pp. 294–313.
Alwen JF, Auerbach B, Cueto Noval M, Klein K, Pascual Perez G, Pietrzak KZ. 2024. DeCAF: Decentralizable CGKA with fast healing. Security and Cryptography for Networks: 14th International Conference. SCN: Security and Cryptography for Networks, LNCS, vol. 14974, 294–313.
Alwen, Joel F., et al. “DeCAF: Decentralizable CGKA with Fast Healing.” Security and Cryptography for Networks: 14th International Conference, edited by Clemente Galdi and Duong Hieu Phan, vol. 14974, Springer Nature, 2024, pp. 294–313, doi:10.1007/978-3-031-71073-5_14.