Welcome to provsec@CISPA!

We are a research group at the CISPA Helmholtz Center for Information Security in Saarbrücken, where we work on the foundations of modern cryptography through the lens of provable security. We analyze cryptographic schemes used in practice to obtain strong and concrete security guarantees, and we design new cryptographic schemes and protocols motivated by real-world applications. This often involves developing new formal models, security notions, and proof techniques.

Our research spans a broad range of topics in applied and theoretical cryptography. In particular, we work on authenticated key exchange and secure messaging, public-key encryption and signature schemes with advanced functionalities, post-quantum cryptography, anonymous and privacy-preserving cryptographic protocols, and the theory of tight security.

News

May 2026

Together with Martijn Stam, Doreen organizes ProTeCS, a workshop on Proofs and Proof Techniques for Cryptographic Security, as an affiliated event at EUROCRYPT 2026 in Rome. We are very happy to have Bart Mennink and Mike Rosulek as invited speakers!

Apr 2026

Doreen and Sabrina Kunzweiler launch PELICAN 🐦, an Équipe Associée funded by Inria to improve the provable security of isogeny-based cryptographic protocols. The funding supports mutual visits between our groups.

Mar 2026

Xiangyu joins the PKC 2027 program committee. 📋

Feb 2026

Leveled Isogeny Problems with Hints accepted at PKC 2026 🎉 Great work Subham!

more
Feb 2026

Two papers accepted at EUROCRYPT 2026 🔐 — Secure Cloud Storage and The Algebraic Isogeny Model. See you in Rome!

Jan 2026

Doreen joins the CRYPTO 2026 program committee. 📋

Sep 2025

Subham puts down roots and starts his PhD 🌱. Welcome to the team!

Jun 2025

Xiangyu Liu joins as a Postdoc 🎊 and Weidan Ji joins as a remote intern. The group is growing!

May 2025

ABE Cubed accepted at CHES 2025 🛠️. A big benchmarking effort for attribute-based encryption — great collaboration with the team!

Mar 2025

Two papers accepted at PKC 2025: Intermundium-DL and Public-Algorithm Substitution Attacks. Joint work with Mihir Bellare and Laura Shea at UCSD.

Feb 2025

Verifiable and Provably Secure Machine Unlearning will be presented at SaTML 2025 in Copenhagen 🇩🇰.

Jan 2025

provsec is officially live at CISPA 🚀 Excited to get started!

Team

Doreen Riepel

Dr. Doreen Riepel

Faculty

 Xiangyu Liu

Dr. Xiangyu Liu

Postdoc

 Subham Das

Subham Das

PhD Student
Visitors

Camryn Steckel — Aug 2026

Marvin Beckmann — Jul 2026

Marc Houben, Sabrina Kunzweiler — Jun 2026

Hans Heum — Nov 2025

Paul Rösler, Lea Thiemt — Mar 2025

Jonas Janneck, Jonas Meers — Feb 2025

Alumni

Weidan Ji — Remote Intern, Jun–Dec 2025

Agni Datta — Intern, Jun–Aug 2025

Publications

Preprints
Snake Mackerel: An Isogeny-Based AKEM Leveraging Randomness Reuse

Jonas Janneck, Jonas Meers, Massimo Ostuzzi, Doreen Riepel

IACR Cryptology ePrint Archive, 2025

ePrint
Traceable Ring Signatures Revisited: Extended Definitions, O(1) Tracing, and Efficient Log-Size Constructions

Xiangyu Liu

IACR Cryptology ePrint Archive, 2025

ePrint
K-Linkable Ring Signatures and Applications in Generalized Voting

Wonseok Choi, Xiangyu Liu, Yanxin Pang, Lirong Xia, Vassilis Zikas

IACR Cryptology ePrint Archive, 2025

ePrint
2026
Lattice-Based Updatable KEM for Group Messaging

Joël Alwen, Georg Fuchsbauer, Marta Mularczyk, Doreen Riepel

Annual International Cryptology Conference (CRYPTO)

ePrint
A Unified Treatment of Anamorphic Encryption

Wonseok Choi, Daniel Collins, Xiangyu Liu, Roy Stracovsky, Vassilis Zikas

Annual International Cryptology Conference (CRYPTO)

ePrint
Leveled Isogeny Problems with Hints

Subham Das, Riccardo Invernizzi, Péter Kutas, Jonas Meers

IACR International Conference on Practice and Theory of Public-Key Cryptography (PKC)

ePrint
Secure Cloud Storage: Modularization, Network Adversaries and Adaptive Corruptions

Jonas Janneck, Doreen Riepel

Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT)

ePrint
The Algebraic Isogeny Model: A General Model with Applications to SQIsign and Key Exchanges

Marius A. Aardal, Andrea Basso, Doreen Riepel

Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT)

ePrint
2025
Anonymous Authentication and Key Agreement, Revisited

Yanqi Zhao, Xiangyu Liu, Min Xie, Xiaoyi Yang, Jianting Ning, Baodong Qin, Haibin Zhang, Yong Yu

Annual Computer Security Applications Conference (ACSAC)

ePrint
Blockchain Governance via Sharp Anonymous Multisignatures

Wonseok Choi, Xiangyu Liu, Vassilis Zikas

ACM Conference on Advances in Financial Technologies (AFT)

ePrint
ABE Cubed: Advanced Benchmarking Extensions for ABE Squared

Sven Argo, Marloes Venema, Doreen Riepel, Tim Güneysu, Diego F. Aranha

IACR Transactions on Cryptographic Hardware and Embedded Systems (CHES)

ePrint code
Intermundium-DL: Assessing the Resilience of Current Schemes to Discrete-Log-Computation Attacks on Public Parameters

Mihir Bellare, Doreen Riepel, Laura Shea

IACR International Conference on Practice and Theory of Public-Key Cryptography (PKC)

ePrint
Public-Algorithm Substitution Attacks: Subverting Hashing and Verification

Mihir Bellare, Doreen Riepel, Laura Shea

IACR International Conference on Practice and Theory of Public-Key Cryptography (PKC)

ePrint
Universal Adaptor Signatures from Blackbox Multi-Party Computation

Michele Ciampi, Xiangyu Liu, Ioannis Tzannetos, Vassilis Zikas

Topics in Cryptology – CT-RSA

ePrint
Verifiable and Provably Secure Machine Unlearning

Thorsten Eisenhofer, Doreen Riepel, Varun Chandrasekaran, Esha Ghosh, Olga Ohrimenko, Nicolas Papernot

IEEE Conference on Secure and Trustworthy Machine Learning (SaTML)

arxiv code
2024
The Concrete Security of Two-Party Computation: Simple Definitions, and Tight Proofs for PSI and OPRFs

Mihir Bellare, Doreen Riepel, Rishabh Ranjan, Ali Aldakheel

International Conference on the Theory and Application of Cryptology and Information Security (ASIACRYPT)

ePrint
Count Corruptions, Not Users: Improved Tightness for Signatures, Encryption and Authenticated Key Exchange

Mihir Bellare, Doreen Riepel, Stefano Tessaro, Yizhao Zhang

International Conference on the Theory and Application of Cryptology and Information Security (ASIACRYPT)

ePrint
Tightly-Secure Group Key Exchange with Perfect Forward Secrecy

Emanuele Di Giandomenico, Doreen Riepel, Sven Schäge

International Conference on the Theory and Application of Cryptology and Information Security (ASIACRYPT)

ePrint
On the Tight Security of the Double Ratchet

Daniel Collins, Doreen Riepel, Si An Oliver Tran

ACM Conference on Computer and Communications Security (CCS)

ePrint
ISABELLA: Improving Structures of Attribute-Based Encryption Leveraging Linear Algebra

Doreen Riepel, Marloes Venema, Tanya Verma

ACM Conference on Computer and Communications Security (CCS)

ePrint
Key Exchange with Tight (Full) Forward Secrecy via Key Confirmation

Jiaxin Pan, Doreen Riepel, Runzhi Zeng

Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT)

ePrint
CCA Secure Updatable Encryption from Non-Mappable Group Actions

Jonas Meers, Doreen Riepel

Post-Quantum Cryptography (PQCrypto)

ePrint
Adaptor Signatures: New Security Definition and A Generic Construction for NP Relations

Xiangyu Liu, Ioannis Tzannetos, Vassilis Zikas

International Conference on the Theory and Application of Cryptology and Information Security (ASIACRYPT)

ePrint
2023
Tightly-Secure Authenticated Key Exchange

Doreen Riepel

PhD Thesis, Ruhr University Bochum

pdf
Multi-User CDH Problems and the Concrete Security of NAXOS and HMQV

Eike Kiltz, Jiaxin Pan, Magnus Ringerud, Doreen Riepel

Topics in Cryptology – CT-RSA

ePrint
Generic Models for Group Actions

Julien Duman, Dominik Hartmann, Eike Kiltz, Sabrina Kunzweiler, Jonas Lehmann, Doreen Riepel

IACR International Conference on Practice and Theory of Public-Key Cryptography (PKC)

ePrint
No More Reviewer #2: Subverting Automatic Paper-Reviewer Assignment using Adversarial Learning

Thorsten Eisenhofer, Erwin Quiring, Jonas Möller, Doreen Riepel, Thorsten Holz, Konrad Rieck

USENIX Security Symposium

arxiv code
EKE Meets Tight Security in the Universally Composable Framework

Xiangyu Liu, Shengli Liu, Shuai Han, Dawu Gu

IACR International Conference on Practice and Theory of Public-Key Cryptography (PKC)

ePrint
Fine-Grained Verifier NIZK and Its Applications

Xiangyu Liu, Shengli Liu, Shuai Han, Dawu Gu

IACR International Conference on Practice and Theory of Public-Key Cryptography (PKC)

2022
Strongly Anonymous Ratcheted Key Exchange

Benjamin Dowling, Eduard Hauck, Doreen Riepel, Paul Rösler

International Conference on the Theory and Application of Cryptology and Information Security (ASIACRYPT)

ePrint
Group Action Key Encapsulation and Non-Interactive Key Exchange in the QROM

Julien Duman, Dominik Hartmann, Eike Kiltz, Sabrina Kunzweiler, Jonas Lehmann, Doreen Riepel

International Conference on the Theory and Application of Cryptology and Information Security (ASIACRYPT)

ePrint
FABEO: Fast Attribute-Based Encryption with Optimal Security

Doreen Riepel, Hoeteck Wee

ACM Conference on Computer and Communications Security (CCS)

ePrint
Password-Authenticated Key Exchange from Group Actions

Michel Abdalla, Thorsten Eisenhofer, Eike Kiltz, Sabrina Kunzweiler, Doreen Riepel

Annual International Cryptology Conference (CRYPTO)

ePrint
Tightly CCA-Secure Inner Product Functional Encryption Scheme

Xiangyu Liu, Shengli Liu, Dawu Gu

Theoretical Computer Science (TCS)

2021
Authenticated Key Exchange and Signatures with Tight Security in the Standard Model

Shuai Han, Tibor Jager, Eike Kiltz, Shengli Liu, Jiaxin Pan, Doreen Riepel, Sven Schäge

Annual International Cryptology Conference (CRYPTO)

ePrint
Analysing the HPKE Standard

Joël Alwen, Bruno Blanchet, Eduard Hauck, Eike Kiltz, Benjamin Lipp, Doreen Riepel

Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT)

ePrint
Tightly-Secure Authenticated Key Exchange, Revisited

Tibor Jager, Eike Kiltz, Doreen Riepel, Sven Schäge

Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT)

ePrint
Tightly Secure Identity-Based Signature Scheme

Xiangyu Liu, Shengli Liu, Dawu Gu

Journal of Cryptologic Research

2020
Two-Pass Authenticated Key Exchange with Explicit Authentication and Tight Security

Xiangyu Liu, Shengli Liu, Dawu Gu, Jian Weng

International Conference on the Theory and Application of Cryptology and Information Security (ASIACRYPT)

ePrint
Tightly Secure Chameleon Hash Functions in the Multi-User Setting and Their Applications

Xiangyu Liu, Shengli Liu, Dawu Gu

Australasian Conference on Information Security and Privacy (ACISP)

ePrint
2019
A Dynamic Searchable Encryption Scheme on Cloud Storage with Multi-level Access

Xiangyu Liu, Huige Li, Fangguo Zhang

Journal of Cryptologic Research

Teaching

Theoretical Foundations of Applied Cryptography

Course · Master · Summer 2026 · Leibniz University Hannover (LUH)

Cryptographic Foundations of Secure Messaging

Seminar · Master · Winter 2025/2026 · Leibniz University Hannover (LUH)

Provable Security of Key Exchange Protocols

Seminar · Master · Summer 2025 · Saarland University (UdS)

BibTeX