Baghery, KarimKarimBaghery2026-03-232026-03-232020978-3-030-59816-70302-9743https://imec-publications.be/handle/20.500.12860/58915Recently, various news is reported about the subversion of trusted setup phase in mass-surveillance activities; strictly speaking about commitment schemes, recently it was discovered that the SwissPost-Scytl mix-net uses a trapdoor commitment scheme, that allows undetectably altering the votes and breaking users’ privacy, given the trapdoor [Hae19, LPT19]. Motivated by such news and recent studies on subversion-resistance of various cryptographic primitives, this research studies the security of commitment schemes in the presence of a maliciously chosen commitment key. To attain a clear understanding of achievable security, we define a variety of current definitions called subversion hiding, subversion equivocality, and subversion binding. Then we provide both negative and positive results on constructing subversion-resistant commitment schemes, by showing that some combinations of notions are not compatible while presenting subversion-resistant constructions that can achieve other combinations.engProceedings paper10.1007/978-3-030-59817-4_7WOS:001560860100007SECURITYPROOF