The mF mode of authenticated encryption with associated data

IF 0.5 Q4 COMPUTER SCIENCE, THEORY & METHODS

Journal of Mathematical Cryptology Pub Date : 2022-01-01 DOI:10.1515/jmc-2020-0054

Bishwajit Chakraborty, M. Nandi

{"title":"The mF mode of authenticated encryption with associated data","authors":"Bishwajit Chakraborty, M. Nandi","doi":"10.1515/jmc-2020-0054","DOIUrl":null,"url":null,"abstract":"Abstract In recent years, the demand for lightweight cryptographic protocols has grown immensely. To fulfill this necessity, the National Institute of Standards and Technology (NIST) has initiated a standardization process for lightweight cryptographic encryption. NIST’s call for proposal demands that the scheme should have one primary member that has a key length of 128 bits, and it should be secure up to 2 50 − 1 {2}^{50}-1 byte queries and 2 112 {2}^{112} computations. In this article, we propose a tweakable block cipher (TBC)-based authenticated encryption with associated data (AEAD) scheme, which we call mF {\\mathsf{mF}} . We provide authenticated encryption security analysis for mF {\\mathsf{mF}} under some weaker security assumptions (stated in the article) on the underlying TBC. We instantiate a TBC using block cipher and show that the TBC achieves these weaker securities, provided the key update function has high periodicity. mixFeed {\\mathsf{mixFeed}} is a round 2 candidate in the aforementioned lightweight cryptographic standardization competition. When we replace the key update function with the key scheduling function of Advanced Encryption Standard (AES), the mF {\\mathsf{mF}} mode reduces to mixFeed {\\mathsf{mixFeed}} . Recently, the low periodicity of AES key schedule is shown. Exploiting this feature, a practical attack on mixFeed {\\mathsf{mixFeed}} is reported. We have shown that multiplication by primitive element satisfies the high periodicity property, and we have a secure instantiation of mF {\\mathsf{mF}} , a secure variant of mixFeed {\\mathsf{mixFeed}} .","PeriodicalId":43866,"journal":{"name":"Journal of Mathematical Cryptology","volume":"16 1","pages":"73 - 97"},"PeriodicalIF":0.5000,"publicationDate":"2022-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Mathematical Cryptology","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1515/jmc-2020-0054","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"COMPUTER SCIENCE, THEORY & METHODS","Score":null,"Total":0}

引用次数: 0

Abstract

Abstract In recent years, the demand for lightweight cryptographic protocols has grown immensely. To fulfill this necessity, the National Institute of Standards and Technology (NIST) has initiated a standardization process for lightweight cryptographic encryption. NIST’s call for proposal demands that the scheme should have one primary member that has a key length of 128 bits, and it should be secure up to 2 50 − 1 {2}^{50}-1 byte queries and 2 112 {2}^{112} computations. In this article, we propose a tweakable block cipher (TBC)-based authenticated encryption with associated data (AEAD) scheme, which we call mF {\mathsf{mF}} . We provide authenticated encryption security analysis for mF {\mathsf{mF}} under some weaker security assumptions (stated in the article) on the underlying TBC. We instantiate a TBC using block cipher and show that the TBC achieves these weaker securities, provided the key update function has high periodicity. mixFeed {\mathsf{mixFeed}} is a round 2 candidate in the aforementioned lightweight cryptographic standardization competition. When we replace the key update function with the key scheduling function of Advanced Encryption Standard (AES), the mF {\mathsf{mF}} mode reduces to mixFeed {\mathsf{mixFeed}} . Recently, the low periodicity of AES key schedule is shown. Exploiting this feature, a practical attack on mixFeed {\mathsf{mixFeed}} is reported. We have shown that multiplication by primitive element satisfies the high periodicity property, and we have a secure instantiation of mF {\mathsf{mF}} , a secure variant of mixFeed {\mathsf{mixFeed}} .

查看原文本刊更多论文

使用关联数据进行身份验证加密的mF模式

摘要近年来，对轻量级密码协议的需求急剧增长。为了满足这一必要性，美国国家标准与技术研究所（NIST）启动了轻量级加密的标准化过程。NIST的提案要求该方案应具有一个密钥长度为128位的主要成员，并且其安全性应高达2 50−1｛2｝^{50}-1字节查询和2112{2}^{112}计算。在本文中，我们提出了一种基于可调整分组密码（TBC）的关联数据认证加密（AEAD）方案，我们称之为mF｛\mathsf｛mF｝｝。我们在底层TBC上的一些较弱的安全假设（如文章所述）下，为mF｛\mathsf｛mF｝｝提供了经过身份验证的加密安全分析。我们使用分组密码实例化了一个TBC，并表明只要密钥更新函数具有高周期性，TBC就可以实现这些较弱的安全性。mixFeed｛\mathsf｛mixFeed｝｝是上述轻量级加密标准化竞赛的第二轮候选。当我们用高级加密标准（AES）的密钥调度功能替换密钥更新功能时，mF｛\mathsf｛mF｝｝模式简化为mixFeed｛\math sf｛mixFeed｝｝。近年来，AES密钥调度的周期性较低。据报道，利用此功能对mixFeed进行了实际攻击。我们已经证明了通过基元的乘法满足高周期性性质，并且我们有一个mF｛\mathsf｛mF｝｝的安全实例化，它是mixFeed的安全变体。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊