Algorithm Substitution Attacks: State Reset Detection and Asymmetric Modifications

IF 1.7 Q3 COMPUTER SCIENCE, SOFTWARE ENGINEERING

IACR Transactions on Symmetric Cryptology Pub Date : 2021-06-11 DOI:10.46586/tosc.v2021.i2.389-422

Philip Hodges, D. Stebila

引用次数: 3

Abstract

In this paper, we study algorithm substitution attacks (ASAs), where an algorithm in a cryptographic scheme is substituted for a subverted version. First, we formalize and study the use of state resets to detect ASAs, and show that many published stateful ASAs are detectable with simple practical methods relying on state resets. Second, we introduce two asymmetric ASAs on symmetric encryption, which are undetectable or unexploitable even by an adversary who knows the embedded subversion key. We also generalize this result, allowing for any symmetric ASA (on any cryptographic scheme) satisfying certain properties to be transformed into an asymmetric ASA. Our work demonstrates the broad application of the techniques first introduced by Bellare, Paterson, and Rogaway (Crypto 2014) and Bellare, Jaeger, and Kane (CCS 2015) and reinforces the need for precise definitions surrounding detectability of stateful ASAs.

查看原文本刊更多论文

算法替代攻击:状态重置检测和非对称修改

在本文中，我们研究了算法替换攻击(ASAs)，其中加密方案中的算法被替换为被破坏的版本。首先，我们形式化并研究了使用状态重置来检测asa，并表明许多已发布的有状态asa可以通过依赖于状态重置的简单实用方法进行检测。其次，我们在对称加密上引入了两个非对称asa，即使知道嵌入的subversion密钥的攻击者也无法检测或利用它们。我们还推广了这一结果，允许将满足某些属性的任何对称ASA(在任何加密方案上)转换为非对称ASA。我们的工作展示了Bellare, Paterson, and Rogaway (Crypto 2014)和Bellare, Jaeger, and Kane (CCS 2015)首次引入的技术的广泛应用，并加强了对有状态asa可检测性的精确定义的需求。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IACR Transactions on Symmetric Cryptology Mathematics-Applied Mathematics

CiteScore

5.50

自引率

22.90%

发文量