Projects per year
Abstract
We present a forgery attack on Prøst-OTR in a related-key setting. Prøst is a family of authenticated encryption algorithms proposed as candidates in the currently ongoing CAESAR competition, and Prøst-OTR is one of the three variants of the Prøst design. The attack exploits how the Prøst permutation is used in an Even-Mansour construc-
tion in the Feistel-based OTR mode of operation. Given the ciphertext and tag for any two messages under two related keys K and K ⊕ ∆ with related nonces, we can forge the ciphertext and tag for a modified
message under K. If we can query ciphertexts for chosen messages under K ⊕ ∆, we can achieve almost universal forgery for K. The computational complexity is negligible.
tion in the Feistel-based OTR mode of operation. Given the ciphertext and tag for any two messages under two related keys K and K ⊕ ∆ with related nonces, we can forge the ciphertext and tag for a modified
message under K. If we can query ciphertexts for chosen messages under K ⊕ ∆, we can achieve almost universal forgery for K. The computational complexity is negligible.
Original language | English |
---|---|
Title of host publication | Fast Software Encryption - FSE 2015 |
Place of Publication | Cham |
Publisher | Springer |
Pages | 282-296 |
ISBN (Print) | 978-3-662-48115-8 |
DOIs | |
Publication status | Published - 2015 |
Event | 2015 Fast Software Encryption Workshop: FSE 2015 - Istanbul, Turkey Duration: 9 Mar 2015 → 11 Mar 2015 |
Publication series
Name | Lecture Notes in Computer Science( |
---|---|
Publisher | Springer |
Volume | 9054 |
Conference
Conference | 2015 Fast Software Encryption Workshop |
---|---|
Abbreviated title | FSE 2015 |
Country/Territory | Turkey |
City | Istanbul |
Period | 9/03/15 → 11/03/15 |
Fields of Expertise
- Information, Communication & Computing
Fingerprint
Dive into the research topics of 'Related-Key Forgeries for Proest-OTR'. Together they form a unique fingerprint.Projects
- 3 Finished
-
FWF - AE - Design and Analysis of Next Generation Authenticated Encryption Algorithms
Mendel, F., Dobraunig, C. E. & Eichlseder, M.
1/10/14 → 30/09/17
Project: Research project
-
SeCoS - Secure Contactless Sphere - Smart RFID-Technologies for a Connected World
Bösch, W., Wenger, E., Khan, H. N., Schmidt, J., Gadringer, M. E., Spreitzer, R. C., Mendel, F., Gruss, D., Hutter, M., Freidl, P. F., Görtschacher, L. J., Mangard, S. & Grosinger, J.
1/01/13 → 31/12/15
Project: Research project
-
Cryptography
Schläffer, M., Oswald, M. E., Lipp, P., Dobraunig, C. E., Mendel, F., Eichlseder, M., Nad, T., Posch, R., Lamberger, M., Rijmen, V. & Rechberger, C.
1/01/95 → 31/01/19
Project: Research area