Beyond modes: Building a secure record protocol from a cryptographic sponge permutation

Research output: Chapter in Book/Report/Conference proceedingConference contributionScientificpeer-review

14 Citations (Scopus)

Abstract

BLINKER is a light-weight cryptographic suite and record protocol built from a single permutation. Its design is based on the Sponge construction used by the SHA-3 algorithm KECCAK. We examine the SpongeWrap authenticated encryption mode and expand its padding mechanism to offer explicit domain separation and enhanced security for our specific requirements: shared secret half-duplex keying, encryption, and a MAC-and-continue mode. We motivate these enhancements by showing that unlike legacy protocols, the resulting record protocol is secure against a two-channel synchronization attack while also having a significantly smaller implementation footprint. The design facilitates security proofs directly from a single cryptographic primitive (a single security assumption) rather than via idealization of multitude of algorithms, paddings and modes of operation. The protocol is also uniquely suitable for an autonomous or semi-autonomous hardware implementation of protocols where the secrets never leave the module, making it attractive for smart card and HSM designs.

Original languageEnglish
Title of host publicationTopics in Cryptology, CT-RSA 2014 - The Cryptographer's Track at the RSA Conference 2014, Proceedings
PublisherSpringer Verlag
Pages270-285
Number of pages16
ISBN (Print)9783319048512
DOIs
Publication statusPublished - 2014
Externally publishedYes
Publication typeA4 Article in conference proceedings
Event2014 Conference on Cryptographer's Track at the RSA, CT-RSA 2014 - San Francisco, CA, United States
Duration: 25 Feb 201428 Feb 2014

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume8366 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference2014 Conference on Cryptographer's Track at the RSA, CT-RSA 2014
Country/TerritoryUnited States
CitySan Francisco, CA
Period25/02/1428/02/14

Keywords

  • Autonomous Hardware Encryption
  • BLINKER
  • Half-duplex security
  • Lightweight Security
  • Sponge Construction
  • Sponge-based Protocols

ASJC Scopus subject areas

  • Theoretical Computer Science
  • General Computer Science

Fingerprint

Dive into the research topics of 'Beyond modes: Building a secure record protocol from a cryptographic sponge permutation'. Together they form a unique fingerprint.

Cite this