Beyond modes: Building a secure record protocol from a cryptographic sponge permutation

Markku Juhani O. Saarinen

doi:10.1007/978-3-319-04852-9_14

Beyond modes: Building a secure record protocol from a cryptographic sponge permutation

Markku Juhani O. Saarinen

Tutkimustuotos: Konferenssiartikkeli › Tieteellinen › vertaisarvioitu

14 Sitaatiot (Scopus)

Abstrakti

BLINKER is a light-weight cryptographic suite and record protocol built from a single permutation. Its design is based on the Sponge construction used by the SHA-3 algorithm KECCAK. We examine the SpongeWrap authenticated encryption mode and expand its padding mechanism to offer explicit domain separation and enhanced security for our specific requirements: shared secret half-duplex keying, encryption, and a MAC-and-continue mode. We motivate these enhancements by showing that unlike legacy protocols, the resulting record protocol is secure against a two-channel synchronization attack while also having a significantly smaller implementation footprint. The design facilitates security proofs directly from a single cryptographic primitive (a single security assumption) rather than via idealization of multitude of algorithms, paddings and modes of operation. The protocol is also uniquely suitable for an autonomous or semi-autonomous hardware implementation of protocols where the secrets never leave the module, making it attractive for smart card and HSM designs.

Alkuperäiskieli	Englanti
Otsikko	Topics in Cryptology, CT-RSA 2014 - The Cryptographer's Track at the RSA Conference 2014, Proceedings
Kustantaja	Springer Verlag
Sivut	270-285
Sivumäärä	16
ISBN (painettu)	9783319048512
DOI - pysyväislinkit	https://doi.org/10.1007/978-3-319-04852-9_14
Tila	Julkaistu - 2014
Julkaistu ulkoisesti	Kyllä
OKM-julkaisutyyppi	A4 Artikkeli konferenssijulkaisussa
Tapahtuma	2014 Conference on Cryptographer's Track at the RSA, CT-RSA 2014 - San Francisco, CA, Yhdysvallat Kesto: 25 helmik. 2014 → 28 helmik. 2014

Julkaisusarja

Nimi	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Vuosikerta	8366 LNCS
ISSN (painettu)	0302-9743
ISSN (elektroninen)	1611-3349

Conference

Conference	2014 Conference on Cryptographer's Track at the RSA, CT-RSA 2014
Maa/Alue	Yhdysvallat
Kaupunki	San Francisco, CA
Ajanjakso	25/02/14 → 28/02/14

!!ASJC Scopus subject areas

Theoretical Computer Science
Yleinen tietojenkäsittelytiede

Pääsy asiakirjaan

10.1007/978-3-319-04852-9_14

Muut tiedostot ja linkit

Linkki julkaisuun Scopuksessa

Siteeraa tätä

Saarinen, M. J. O. (2014). Beyond modes: Building a secure record protocol from a cryptographic sponge permutation. teoksessa Topics in Cryptology, CT-RSA 2014 - The Cryptographer's Track at the RSA Conference 2014, Proceedings (Sivut 270-285). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vuosikerta 8366 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-319-04852-9_14

Saarinen, Markku Juhani O. / Beyond modes : Building a secure record protocol from a cryptographic sponge permutation. Topics in Cryptology, CT-RSA 2014 - The Cryptographer's Track at the RSA Conference 2014, Proceedings. Springer Verlag, 2014. Sivut 270-285 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{797b86cd80ef4d46a8a23b1addc27d35,

title = "Beyond modes: Building a secure record protocol from a cryptographic sponge permutation",

abstract = "BLINKER is a light-weight cryptographic suite and record protocol built from a single permutation. Its design is based on the Sponge construction used by the SHA-3 algorithm KECCAK. We examine the SpongeWrap authenticated encryption mode and expand its padding mechanism to offer explicit domain separation and enhanced security for our specific requirements: shared secret half-duplex keying, encryption, and a MAC-and-continue mode. We motivate these enhancements by showing that unlike legacy protocols, the resulting record protocol is secure against a two-channel synchronization attack while also having a significantly smaller implementation footprint. The design facilitates security proofs directly from a single cryptographic primitive (a single security assumption) rather than via idealization of multitude of algorithms, paddings and modes of operation. The protocol is also uniquely suitable for an autonomous or semi-autonomous hardware implementation of protocols where the secrets never leave the module, making it attractive for smart card and HSM designs.",

keywords = "Autonomous Hardware Encryption, BLINKER, Half-duplex security, Lightweight Security, Sponge Construction, Sponge-based Protocols",

author = "Saarinen, {Markku Juhani O.}",

year = "2014",

doi = "10.1007/978-3-319-04852-9_14",

language = "English",

isbn = "9783319048512",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "270--285",

booktitle = "Topics in Cryptology, CT-RSA 2014 - The Cryptographer's Track at the RSA Conference 2014, Proceedings",

address = "Germany",

note = "2014 Conference on Cryptographer's Track at the RSA, CT-RSA 2014 ; Conference date: 25-02-2014 Through 28-02-2014",

}

Saarinen, MJO 2014, Beyond modes: Building a secure record protocol from a cryptographic sponge permutation. julkaisussa Topics in Cryptology, CT-RSA 2014 - The Cryptographer's Track at the RSA Conference 2014, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), Vuosikerta 8366 LNCS, Springer Verlag, Sivut 270-285, 2014 Conference on Cryptographer's Track at the RSA, CT-RSA 2014, San Francisco, CA, Yhdysvallat, 25/02/14. https://doi.org/10.1007/978-3-319-04852-9_14

Beyond modes: Building a secure record protocol from a cryptographic sponge permutation. / Saarinen, Markku Juhani O.
Topics in Cryptology, CT-RSA 2014 - The Cryptographer's Track at the RSA Conference 2014, Proceedings. Springer Verlag, 2014. s. 270-285 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vuosikerta 8366 LNCS).

Tutkimustuotos: Konferenssiartikkeli › Tieteellinen › vertaisarvioitu

TY - GEN

T1 - Beyond modes

T2 - 2014 Conference on Cryptographer's Track at the RSA, CT-RSA 2014

AU - Saarinen, Markku Juhani O.

PY - 2014

Y1 - 2014

N2 - BLINKER is a light-weight cryptographic suite and record protocol built from a single permutation. Its design is based on the Sponge construction used by the SHA-3 algorithm KECCAK. We examine the SpongeWrap authenticated encryption mode and expand its padding mechanism to offer explicit domain separation and enhanced security for our specific requirements: shared secret half-duplex keying, encryption, and a MAC-and-continue mode. We motivate these enhancements by showing that unlike legacy protocols, the resulting record protocol is secure against a two-channel synchronization attack while also having a significantly smaller implementation footprint. The design facilitates security proofs directly from a single cryptographic primitive (a single security assumption) rather than via idealization of multitude of algorithms, paddings and modes of operation. The protocol is also uniquely suitable for an autonomous or semi-autonomous hardware implementation of protocols where the secrets never leave the module, making it attractive for smart card and HSM designs.

AB - BLINKER is a light-weight cryptographic suite and record protocol built from a single permutation. Its design is based on the Sponge construction used by the SHA-3 algorithm KECCAK. We examine the SpongeWrap authenticated encryption mode and expand its padding mechanism to offer explicit domain separation and enhanced security for our specific requirements: shared secret half-duplex keying, encryption, and a MAC-and-continue mode. We motivate these enhancements by showing that unlike legacy protocols, the resulting record protocol is secure against a two-channel synchronization attack while also having a significantly smaller implementation footprint. The design facilitates security proofs directly from a single cryptographic primitive (a single security assumption) rather than via idealization of multitude of algorithms, paddings and modes of operation. The protocol is also uniquely suitable for an autonomous or semi-autonomous hardware implementation of protocols where the secrets never leave the module, making it attractive for smart card and HSM designs.

KW - Autonomous Hardware Encryption

KW - BLINKER

KW - Half-duplex security

KW - Lightweight Security

KW - Sponge Construction

KW - Sponge-based Protocols

UR - http://www.scopus.com/inward/record.url?scp=84901287993&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-04852-9_14

DO - 10.1007/978-3-319-04852-9_14

M3 - Conference contribution

AN - SCOPUS:84901287993

SN - 9783319048512

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 270

EP - 285

BT - Topics in Cryptology, CT-RSA 2014 - The Cryptographer's Track at the RSA Conference 2014, Proceedings

PB - Springer Verlag

Y2 - 25 February 2014 through 28 February 2014

ER -

Saarinen MJO. Beyond modes: Building a secure record protocol from a cryptographic sponge permutation. julkaisussa Topics in Cryptology, CT-RSA 2014 - The Cryptographer's Track at the RSA Conference 2014, Proceedings. Springer Verlag. 2014. s. 270-285. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-319-04852-9_14

Beyond modes: Building a secure record protocol from a cryptographic sponge permutation

Abstrakti

Julkaisusarja

Conference

!!ASJC Scopus subject areas

Pääsy asiakirjaan

Muut tiedostot ja linkit

Sormenjälki

Siteeraa tätä