U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

    Presentations 2023
Presentation

Key Committing Security of AEZ

October 4, 2023

Presenters

Yu Long Chen - NIST

Description

For an Authenticated Encryption with Associated Data (AEAD) scheme, the key committing security refers to the security notion of whether the adversary can produce a pair of distinct input tuples, including the key, that yields the same output. While the key committing security of various noncebased AEAD schemes is known, the security analysis of Robust AE (RAE) is largely unexplored. In particular, we are interested in the key committing security of AEAD schemes built on the Encodethen-Encipher (EtE) approach from a wide block cipher. We first consider AEZ v5, the classical and the first dedicated RAE that employs the EtE approach. We focus our analysis on the core part of AEZ to show our best attacks depending on the length of the ciphertext expansion.

Presented at

The Third NIST Workshop on Block Cipher Modes of Operation

Event Details

Location

    National Cybersecurity Center of Excellence (NCCoE)
9700 Great Seneca Highway
Rockville, MD 20850

Related Topics

Security and Privacy: encryption

Created October 04, 2023, Updated October 05, 2023