Nothing Special   »   [go: up one dir, main page]

What a lovely hat

Is it made out of tin foil?

Paper 2024/1813

Revisiting Leakage-Resilient MACs and Succinctly-Committing AEAD: More Applications of Pseudo-Random Injections

Mustafa Khairallah, Lund University
Abstract

Pseudo-Random Injections (PRIs) have been used in several applications in symmetric-key cryptography, such as in the idealization of Authenticated Encryption with Associated Data (AEAD) schemes, building robust AEAD, and, recently, in converting a committing AEAD scheme into a succinctly committing AEAD scheme. In Crypto 2024, Bellare and Hoang showed that if an AEAD scheme is already committing, it can be transformed into a succinctly committing scheme by encrypting part of the plaintext using a PRI. In this paper, we revisit the applications of PRIs in building Message Authentication Codes (MACs) and AEAD schemes. First, we look at some of the properties and definitions of PRIs, such as collision resistance and unforgeability when used as a MAC with small plaintext space, under different leakage models. Next, we show how they can be combined with collision-resistant hash functions to build a MAC for long plaintexts, offering flexible security depending on how the PRI and equality check are implemented. If both the PRI and equality check are leak-free, the MAC provides almost optimal security, but the security only degrades a little if the equality check is only leakage-resilient (rather than leak-free). If the equality check has unbounded leakage, the security drops to a baseline security, rather than being completely insecure. Next, we show how to use PRIs to build a succinctly committing online AEAD scheme dubbed as scoAEfrom scratch that achieves succinct CMT-4 security, privacy, and Ciphertext Integrity with Misuse and Leakage (CIML) security. Last but not least, we show how to build a succinct nonce Misuse-Resistant (MRAE) AEAD scheme, dubbed as scMRAE. The construction combines the SIV paradigm with PRI-based encryption (e.g. the Encode-then-Encipher (EtE) framework).

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Preprint.
Keywords
Context CommitmentSuccinctAEADMACLeakage Resilience
Contact author(s)
mustafa khairallah 1608 @ eit lth se
History
2024-11-23: revised
2024-11-05: received
See all versions
Short URL
https://ia.cr/2024/1813
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2024/1813,
      author = {Mustafa Khairallah},
      title = {Revisiting Leakage-Resilient {MACs} and Succinctly-Committing {AEAD}: More Applications of Pseudo-Random Injections},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/1813},
      year = {2024},
      url = {https://eprint.iacr.org/2024/1813}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.