INT-RUP Secure Lightweight Parallel AE Modes

INT-RUP Secure Lightweight Parallel AE Modes

Owing to the growing demand for lightweight cryptographic solutions, NIST has initiated a standardization process for lightweight cryptographic algorithms. Specific to authenticated encryption (AE), the NIST draft demands that the scheme should have one primary member that has key length of 128 bit...

Full description

Bibliographic Details
Main Authors: Avik Chakraborti, Nilanjan Datta, Ashwin Jha, Cuauhtemoc Mancillas-López, Mridul Nandi, Yu Sasaki
Format: Article
Language:English
Published: Ruhr-Universität Bochum 2020-01-01
Series:IACR Transactions on Symmetric Cryptology
Subjects:
OCB
OTR
TweGIFT
Lightweight
INT-RUP
elastic-tweak
Online Access:https://tosc.iacr.org/index.php/ToSC/article/view/8454
id doaj-1d6bb83925fb44f89064f8dcef03c9ee
record_format Article
spelling doaj-1d6bb83925fb44f89064f8dcef03c9ee2021-03-02T08:43:14ZengRuhr-Universität BochumIACR Transactions on Symmetric Cryptology2519-173X2020-01-012019410.13154/tosc.v2019.i4.81-118INT-RUP Secure Lightweight Parallel AE ModesAvik Chakraborti0Nilanjan Datta1Ashwin Jha2Cuauhtemoc Mancillas-López3Mridul Nandi4Yu Sasaki5NTT Secure Platform Laboratories, Tokyo, JapanIndian Statistical Institute, Kolkata, IndiaIndian Statistical Institute, Kolkata, IndiaDepartment of Computer Science, CINVESTAV-IPN, México City, MexicoIndian Statistical Institute, Kolkata, IndiaNTT Secure Platform Laboratories, Tokyo, Japan Owing to the growing demand for lightweight cryptographic solutions, NIST has initiated a standardization process for lightweight cryptographic algorithms. Specific to authenticated encryption (AE), the NIST draft demands that the scheme should have one primary member that has key length of 128 bits, and it should be secure for at least 250 − 1 byte queries and 2112 computations. Popular (lightweight) modes, such as OCB, OTR, CLOC, SILC, JAMBU, COFB, SAEB, Beetle, SUNDAE etc., require at least 128-bit primitives to meet the NIST criteria, as all of them are just birthday bound secure. Furthermore, most of them are sequential, and they either use a two pass mode or they do not offer any security when the adversary has access to unverified plaintext (RUP model). In this paper, we propose two new designs for lightweight AE modes, called LOCUS and LOTUS, structurally similar to OCB and OTR, respectively. These modes achieve notably higher AE security bounds with lighter primitives (only a 64-bit tweakable block cipher). Especially, they satisfy the NIST requirements: secure as long as the data complexity is less than 264 bytes and time complexity is less than 2128, even when instantiated with a primitive with 64-bit block and 128-bit key. Both these modes are fully parallelizable and provide full integrity security under the RUP model. We use TweGIFT-64[4,16,16,4] (also referred as TweGIFT-64), a tweakable variant of the GIFT block cipher, to instantiate our AE modes. TweGIFT-64-LOCUS and TweGIFT-64-LOTUS are significantly light in hardware implementation. To justify, we provide our FPGA based implementation results, which demonstrate that TweGIFT-64-LOCUS consumes only 257 slices and 690 LUTs, while TweGIFT-64-LOTUS consumes only 255 slices and 664 LUTs. https://tosc.iacr.org/index.php/ToSC/article/view/8454OCBOTRTweGIFTLightweightINT-RUPelastic-tweak
collection DOAJ
language English
format Article
sources DOAJ
author Avik Chakraborti
Nilanjan Datta
Ashwin Jha
Cuauhtemoc Mancillas-López
Mridul Nandi
Yu Sasaki
spellingShingle Avik Chakraborti
Nilanjan Datta
Ashwin Jha
Cuauhtemoc Mancillas-López
Mridul Nandi
Yu Sasaki
INT-RUP Secure Lightweight Parallel AE Modes
IACR Transactions on Symmetric Cryptology
OCB
OTR
TweGIFT
Lightweight
INT-RUP
elastic-tweak
author_facet Avik Chakraborti
Nilanjan Datta
Ashwin Jha
Cuauhtemoc Mancillas-López
Mridul Nandi
Yu Sasaki
author_sort Avik Chakraborti
title INT-RUP Secure Lightweight Parallel AE Modes
title_short INT-RUP Secure Lightweight Parallel AE Modes
title_full INT-RUP Secure Lightweight Parallel AE Modes
title_fullStr INT-RUP Secure Lightweight Parallel AE Modes
title_full_unstemmed INT-RUP Secure Lightweight Parallel AE Modes
title_sort int-rup secure lightweight parallel ae modes
publisher Ruhr-Universität Bochum
series IACR Transactions on Symmetric Cryptology
issn 2519-173X
publishDate 2020-01-01
description Owing to the growing demand for lightweight cryptographic solutions, NIST has initiated a standardization process for lightweight cryptographic algorithms. Specific to authenticated encryption (AE), the NIST draft demands that the scheme should have one primary member that has key length of 128 bits, and it should be secure for at least 250 − 1 byte queries and 2112 computations. Popular (lightweight) modes, such as OCB, OTR, CLOC, SILC, JAMBU, COFB, SAEB, Beetle, SUNDAE etc., require at least 128-bit primitives to meet the NIST criteria, as all of them are just birthday bound secure. Furthermore, most of them are sequential, and they either use a two pass mode or they do not offer any security when the adversary has access to unverified plaintext (RUP model). In this paper, we propose two new designs for lightweight AE modes, called LOCUS and LOTUS, structurally similar to OCB and OTR, respectively. These modes achieve notably higher AE security bounds with lighter primitives (only a 64-bit tweakable block cipher). Especially, they satisfy the NIST requirements: secure as long as the data complexity is less than 264 bytes and time complexity is less than 2128, even when instantiated with a primitive with 64-bit block and 128-bit key. Both these modes are fully parallelizable and provide full integrity security under the RUP model. We use TweGIFT-64[4,16,16,4] (also referred as TweGIFT-64), a tweakable variant of the GIFT block cipher, to instantiate our AE modes. TweGIFT-64-LOCUS and TweGIFT-64-LOTUS are significantly light in hardware implementation. To justify, we provide our FPGA based implementation results, which demonstrate that TweGIFT-64-LOCUS consumes only 257 slices and 690 LUTs, while TweGIFT-64-LOTUS consumes only 255 slices and 664 LUTs.
topic OCB
OTR
TweGIFT
Lightweight
INT-RUP
elastic-tweak
url https://tosc.iacr.org/index.php/ToSC/article/view/8454
work_keys_str_mv AT avikchakraborti intrupsecurelightweightparallelaemodes
AT nilanjandatta intrupsecurelightweightparallelaemodes
AT ashwinjha intrupsecurelightweightparallelaemodes
AT cuauhtemocmancillaslopez intrupsecurelightweightparallelaemodes
AT mridulnandi intrupsecurelightweightparallelaemodes
AT yusasaki intrupsecurelightweightparallelaemodes
_version_ 1724240370004393984

Similar Items