PPT-Building the Next Generation of Authenticated Encryption

Author : israel | Published Date : 2024-11-25

of Authenticated Encryption Mihir Bellare Shay Gueron Viet Tung Hoang Julia Len Sanketh Menda and Thomas Ristenpart Authenticated Encryption with Associated Data

Presentation Embed Code

Download Presentation

Download Presentation The PPT/PDF document "Building the Next Generation of Authenti..." is the property of its rightful owner. Permission is granted to download and print the materials on this website for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.

Building the Next Generation of Authenticated Encryption: Transcript

of Authenticated Encryption Mihir Bellare Shay Gueron Viet Tung Hoang Julia Len Sanketh Menda and Thomas Ristenpart Authenticated Encryption with Associated Data 2 Scheme AEAD Key K Scheme . Chosen . ciphertext. attacks. Online Cryptography Course Dan Boneh. Example chosen . ciphertext. attacks. A. dversary has . ciphertext. c that it wants to decrypt. Attacking non-atomic decryption. Online Cryptography Course Dan Boneh. SSH Binary Packet Protocol. Decryption:. s. tep 1: decrypt packet length field only (!). s. CBC paddings attacks. Online Cryptography Course Dan Boneh. Recap. Authenticated encryption. : CPA security + . ciphertext. integrity. C. onfidentiality in presence of . prOtection. (AERO). mcgrew@cisco.com. AERO. Authenticated Encryption algorithm. Stateful. and self-synchronizing. Easy to use. Robust against nonce misuse and decryption misuse. Saves bandwidth. No nonce, no sequence number. AEGIS . A Fast Authenticated Encryption Algorithm. . Hongjun Wu Bart Preneel . Nanyang Technological University. KU Leuven and iMinds. SAC 2013 . 2. Outline. Authenticated Encryption (AE). design rationale. (for now). Online Cryptography Course Dan Boneh. Quick Review: primitives. PRG. PRF, PRP. MAC. GGM. CTR. CMAC, HMAC. PMAC. Collision. resistance. k. ey exchange. Constructions from ciphers and MACs. Online Cryptography Course Dan Boneh. … but first, some history. Authenticated Encryption (AE): introduced in . 2000 . Encrypted . Deduplication. Storage. Jingwei. Li. *, . Chuan. Qin*, Patrick P. C. Lee*, . Jin. Li. #. *The Chinese University of Hong Kong. #. Guangzhou University. DSN 2016. . Cloud Storage. Outsourcing data management to public cloud storage is common today. David Kauchak. CS52 – . Spring 2016. Admin. Assignment 6. Survey: respondents. 24 total respondents. Survey: “How is the class going?”. Survey: “How is the difficulty of the class?”. Survey: time spent per week. Last time I promise. Unitary notation . Writing numbers only using 1. 1 -> 1. 2- > 11 . 3 -> 111. (n times). is shorthand for writing n in unitary. . Family of games. Generalization of section 7.8 in the book (page 278). Definitions. Online Cryptography Course Dan Boneh. Goals. An . authenticated encryption . system (E,D) is a cipher where . As usual: E: K × M . × . N . ⟶ C. Authenticated Encryption and Cryptographic Network Protocols David Brumley dbrumley@cmu.edu Carnegie Mellon University Some Straw Men 2 TCP/IP (highly abstracted) packet Destination Machine TCP/IP Stack Authenticated Encryption and Cryptographic Network Protocols David Brumley dbrumley@cmu.edu Carnegie Mellon University Some Straw Men 2 TCP/IP (highly abstracted) packet Destination Machine TCP/IP Stack Cryptography Lecture 9 Arpita Patra © Arpita Patra Recall Attack on cpa -secure scheme from PRF >> cpa -security to cca -security Definitions- cma , scma , cmva , scmva >> MAC

Download Document

Here is the link to download the presentation.
"Building the Next Generation of Authenticated Encryption"The content belongs to its owner. You may download and print it for personal use, without modification, and keep all copyright notices. By downloading, you agree to these terms.