RAC: Robust Authenticated Ciphers

RAC：强大的认证密码

• 批准号: 411725237
• 负责人: Professor Dr. Stefan Lucks
• 金额: --
• 依托单位: Lehrstuhl für Mediensicherheit
• 依托单位国家: 德国
• 项目类别: Research Grants
• 财政年份: 2018
• 资助国家: 德国
• 起止时间: 2017-12-31 至 2022-12-31
• 项目状态: 已结题
• 来源: https://gepris.dfg.de/gepris/projekt/411725237?language=en
• 关键词: RAC; Robust; Authenticated; Ciphers

The lively evolution of the authenticated encryption did lead to many theoretically interesting and practically relevant results. The notion of "robustness" as the optimal security of a cryptosystem under unspecified usage conditions and usage errors has been established, but so far is considered very narrowly with a focus on "nonce misuse" (NM) and sometimes also on cases of the "release of unverified plaintexts" (RUP). The project considers a broader notion of robustness for authenticated encryption schemes. It includes forms of leakage-resilience (the optimal security of a cryptosystem in spite of side channel attacks), of key stretching (to achieve optimal security for a cryptosystem, when its keys are weak or partially compromised), and security beyond the AES-birthday-bound (128*2**64 bit). The main goals of the project are the following:1. The developement of new systems for authenticated encryption, which are both NM- and RUP-robust.2. An improved understanding of the notion of leakage-resilience, specifically with respect to leakage-resilient authenticated encryption. 3. First and fundamental results about a possible connection between the authenticated encryption of long plaintexts and implicit key stretching. 4. The search for new trade-offs regarding the developement of heavyweight software-efficient blockciphers. Such a block cipher must be highly efficient and shall, nevertheless, achieve security beyond the AES-birthday-bound.

认证加密的生动演变确实导致了许多理论上有趣和实际相关的结果。“鲁棒性”作为密码系统在未指定的使用条件和使用错误下的最佳安全性的概念已经建立，但到目前为止被认为是非常狭窄的，重点是“随机数滥用”（NM），有时也是“未经验证的明文发布”（RUP）的情况。该项目考虑了认证加密方案的鲁棒性的更广泛的概念。它包括泄漏弹性（尽管有侧信道攻击，密码系统的最佳安全性），密钥拉伸（当其密钥较弱或部分受损时，实现密码系统的最佳安全性）以及超过AES生日界限（128*2*64位）的安全性。该项目的主要目标如下：1.新的认证加密系统的开发，这是NM和RUP的健壮。更好地理解泄漏弹性的概念，特别是关于泄漏弹性的身份验证加密。3.关于长明文认证加密和隐式密钥拉伸之间可能存在联系的第一个和基本结果。4.关于开发重量级软件高效分组密码的新权衡的研究。这样的分组密码必须是高效的，并且应该实现超越AES生日界限的安全性。