A Highly Secure MAC from Tweakable Blockciphers with Support for Short Tweaks

Naito, Yusuke

doi:10.1007/978-3-030-21548-4_32

Yusuke Naito¹⁶

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 11547))

Included in the following conference series:

Australasian Conference on Information Security and Privacy

1103 Accesses

Abstract

Existing tweakable blockcipher (TBC)-based message authentication codes (MACs), in order to achieve full \(b\)-bit pseudo-random function (PRF) security, require a TBC with \(t\)-bit tweak and \(b\)-bit input block spaces such that \(b\le t\). An open problem from the previous works is to design a TBC-based MAC achieving the \(b\)-bit security even when \(b> t\). We present \(\mathsf {PMAC3}\), a TBC-based MAC achieving the \(b\)-bit security as long as \(b/2 \le t\).

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 79.99; Price excludes VAT (USA)

Softcover Book: USD 99.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

1.
When security depends on both the numbers of queries and message lengths, the security level is measured by the number of blockcipher calls performed in a MAC. When it depends on only the number of queries, the security level is measured by the number of queries.
2.
If \({I}(M^\alpha , M^\beta ) = \{I_1,i_2\}\), \({I}(M^\alpha , M^\gamma ) = \{I_3,i_4\}\) and \(i_1 = i_3 < i_2 = i_4\), then by \(M^\beta \ne M^\gamma \), \(i_1 \in {I}(M^\beta , M^\gamma )\) or \(i_2 \in {I}(M^\beta , M^\gamma )\). Thus, \(C_{I_1}^\beta \), \(C_{i_2}^\beta \) and \(C_{i_3}^\gamma \) are distinct or independent, or \(C_{i_1}^\beta \), \(C_{i_2}^\beta \) and \(C_{i_4}^\gamma \) are distinct or independent. Otherwise, there exist \(i_1,i_2 \in {I}(M^\alpha , M^\beta )\) and \(i_3, i_4 \in {I}(M^\alpha , M^\gamma )\) such that at least three of \((i_1, i_2, i_3,i_4)\) are distinct, thus at least three of \((C_{i_1}^\beta , C_{i_2}^\beta , C_{i_3}^\gamma , C_{i_4}^\gamma )\) are independent.

References

Beierle, C., et al.: The SKINNY family of block ciphers and its low-latency variant MANTIS. In: Robshaw, M., Katz, J. (eds.) CRYPTO 2016. LNCS, vol. 9815, pp. 123–153. Springer, Heidelberg (2016). https://doi.org/10.1007/978-3-662-53008-5_5
Chapter Google Scholar
Bellare, M., Rogaway, P.: Code-based game-playing proofs and the security of triple encryption. IACR Cryptology ePrint Archive 2004/331 (2004)
Google Scholar
Bhargavan, K., Leurent, G.: On the practical (in-)security of 64-bit block ciphers: collision attacks on HTTP over TLS and OpenVPN. In: CCS 2016, pp. 456–467. ACM (2016)
Google Scholar
Black, J., Rogaway, P.: A block-cipher mode of operation for parallelizable message authentication. In: Knudsen, L.R. (ed.) EUROCRYPT 2002. LNCS, vol. 2332, pp. 384–397. Springer, Heidelberg (2002). https://doi.org/10.1007/3-540-46035-7_25
Chapter Google Scholar
Datta, N., Dutta, A., Nandi, M., Paul, G., Zhang, L.: Single key variant of PMAC\(\_\)Plus. IACR Trans. Symmetric Cryptol. 2017(4), 268–305 (2017)
Google Scholar
Iwata, T., Kurosawa, K.: OMAC: one-key CBC MAC. In: Johansson, T. (ed.) FSE 2003. LNCS, vol. 2887, pp. 129–153. Springer, Heidelberg (2003). https://doi.org/10.1007/978-3-540-39887-5_11
Chapter Google Scholar
Iwata, T., Minematsu, K.: Stronger security variants of GCM-SIV. IACR Trans. Symmetric Cryptol. 2016(1), 134–157 (2016)
Google Scholar
Iwata, T., Minematsu, K., Peyrin, T., Seurin, Y.: ZMAC: a fast tweakable block cipher mode for highly secure message authentication. In: Katz, J., Shacham, H. (eds.) CRYPTO 2017. LNCS, vol. 10403, pp. 34–65. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-63697-9_2
Chapter Google Scholar
Jean, J., Nikolić, I., Peyrin, T.: Tweaks and keys for block ciphers: the TWEAKEY framework. In: Sarkar, P., Iwata, T. (eds.) ASIACRYPT 2014. LNCS, vol. 8874, pp. 274–288. Springer, Heidelberg (2014). https://doi.org/10.1007/978-3-662-45608-8_15
Chapter Google Scholar
JTC1: ISO/IEC 9797–1:1999 Information technology—Security techniques—Message Authentication Codes (MACs)—Part 1: mechanisms using a block cipher (1999)
Google Scholar
Liskov, M., Rivest, R.L., Wagner, D.: Tweakable block ciphers. In: Yung, M. (ed.) CRYPTO 2002. LNCS, vol. 2442, pp. 31–46. Springer, Heidelberg (2002). https://doi.org/10.1007/3-540-45708-9_3
Chapter Google Scholar
List, E., Nandi, M.: Revisiting Full-PRF-Secure PMAC and using it for beyond-birthday authenticated encryption. In: Handschuh, H. (ed.) CT-RSA 2017. LNCS, vol. 10159, pp. 258–274. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-52153-4_15
Chapter Google Scholar
List, E., Nandi, M.: ZMAC+ - an efficient variable-output-length variant of ZMAC. IACR Trans. Symmetric Cryptol. 2017(4), 306–325 (2017)
Google Scholar
Minematsu, K., Iwata, T.: Tweak-length extension for tweakable blockciphers. In: Groth, J. (ed.) IMACC 2015. LNCS, vol. 9496, pp. 77–93. Springer, Cham (2015). https://doi.org/10.1007/978-3-319-27239-9_5
Chapter Google Scholar
Minematsu, K., Iwata, T.: Cryptanalysis of PMACx, PMAC2x, and SIVx. IACR Trans. Symmetric Cryptol. 2017(2), 162–176 (2017)
Google Scholar
Naito, Y.: Full PRF-secure message authentication code based on tweakable block cipher. In: Au, M.-H., Miyaji, A. (eds.) ProvSec 2015. LNCS, vol. 9451, pp. 167–182. Springer, Cham (2015). https://doi.org/10.1007/978-3-319-26059-4_9
Chapter Google Scholar
Naito, Y.: Blockcipher-based MACs: beyond the birthday bound without message length. In: Takagi, T., Peyrin, T. (eds.) ASIACRYPT 2017. LNCS, vol. 10626, pp. 446–470. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-70700-6_16
Chapter Google Scholar
Rogaway, P.: Efficient instantiations of tweakable blockciphers and refinements to modes OCB and PMAC. In: Lee, P.J. (ed.) ASIACRYPT 2004. LNCS, vol. 3329, pp. 16–31. Springer, Heidelberg (2004). https://doi.org/10.1007/978-3-540-30539-2_2
Chapter Google Scholar
Yasuda, K.: The sum of CBC MACs is a secure PRF. In: Pieprzyk, J. (ed.) CT-RSA 2010. LNCS, vol. 5985, pp. 366–381. Springer, Heidelberg (2010). https://doi.org/10.1007/978-3-642-11925-5_25
Chapter Google Scholar
Yasuda, K.: A new variant of PMAC: beyond the birthday bound. In: Rogaway, P. (ed.) CRYPTO 2011. LNCS, vol. 6841, pp. 596–609. Springer, Heidelberg (2011). https://doi.org/10.1007/978-3-642-22792-9_34
Chapter Google Scholar

Download references

Author information

Authors and Affiliations

Mitsubishi Electric Corporation, Kamakura, Kanagawa, Japan
Yusuke Naito

Authors

Yusuke Naito
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Yusuke Naito .

Editor information

Editors and Affiliations

Massey University, Palmerston North, New Zealand
Julian Jang-Jaccard
University of Wollongong, Wollongong, NSW, Australia
Fuchun Guo

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Naito, Y. (2019). A Highly Secure MAC from Tweakable Blockciphers with Support for Short Tweaks. In: Jang-Jaccard, J., Guo, F. (eds) Information Security and Privacy. ACISP 2019. Lecture Notes in Computer Science(), vol 11547. Springer, Cham. https://doi.org/10.1007/978-3-030-21548-4_32

Download citation

DOI: https://doi.org/10.1007/978-3-030-21548-4_32
Published: 30 May 2019
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-21547-7
Online ISBN: 978-3-030-21548-4
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics