Damaging, Simplifying, and Salvaging p-OMD
نویسندگان
چکیده
One of the submissions to the CAESAR competition for the design of a new authenticated encryption scheme is Offset Merkle-Damg̊ard (OMD). At FSE 2015, Reyhanitabar et al. introduced p-OMD, an improvement of OMD that processes the associated data almost for free. As an extra benefit, p-OMD was claimed to offer integrity against nonce-misusing adversaries, a property that OMD does not have. In this work we show how a nonce-misusing adversary can forge a message for the original p-OMD using only 3 queries (including the forgery). As a second contribution, we generalize and simplify p-OMD. This is done via the introduction of the authenticated encryption scheme Spoed. The most important difference is the usage of a generalized padding function GPAD, which neatly eliminates the need for a case distinction in the design specification and therewith allows for a significantly shorter description of the scheme and a better security bound. Finally, we introduce the authenticated encryption scheme Spoednic, a variant of Spoed providing authenticity against a nonce-misusing adversary at a modest price.
منابع مشابه
A new mutation in the RP1L1 gene in a patient with occult macular dystrophy associated with a depolarizing pattern of focal macular electroretinograms
PURPOSE To determine whether a mutation in the RP1-like protein 1 (RP1L1) gene is present in a Japanese patient with sporadic occult macular dystrophy (OMD) and to examine the characteristics of focal macular electroretinograms (ERGs) of the patient with genetically identified OMD. METHODS An individual with OMD underwent detailed ophthalmic clinical evaluations including focal macular ERGs. ...
متن کاملBoosting OMD for Almost Free Authentication of Associated Data
We propose pure OMD (p-OMD) as a new variant of the Offset Merkle-Damgård (OMD) authenticated encryption scheme. Our new scheme inherits all desirable security features of OMD while having a more compact structure and providing higher efficiency. The original OMD scheme, as submitted to the CAESAR competition, couples a single pass of a variant of the Merkle-Damgård (MD) iteration with the coun...
متن کاملThird, Fourth, and Sixth Cranial Nerve Palsies in Pituitary Apoplexy.
BACKGROUND Pituitary apoplexy (PA) often presents with acute headache and neuro-ophthalmic manifestations, including ocular motility dysfunction (OMD) from cranial nerve palsies (CNPs). Our goal was to describe the epidemiology and outcomes of OMD in a large, single-center series of patients with PA. METHODS We conducted a retrospective chart review of all patients with PA seen in our pituita...
متن کاملTechnical note: evaluation of acid detergent lignin, alkaline peroxide lignin, acid insoluble ash, and indigestible acid detergent fiber as internal markers for prediction of alfalfa, bromegrass, and prairie hay digestibility by beef steers.
Six steers (BW = 436 +/- 15 kg) were assigned randomly to alfalfa, bromegrass, or prairie hay diets in a replicated 3 x 3 Latin square design to evaluate the efficacy of different internal markers for estimating OM digestibility (OMD). Internal markers used to estimate OMD included ADL, alkaline peroxide lignin (APL), AIA, and indigestible ADF (IADF), which consisted of a 144-h in vitro incubat...
متن کاملPathologic Changes of Cone Photoreceptors in Eyes With Occult Macular Dystrophy.
PURPOSE Occult macular dystrophy (OMD) is an inherited retinal disease characterized by a progressive decrease of vision and appearance of normal fundus. To determine the pathologic features of OMD, we investigated the alternation of the photoreceptors using quantitative image analysis. METHODS We studied 22 eyes of 11 OMD patients. Three of them had a mutation (R45W) in RP1L1. The relative i...
متن کامل