JAMBU Lightweight Authenticated Encryption Mode and AES-JAMBU
نویسندگان
چکیده
In this paper, we propose a lightweight authenticated encryption mode JAMBU. It only needs n-bit extra register for a block cipher with 2n-bit block size. It achieves n-bit authentication security when 2 bits are processed under a single key. When nonce (IV) is reused, the encryption security is similar to that of the CFB mode while the message authentication maintains strong security. We instantiate JAMBU with AES-128 as the underlying block cipher to construct an authenticated cipher AES-JAMBU. There are more lightweight authenticated ciphers can be constructed by applying JAMBU with lightweight block ciphers such as SIMON. To the best of our knowledge, JAMBU is the most lightweight authentication mode which provides n-bit authentication security.
منابع مشابه
Security Proof of JAMBU under Nonce Respecting and Nonce Misuse Cases
JAMBU is an AEAD mode of operation which entered the third round of CAESAR competition. However, it does not have a security proof like other modes of operation do, and there was a cryptanalysis result that has overthrown the security claim under nonce misuse case by the designers. In this paper, we complement the shortage of the scheme by giving security proofs of JAMBU both under nonce respec...
متن کاملCryptanalysis of JAMBU
In this article, we analyse the security of the authenticated encryption mode JAMBU, a submission to the CAESAR competition that remains currently unbroken. We show that the security claims of this candidate regarding its nonce-misuse resistance can be broken. More precisely, we explain a technique to guess in advance a ciphertext block corresponding to a plaintext that has never been queried b...
متن کاملComb to Pipeline: Fast Software Encryption Revisited
AES-NI, or Advanced Encryption Standard New Instructions, is an extension of the x86 architecture proposed by Intel in 2008. With a pipelined implementation utilizing AES-NI, parallelizable modes such as AES-CTR become extremely efficient. However, out of the four non-trivial NIST-recommended encryption modes, three are inherently sequential: CBC, CFB, and OFB. This inhibits the advantage of us...
متن کاملALE: AES-Based Lightweight Authenticated Encryption
In this paper, we propose a new Authenticated Lightweight Encryption algorithm coined ALE. The basic operation of ALE is the AES round transformation and the AES-128 key schedule. ALE is an online single-pass authenticated encryption algorithm that supports optional associated data. Its security relies on using nonces. We provide an optimized low-area implementation of ALE in ASIC hardware and ...
متن کاملGuava (Psidium guajava) | Feedipedia
Guava, common guava, yellow guava [English]; goyavier, goyave [French]; goiaba, guaiaba, guaiava, goiabeira, goiabeiro, araça-goiaba, araça-guaçu [Portuguese]; guayaba, guayabo, guayaba manzana [Spanish]; koejawel [Afrikaans]; guave [Dutch]; Echte Guave [German]; gweba [Hausa]; jambu batu, jambu biji [Indonesian]; guaiava [Italian]; jambu kluthuk [Javanese]; amapera [Kinyarwanda]; mpera [Kiswah...
متن کامل