Description
In this talk, I will describe the family of authenticated encryption (with associated data) algorithms SCREAM and iSCREAM. They are based on Liskov et al.'s Tweakable Authenticated Encryption (TAE) mode with the new tweakable block ciphers Scream and iScream. The main desirable features of SCREAM and iSCREAM are:<br/> * A simple and regular design allowing excellent performances on a wide range of architectures, in particular if masking is implemented as a side-channel countermeasure;<br/> * Inheriting from TAE, security beyond the birthday bound, i.e. a 128-bit security guarantee with up to 2128 bits of data processed with the same 128-bit key;<br/> * Low overheads for the authentication mode (e.g. no extra cipher calls to generate masks);<br/> * Fully parallelisable authenticated encryption with minimal ciphertext length.<br/> In addition, iSCREAM allows compact implementations for combined encryption and decryption, by taking advantage of involutive components in its underlying cipher iScream.
Next sessions
-
Encryption homomorphe sans bruit à l'aide de groupes
Speaker : Pierre Guillot - Ravel Technologies (dispo Université de Strasbourg, IRMA)
Je vais rappeler les travaux de Nuida et Ostrovski sur l'utilisation des groupes pour l'élaboration de schémas cryptographiques homomorphes. Je vais présenter nos travaux qui fournissent des encodages à la fois plus efficaces et plus généraux, et qui déterminent exactement quels groupes peuvent être utilisés. Puis je vais discuter GRAFHEN, un protocole qui utilise ces idées. Je dirai juste[…]-
Cryptography
-