INT-RUP Security of SAEB and TinyJAMBU

Nilanjan Datta, Avijit Dutta, Shibam Ghosh

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

The INT-RUP security of an authenticated encryption (AE) scheme is a well studied problem which deals with the integrity security of an AE scheme in the setting of releasing unverified plaintext model. Popular INT-RUP secure constructions either require a large state (e.g. GCM-RUP, LOCUS, Oribatida) or employ a two-pass mode (e.g. MONDAE) that does not allow on-the-fly data processing. This motivates us to turn our attention to feedback type AE constructions that allow small state implementation as well as on-the-fly computation capability. In CT-RSA 2016, Chakraborti et al. have demonstrated a generic INT-RUP attack on rate-1 block cipher based feedback type AE schemes. Their results inspire us to study about feedback type AE constructions at a reduced rate. In this paper, we consider two such recent designs, SAEB and TinyJAMBU and we analyze their integrity security in the setting of releasing unverified plaintext model. We found an INT-RUP attack on SAEB with roughly 2 32 decryption queries. However, the concrete analysis shows that if we reduce its rate to 32 bits, SAEB achieves the desired INT-RUP security bound without any additional overhead. Moreover, we have also analyzed TinyJAMBU, one of the finalists of the NIST LwC, and found it to be INT-RUP secure. To the best of our knowledge, this is the first work reporting the INT-RUP security analysis of the block cipher based single state, single pass, on-the-fly, inverse-free authenticated ciphers.

Original languageEnglish
Title of host publicationProgress in Cryptology – INDOCRYPT 2022 - 23rd International Conference on Cryptology in India, 2022, Proceedings
EditorsTakanori Isobe, Santanu Sarkar
PublisherSpringer Science and Business Media Deutschland GmbH
Pages146-170
Number of pages25
ISBN (Print)9783031229114
DOIs
StatePublished - 2022
Event23rd International Conference on Cryptology, INDOCRYPT 2022 - Kolkata, India
Duration: 11 Dec 202214 Dec 2022

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume13774 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference23rd International Conference on Cryptology, INDOCRYPT 2022
Country/TerritoryIndia
CityKolkata
Period11/12/2214/12/22

Bibliographical note

Publisher Copyright:
© 2022, The Author(s), under exclusive license to Springer Nature Switzerland AG.

ASJC Scopus subject areas

  • Theoretical Computer Science
  • General Computer Science

Fingerprint

Dive into the research topics of 'INT-RUP Security of SAEB and TinyJAMBU'. Together they form a unique fingerprint.

Cite this