Abstract
We introduce the QARMAv2 family of tweakable block ciphers. It is a redesign of QARMA (from FSE 2017) to improve its security bounds and allow for longer tweaks, while keeping similar latency and area. The wider tweak input caters to both specific use cases and the design of modes of operation with higher security bounds. This is achieved through new key and tweak schedules, revised S-Box and linear layer choices, and a more comprehensive security analysis. QARMAv2 offers competitive latency and area in fully unrolled hardware implementations. Some of our results may be of independent interest. These include: new MILP models of certain classes of diffusion matrices; the comparative analysis of a full reflection cipher against an iterative half-cipher; our boomerang attack framework; and an improved approach to doubling the width of a block cipher.
Original language | English |
---|---|
Pages (from-to) | 25-73 |
Number of pages | 49 |
Journal | IACR Transactions on Symmetric Cryptology |
Volume | 2023 |
Issue number | 3 |
DOIs | |
State | Published - 19 Sep 2023 |
Bibliographical note
Publisher Copyright:© 2023, Ruhr-University of Bochum. All rights reserved.
Keywords
- Lightweight Cryptography
- Memory Encryption
- Memory Integrity
- Message Authentication Codes
- Reflection Ciphers
- Tweakable Block Ciphers
ASJC Scopus subject areas
- Software
- Computer Science Applications
- Computational Mathematics
- Applied Mathematics