Provable-Security Analysis of Authenticated Encryption Based on Lesamnta-LW in the Ideal Cipher Model
Summary :
Hirose, Kuwakado and Yoshida proposed a nonce-based authenticated encryption scheme Lae0 based on Lesamnta-LW in 2019. Lesamnta-LW is a block-cipher-based iterated hash function included in the ISO/IEC 29192-5 lightweight hash-function standard. They also showed that Lae0 satisfies both privacy and authenticity if the underlying block cipher is a pseudorandom permutation. Unfortunately, their result implies only about 64-bit security for instantiation with the dedicated block cipher of Lesamnta-LW. In this paper, we analyze the security of Lae0 in the ideal cipher model. Our result implies about 120-bit security for instantiation with the block cipher of Lesamnta-LW.
- Publication
- IEICE TRANSACTIONS on Information Vol.E104-D No.11 pp.1894-1901
- Publication Date
- 2021/11/01
- Publicized
- 2021/07/08
- Online ISSN
- 1745-1361
- DOI
- 10.1587/transinf.2021NGP0008
- Type of Manuscript
- Special Section PAPER (Special Section on Next-generation Security Applications and Practice)
- Category
Authors
Shoichi HIROSE
University of Fukui
Hidenori KUWAKADO
Kansai University
Hirotaka YOSHIDA
National Institute of Advanced Industrial Science and Technology
Keyword
Latest Issue
Copyrights notice of machine-translated contents
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Cite this
Copy
Shoichi HIROSE, Hidenori KUWAKADO, Hirotaka YOSHIDA, "Provable-Security Analysis of Authenticated Encryption Based on Lesamnta-LW in the Ideal Cipher Model" in IEICE TRANSACTIONS on Information,
vol. E104-D, no. 11, pp. 1894-1901, November 2021, doi: 10.1587/transinf.2021NGP0008.
Abstract: Hirose, Kuwakado and Yoshida proposed a nonce-based authenticated encryption scheme Lae0 based on Lesamnta-LW in 2019. Lesamnta-LW is a block-cipher-based iterated hash function included in the ISO/IEC 29192-5 lightweight hash-function standard. They also showed that Lae0 satisfies both privacy and authenticity if the underlying block cipher is a pseudorandom permutation. Unfortunately, their result implies only about 64-bit security for instantiation with the dedicated block cipher of Lesamnta-LW. In this paper, we analyze the security of Lae0 in the ideal cipher model. Our result implies about 120-bit security for instantiation with the block cipher of Lesamnta-LW.
URL: https://global.ieice.org/en_transactions/information/10.1587/transinf.2021NGP0008/_p
Copy
@ARTICLE{e104-d_11_1894,
author={Shoichi HIROSE, Hidenori KUWAKADO, Hirotaka YOSHIDA, },
journal={IEICE TRANSACTIONS on Information},
title={Provable-Security Analysis of Authenticated Encryption Based on Lesamnta-LW in the Ideal Cipher Model},
year={2021},
volume={E104-D},
number={11},
pages={1894-1901},
abstract={Hirose, Kuwakado and Yoshida proposed a nonce-based authenticated encryption scheme Lae0 based on Lesamnta-LW in 2019. Lesamnta-LW is a block-cipher-based iterated hash function included in the ISO/IEC 29192-5 lightweight hash-function standard. They also showed that Lae0 satisfies both privacy and authenticity if the underlying block cipher is a pseudorandom permutation. Unfortunately, their result implies only about 64-bit security for instantiation with the dedicated block cipher of Lesamnta-LW. In this paper, we analyze the security of Lae0 in the ideal cipher model. Our result implies about 120-bit security for instantiation with the block cipher of Lesamnta-LW.},
keywords={},
doi={10.1587/transinf.2021NGP0008},
ISSN={1745-1361},
month={November},}
Copy
TY - JOUR
TI - Provable-Security Analysis of Authenticated Encryption Based on Lesamnta-LW in the Ideal Cipher Model
T2 - IEICE TRANSACTIONS on Information
SP - 1894
EP - 1901
AU - Shoichi HIROSE
AU - Hidenori KUWAKADO
AU - Hirotaka YOSHIDA
PY - 2021
DO - 10.1587/transinf.2021NGP0008
JO - IEICE TRANSACTIONS on Information
SN - 1745-1361
VL - E104-D
IS - 11
JA - IEICE TRANSACTIONS on Information
Y1 - November 2021
AB - Hirose, Kuwakado and Yoshida proposed a nonce-based authenticated encryption scheme Lae0 based on Lesamnta-LW in 2019. Lesamnta-LW is a block-cipher-based iterated hash function included in the ISO/IEC 29192-5 lightweight hash-function standard. They also showed that Lae0 satisfies both privacy and authenticity if the underlying block cipher is a pseudorandom permutation. Unfortunately, their result implies only about 64-bit security for instantiation with the dedicated block cipher of Lesamnta-LW. In this paper, we analyze the security of Lae0 in the ideal cipher model. Our result implies about 120-bit security for instantiation with the block cipher of Lesamnta-LW.
ER -
English
