post quantum security of the cbc cfb ofb
play

Post-quantum Security of the CBC, CFB, OFB, Modes of Operation. - PowerPoint PPT Presentation

Nov 25, 2022 •15 likes •235 views

Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Post-quantum Security of the CBC, CFB, OFB, Modes of Operation. CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Mayuresh Anand, Ehsan Ebrahimi Targhi, Gelo Noel Tabia,

  1. Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Post-quantum Security of the CBC, CFB, OFB, Modes of Operation. CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Mayuresh Anand, Ehsan Ebrahimi Targhi, Gelo Noel Tabia, Results Dominique Unruh Tools Proof sketch: Quantum University of Tartu security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack February 4, 2016 Bibliography Thank You

  2. Table of contents Post-quantum Security of the CBC, CFB, Motivation 1 OFB, CTR, and XTS Modes of Operation. Results 2 Mayuresh Anand Tools 3 Motivation Results Proof sketch: Quantum security of CBC mode using qPRF 4 Tools Insecurity of CBC using standard secure PRF under Proof sketch: quantum attack Quantum security of CBC mode using qPRF Bibliography 5 Insecurity of CBC using standard secure PRF under quantum attack Thank You 6 Bibliography Thank You

  3. Motivation Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Being optimistic about the emergence of Quantum Mayuresh computer we want to evaluate the security of classical Anand crypto-systems under attack by quantum adversaries. Motivation We analyze the security of cipher modes of operation Results CBC, CFB, OFB, CTR, and XTS. Tools Proof sketch: These modes are chosen as per the recommendations in Quantum 2013 ENISA[2] 1 report on encryption algorithms. security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You 1 European Union Agency for Network and Information Security 2013.

  4. Results Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Mode of Classical Standard (quantum) IND-qCPA? Modes of Operation. operation IND-CPA? IND-CPA? (with PRF) (with qPRF) ECB no no no no Mayuresh Anand CBC yes yes no yes CFB yes yes no yes Motivation OFB yes yes yes yes Results CTR yes yes yes yes XTS unknown unknown “no in spirit” unknown Tools Proof sketch: Quantum Table: Summary of our results.“No in spirit” means that there is an security of CBC mode attack using superposition queries that does not formally violate using qPRF IND-qCPA. Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

  5. Standard Security [4] 2 Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You 2 Mark Zhandry, FOCS 2012.

  6. Quantum Security [4] 3 Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You 3 Mark Zhandry, FOCS 2012.

  7. IND-CPA Model Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

  8. IND-qCPA Model[1] 4 Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You 4 Dan Boneh and Mark Zhandry, CRYPTO 2013.

  9. Quantum security of CBC mode using qPRF Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

  10. Quantum security of CBC mode using qPRF Post-quantum We need to show that output of CBC mode using a qPRF Security of the CBC, CFB, is indistinguishable from truly random string. OFB, CTR, and XTS Define Enc i , H Modes of CBC ( M ). Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

  11. Quantum security of CBC mode using qPRF Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Use O2H lemma to show that the distinguishing probability by Thank You any quantum adversary is negligible.

  12. One way to hiding (O2H)[3] 5 Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You 5 Dominique Unruh, eprint 2013.

  13. Construction of Block cipher for CBC Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum BC is a standard secure PRF for any quantum adversary attack Bibliography given classical access to it and quantum access to H . Thank You BC has a collision such that ∀ x ∃ x ′ : x ⊕ ( k � 1) = x ′ .

  14. Proof Idea:Standard security of BC Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

  15. Proof Idea:Standard security of BC Post-quantum Idea: to replace E in BC by a random function. Security of the CBC, CFB, if we replace key H ( k ) of E by a random key k , we can OFB, CTR, and XTS use O2H lemma. Modes of we define adversary A O 2 H and block cipher BC ′ k Operation. w with E Mayuresh using random key. Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

  16. Proof Idea:Standard security of BC Post-quantum We have the games as in O2H lemma Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

  17. Proof Idea:Standard security of BC Post-quantum Game G0 is replaced by G2. Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

  18. Proof Idea:Standard security of BC We now replace E by a random function ˜ Post-quantum E Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

  19. Proof Idea:Standard security of BC Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand The only difference between the two games is when same query is queried again. Motivation Results By fundamental lemma of games we get the probability to Tools be negligible. Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

  20. Quantum attack on CBC mode using standard secure PRF Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Operation. Mayuresh Anand Motivation Results Tools Proof sketch: Quantum security of CBC mode using qPRF Insecurity of CBC using standard secure BC has similar structure as function f and hence this PRF under quantum attack weakness can be exploited to get key k . Bibliography Thank You

  21. Post-quantum Security of the CBC, CFB, OFB, CTR, and XTS Modes of Dan Boneh and Mark Zhandry. Operation. Secure signatures and chosen ciphertext security in a quantum computing world. https://eprint.iacr.org/2013/088 , 2013. Mayuresh The definition of IND-qCPA only appear in this eprint, not in the conference version. Anand (ENISA). Algorithms, key sizes and parameters report - 2013 recommendations. Motivation https://www.enisa.europa.eu/activities/identity-and-trust/library/deliverables/algorithms-key-sizes-and-parameters-report , Results October 2013. Tools Dominique Unruh. Revocable quantum timed-release encryption. Proof sketch: IACR Cryptology ePrint Archive , 2013:606, 2013. Quantum security of Mark Zhandry. CBC mode How to construct quantum random functions. using qPRF In 53rd Annual IEEE Symposium on Foundations of Computer Science, FOCS 2012, New Brunswick, NJ, USA, October 20-23, 2012 , pages 679–687. IEEE Computer Society, 2012. Insecurity of CBC using standard secure PRF under quantum attack Bibliography Thank You

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

The Picnic Post-Quantum Signature Scheme and its Security Analysis Itai Dinur Ben-Gurion

The Picnic Post-Quantum Signature Scheme and its Security Analysis Itai Dinur Ben-Gurion

The Picnic Post-Quantum Signature Scheme and its Security Analysis Itai Dinur Ben-Gurion University Credit for some slides: Melissa Chase and Picnic team Post-Quantum Cryptography Large-scale quantum computer could efficiently factor large

533 views • 34 slides
The Quantum Risk & Post-Quantum Crypto JP Aumasson The Quantum Risk & Post-Quantum

The Quantum Risk & Post-Quantum Crypto JP Aumasson The Quantum Risk & Post-Quantum

The Quantum Risk & Post-Quantum Crypto JP Aumasson The Quantum Risk & Post-Quantum Crypto JP Aumasson uantum /me 15 years experience in applied cryptography (PhD, industry, consulting) Designed widely used algorithms Author of the

816 views • 52 slides
Threshold Ring Signatures: New Security Definitions and Post-Quantum Security Abida Haque ,

Threshold Ring Signatures: New Security Definitions and Post-Quantum Security Abida Haque ,

Problem Description Current State of the Art Our Contribution Our Scheme Summary References Threshold Ring Signatures: New Security Definitions and Post-Quantum Security Abida Haque , Alessandra Scafuro North Carolina State University May

736 views • 61 slides
Quantum Algorithms Tutorial Ronald de Wolf 1/ 37 Post-quantum cryptography I Quantum computers

Quantum Algorithms Tutorial Ronald de Wolf 1/ 37 Post-quantum cryptography I Quantum computers

Quantum Algorithms Tutorial Ronald de Wolf 1/ 37 Post-quantum cryptography I Quantum computers can break public-key cryptography that is based on assuming hardness of factoring, discrete logs, and a few other problems I Post-quantum

2.98k views • 37 slides
From linear algebra to post-quantum cryptography Dr. Ir. Fr e Vercauteren

From linear algebra to post-quantum cryptography Dr. Ir. Fr e Vercauteren

Quantum computers and factoring Learning with errors Cryptography from LWE From linear algebra to post-quantum cryptography Dr. Ir. Fr e Vercauteren frederik.vercauteren@gmail.com Open Security Research (China) ESAT/COSIC - KU Leuven

1.34k views • 70 slides
(post-)quantum security of symmetric key schemes NTT Secure Platform Laboratories (and Nagoya

(post-)quantum security of symmetric key schemes NTT Secure Platform Laboratories (and Nagoya

Towards a better understanding of (post-)quantum security of symmetric key schemes NTT Secure Platform Laboratories (and Nagoya University) Akinori Hosoyamada @ASK 2019 (2019.12.13) Introduction Quantum Attacks against Symmetric

738 views • 56 slides
Post-Quantum Protecting the worlds information Cyber Security Issues to be considered when

Post-Quantum Protecting the worlds information Cyber Security Issues to be considered when

Post-Quantum Protecting the worlds information Cyber Security Issues to be considered when Implementing Fintech Solutions Contents Four Major Threats When Communicating Online

735 views • 26 slides
Saturnin A suite of lightweight symmetric algorithms for post-quantum security Anne Canteaut 1

Saturnin A suite of lightweight symmetric algorithms for post-quantum security Anne Canteaut 1

Saturnin A suite of lightweight symmetric algorithms for post-quantum security Anne Canteaut 1 Sbastien Duval 2 Gatan Leurent 1 Mara Naya-Plasencia 1 Lo Perrin 1 Thomas Pornin 3 Andr Schrottenloher 1 1 Inria, France 2 UCL Crypto Group,

750 views • 26 slides
Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for

Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for

Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for 2020 Tim Gneysu Hardware Security Group Horst Grtz Institute for IT-Security, Bochum 1/24/2013 Outline Introduction Alternative Public-Key

735 views • 55 slides
SW/HW Codesign of the Post-Quantum Cryptography Algorithm NTRUEncrypt Using HLS and RTL Design

SW/HW Codesign of the Post-Quantum Cryptography Algorithm NTRUEncrypt Using HLS and RTL Design

SW/HW Codesign of the Post-Quantum Cryptography Algorithm NTRUEncrypt Using HLS and RTL Design Methodologies Farnoud Farahmand, Duc Tri Nguyen, Viet B. Dang*, Ahmed Ferozpuri and Kris Gaj George Mason University Post st-Quantum Quantum

441 views • 14 slides
Post Quantum Cryptography Kenny Paterson Information Security Group @kennyog Lifetime of a Hash

Post Quantum Cryptography Kenny Paterson Information Security Group @kennyog Lifetime of a Hash

Post Quantum Cryptography Kenny Paterson Information Security Group @kennyog Lifetime of a Hash Algorithm SHA-1 1995: SHA-1 published (NIST, tweak of 1993 SHA-0 design) 1990s: (various attacks on SHA-0, validating switch to SHA-1)

345 views • 31 slides
Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About

Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About

Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About Cryptographic Standards History of post-quantum cryptography 2003 Daniel J. Bernstein introduces term Post-quantum cryptography. PQCrypto 2006:

623 views • 23 slides
Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why

Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why

R. van der Gaag, D. Weller Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why think about post-quantum cryptography W. Buchanan et. al concluded Gate-based quantum computers pose a significant

349 views • 18 slides
Post-Quantum Cryptography Dr. Ruben Niederhagen, February 8, 2016 Introduction Quantum Computers

Post-Quantum Cryptography Dr. Ruben Niederhagen, February 8, 2016 Introduction Quantum Computers

Post-Quantum Cryptography Dr. Ruben Niederhagen, February 8, 2016 Introduction Quantum Computers Using quantum states for computation: Introduced in 1985 by David Deutsch [3]. Operate on qubits using gates that perform reversible

1.69k views • 157 slides
OUROBOROS-R, an IND-CPA KEM based on Rank Metric NIST First Post-Quantum Cryptography

OUROBOROS-R, an IND-CPA KEM based on Rank Metric NIST First Post-Quantum Cryptography

Presentation of the rank metric Description of the scheme Security and parameters OUROBOROS-R, an IND-CPA KEM based on Rank Metric NIST First Post-Quantum Cryptography Standardization Conference Carlos AguilarMelchor 2 Nicolas Aragon 1 Slim

157 views • 15 slides
Post-quantum cryptography Tanja Lange 07 October 2015 SPACE 2015 In the long term, all

Post-quantum cryptography Tanja Lange 07 October 2015 SPACE 2015 In the long term, all

Post-quantum cryptography Tanja Lange 07 October 2015 SPACE 2015 In the long term, all encryption needs to be post-quantum Mark Ketchen, IBM Research, 2012, on quantum computing: Were actually doing things that are making us think like,

901 views • 41 slides
Smoothed Analysis of ICP David Arthur Sergei Vassilvitskii (Stanford University) Matching

Smoothed Analysis of ICP David Arthur Sergei Vassilvitskii (Stanford University) Matching

Smoothed Analysis of ICP David Arthur Sergei Vassilvitskii (Stanford University) Matching Datasets Problem: Given two point sets A and B, translate A to best match B. ICP: Iterative Closest Point Problem: Given two point sets A and B,

569 views • 38 slides
#2/2 Life in the Spirit! The Gifts of the Spirit Spirit! Experiencing the Fullness of

#2/2 Life in the Spirit! The Gifts of the Spirit Spirit! Experiencing the Fullness of

Life in the #2/2 Life in the Spirit! The Gifts of the Spirit Spirit! Experiencing the Fullness of Christ 14) The Gifts of the Spirit #2 Session #14 Paul J. Bucknell Life Section 3: Christian Service in the Spirit! The

325 views • 13 slides
Turing degrees of hyperjumps Stephen G. Simpson Department of Mathematics Vanderbilt University

Turing degrees of hyperjumps Stephen G. Simpson Department of Mathematics Vanderbilt University

Turing degrees of hyperjumps Stephen G. Simpson Department of Mathematics Vanderbilt University http://www.math.psu.edu/simpson sgslogic@gmail.com (Joint work with Hayden Jananthan) Higher Recursion Theory National University of Singapore

385 views • 12 slides
Quantum Unique Ergodicity Introduction 1 Planar Exercise Lior Silberman 1 2 Classical and

Quantum Unique Ergodicity Introduction 1 Planar Exercise Lior Silberman 1 2 Classical and

QUE Lior Silberman The University of British Columbia Quantum Unique Ergodicity Introduction 1 Planar Exercise Lior Silberman 1 2 Classical and quantum mechanics The University of British Columbia 3 Arithmetic eigenfunctions 4 Without

333 views • 16 slides
Continuous-time Markov Chains Gonzalo Mateos Dept. of ECE and Goergen Institute for Data Science

Continuous-time Markov Chains Gonzalo Mateos Dept. of ECE and Goergen Institute for Data Science

Continuous-time Markov Chains Gonzalo Mateos Dept. of ECE and Goergen Institute for Data Science University of Rochester gmateosb@ece.rochester.edu http://www.ece.rochester.edu/~gmateosb/ October 31, 2016 Introduction to Random Processes

868 views • 51 slides
Roger Colbeck (University of York) Explain what device-independence means Motivate its use

Roger Colbeck (University of York) Explain what device-independence means Motivate its use

Roger Colbeck (University of York) Explain what device-independence means Motivate its use Discuss the main ideas focussing on QKD Discuss what it means for a protocol to be secure Drawbacks of device-independence Related

847 views • 83 slides
When Embedded Systems Attack Therac-25 Embedded systems can fail for a variety of reasons

When Embedded Systems Attack Therac-25 Embedded systems can fail for a variety of reasons

1 2 When Embedded Systems Attack Therac-25 Embedded systems can fail for a variety of reasons The Therac-25 was a medical radiation therapy machine developed in the mid-1980s. Electrical problems Mechanical problems

65 views • 3 slides
Multivariable Zeta Functions Je ff Lagarias , University of Michigan Ann Arbor, MI, USA

Multivariable Zeta Functions Je ff Lagarias , University of Michigan Ann Arbor, MI, USA

Multivariable Zeta Functions Je ff Lagarias , University of Michigan Ann Arbor, MI, USA International Conference in Number Theory and Physics (IMPA, Rio de Janeiro) (June 23, 2015) Topics Covered Part I. Lerch Zeta Function and Lerch

731 views • 52 slides

More recommend