In this paper, we propose a new lemma on the indistinguishability of systems extending Maurer's theory of random systems. In addition to being of independent interest, it allows us to compactly rephrase Bellare and Rogaway's proof strategy in this framework, thus making the argument more abstract and hence easy to follow. As a result, this allows us to address the security of longer cascades as well as some errors in their paper. Our result implies that for blockciphers with smaller key space than message space (e.g. DES), longer cascades improve the security of the encryption up to a certain limit. This partially answers the open question mentioned above.
Category / Keywords: secret-key cryptography / cascade encryption, ideal cipher model, random system, indistinguishability Date: received 23 Feb 2009 Contact author: peter gazi at inf ethz ch Available format(s): Postscript (PS) | Compressed Postscript (PS.GZ) | PDF | BibTeX Citation Version: 20090224:103842 (All versions of this report) Short URL: ia.cr/2009/093 Discussion forum: Show discussion | Start new discussion