Paper 2009/093

Cascade Encryption Revisited

Peter Gazi and Ueli Maurer

Abstract

The security of cascade blockcipher encryption is an important and well-studied problem in theoretical cryptography with practical implications. It is well-known that double encryption improves the security only marginally, leaving triple encryption as the shortest reasonable cascade. In a recent paper, Bellare and Rogaway showed that in the ideal cipher model, triple encryption is significantly more secure than single and double encryption, stating the security of longer cascades as an open question. In this paper, we propose a new lemma on the indistinguishability of systems extending Maurer's theory of random systems. In addition to being of independent interest, it allows us to compactly rephrase Bellare and Rogaway's proof strategy in this framework, thus making the argument more abstract and hence easy to follow. As a result, this allows us to address the security of longer cascades as well as some errors in their paper. Our result implies that for blockciphers with smaller key space than message space (e.g. DES), longer cascades improve the security of the encryption up to a certain limit. This partially answers the open question mentioned above.

Metadata
Available format(s)
PDF PS
Category
Secret-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
cascade encryptionideal cipher modelrandom systemindistinguishability
Contact author(s)
peter gazi @ inf ethz ch
History
2009-02-24: received
Short URL
https://ia.cr/2009/093
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2009/093,
      author = {Peter Gazi and Ueli Maurer},
      title = {Cascade Encryption Revisited},
      howpublished = {Cryptology {ePrint} Archive, Paper 2009/093},
      year = {2009},
      url = {https://eprint.iacr.org/2009/093}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.