Paper 2013/575

Equivalence between MAC and PRF for Blockcipher based Constructions

Nilanjan Datta and Mridul Nandi

Abstract

In FSE 2010, Nandi proved a sufficient condition of pseudo random function (PRF) for affine domain extensions (ADE), wide class of block cipher based domain extensions. This sufficient condition is satisfied by all known blockcipher based ADE constructions, however, it is not a characterization of PRF. In this paper we completely characterize the ADE and show that {\em message authentication code (MAC) and weakly collision resistant (WCR) are indeed equivalent to PRF}. Note that a PRF is trivially a MAC and WCR, however, the converse need not be true in general. So our result suggests that it would be sufficient to ensure resisting against weakly collision attack or the forging attack to construct a pseudo random function ADE. Unlike FSE 2010 paper, here we consider the {\em forced collisions of inputs of underlying blockciphers by incorporating the final outputs of a domain extension queried by an adaptive adversary}. This is the main reason why we are able to obtain a characterization of PRF. Our approach is a more general and hence might have other theoretical interest.

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Preprint. MINOR revision.
Keywords
Affine Domain ExtensionBlockcipherMACPRFWeak collision resistant
Contact author(s)
mridul nandi @ gmail com
History
2013-09-13: received
Short URL
https://ia.cr/2013/575
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2013/575,
      author = {Nilanjan Datta and Mridul Nandi},
      title = {Equivalence between MAC and PRF for Blockcipher based Constructions},
      howpublished = {Cryptology ePrint Archive, Paper 2013/575},
      year = {2013},
      note = {\url{https://eprint.iacr.org/2013/575}},
      url = {https://eprint.iacr.org/2013/575}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.