Cryptology ePrint Archive: Report 2016/1121

Insecurity of RCB: Leakage-Resilient Authenticated Encryption

Farzaneh abed and Francesco Berti and Stefan Lucks

Abstract: Leakage-resilient cryptography is about security in the pres- ence of leakage from side-channels. In this paper, we present several issues of the RCB block cipher mode. Agrawal et al [2] proposed recently RCB as a leakage-resilient authenticated encryption (AE) scheme. Our main result is that RCB fails to provide authenticity, even in the absence of leakage.

Category / Keywords: authenticated encryption, leakage-resilience, block cipher, attack

Date: received 28 Nov 2016, last revised 1 Dec 2016

Contact author: farzaneh abed at uni-weimar de, francesco berti@uclouvain be

Available format(s): PDF | BibTeX Citation

Note: notions section is added to the road map.

Version: 20161201:081028 (All versions of this report)

Short URL: ia.cr/2016/1121

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]