Cryptology ePrint Archive: Report 2013/695

AEGIS: A Fast Authenticated Encryption Algorithm

Hongjun Wu and Bart Preneel

Abstract: This paper introduces a dedicated authenticated encryption algorithm AEGIS; AEGIS allows for the protection of associated data which makes it very suitable for protecting network packets. AEGIS-128L uses eight AES round functions to process a 32-byte message block (one step). AEGIS-128 uses five AES round functions to process a 16-byte message block (one step); AES-256 uses six AES round functions. The security analysis shows that these algorithms offer a high level of security. On the Intel Sandy Bridge Core i5 processor, the speed of AEGIS-128L, AEGIS-128 and AEGIS-256 is around 0.48, 0.66 and 0.7 clock cycles/byte (cpb) for 4096-byte messages, respectively. This is substantially faster than the AES CCM, GCM and OCB modes.

Category / Keywords: secret-key cryptography / Authenticated encryption, AEGIS, AES-NI

Original Publication (with major differences): Selected Areas in Cryptography -- SAC 2013

Date: received 25 Oct 2013

Contact author: hongjunwu at gmail com

Available format(s): PDF | BibTeX Citation

Version: 20131028:200759 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]