Paper 2016/640

Universal Forgery and Key Recovery Attacks on ELmD Authenticated Encryption Algorithm

Asli Bay, Oguzhan Ersoy, and Ferhat Karakoç

Abstract

In this paper, we provide a security analysis of ELmD: a block cipher based Encrypt-Linear-mix-Decrypt authentication mode. As being one of the second-round CAESAR candidate, it is claimed to provide misuse resistant against forgeries and security against block-wise adaptive adversaries as well as 128-bit security against key recovery attacks. We scrutinize ElmD in such a way that we provide universal forgery attacks as well as key recovery attacks. First, based on the collision attacks on similar structures such as Marble, AEZ, and COPA, we present universal forgery attacks. Second, by exploiting the structure of ELmD, we acquire ability to query to the block cipher used in ELmD. Finally, for one of the proposed versions of ELmD, we mount key recovery attacks reducing the effective key strength by more than 60 bits.

Metadata
Available format(s)
PDF
Publication info
Preprint. MINOR revision.
Keywords
Authenticated encryptionCAESARELmDForgery attackKey recovery
Contact author(s)
oguzhan ersoy @ tubitak gov tr
History
2016-06-21: received
Short URL
https://ia.cr/2016/640
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2016/640,
      author = {Asli Bay and Oguzhan Ersoy and Ferhat Karakoç},
      title = {Universal Forgery and Key Recovery Attacks on ELmD Authenticated Encryption Algorithm},
      howpublished = {Cryptology ePrint Archive, Paper 2016/640},
      year = {2016},
      note = {\url{https://eprint.iacr.org/2016/640}},
      url = {https://eprint.iacr.org/2016/640}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.