Cryptology ePrint Archive: Report 2017/767

Quantum Key-Recovery on full AEZ

Xavier Bonnetain

Abstract: AEZ is an authenticated encryption algorithm, submitted to the CAESAR competition. It has been selected for the third round of the competition. While some classical analysis on the algorithm have been published, the cost of these attacks is beyond the security claimed by the designers. In this paper, we show that all the versions of AEZ are completely broken against a quantum adversary. For this, we propose a generalisation of Simon's algorithm for quantum period finding that allows to build efficient attacks.

Category / Keywords: secret-key cryptography / block ciphers, quantum cryptography, authenticated encryption, CAESAR competition, AEZ, Simon's algorithm

Original Publication (in the same form): SAC 2017

Date: received 8 Aug 2017

Contact author: xavier bonnetain at inria fr

Available format(s): PDF | BibTeX Citation

Version: 20170808:183829 (All versions of this report)

Short URL:

Discussion forum: Show discussion | Start new discussion

[ Cryptology ePrint archive ]