Collision Attacks against AEZ-PRF for Authenticated Encryption AEZ 被引量：2

Collision Attacks against AEZ-PRF for Authenticated Encryption AEZ

下载PDF

导出

摘要 AEZ is an AES-based authenticated encryption submitted to the ongoing CAESAR competition and was presented at Eurocrypt2015 with AEZ v3. There are three models for AEZ, AEZ-core, AEZ-tiny and AEZ-prf. In this paper, we consider the security of AEZprf for AEZ v4.2, the latest version of AEZ.Our major finding is a collision of any 256-bit associated data for AES-prf. Then we launch collision attacks in a quantum setting and a classical setting respectively under different assumptions. In the quantum setting, by Simon's quantum algorithm, we amount a forgery with O(n) quantum superposition queries and an overwhelming probability close to 1.In the classical setting, one with the key of AEZ-prf can also construct the forgeries. Our results show that the AEZ-prf models of AEZ v4.2 is not secure in both the quantum setting and classical world. Furthermore, our results can also be applied to AEZ v3, which has been published on Eurocrypt 2015. As far as we know, no cryptanalysis of AEZ v4.2 has been published so far. AEZ is an AES-based authenticated encryption submitted to the ongoing CAESAR competition and was presented at Eurocrypt 2015 with AEZ v3. There are three models for AEZ, AEZ-core, AEZ-tiny and AEZ-prf. In this paper, we consider the security of AEZ- prf for AEZ v4.2, the latest version of AEZ. Our major finding is a collision of any 256-bit associated data for AES-prf. Then we launch collision attacks in a quantum setting and a classical setting respectively under different assumptions. In the quantum setting, by Si- mon＇s quantum algorithm, we amount a forg- ery with O（n） quantum superposition queries and an overwhelming probability close to 1. In the classical setting, one with the key of AEZ-prf can also construct the forgeries. Our results show that the AEZ-prf models of AEZ v4.2 is not secure in both the quantum setting and classical world. Furthermore, our results can also be applied to AEZ v3, which has been published on Eurocrypt 2015. As far as we know, no cryptanalysis of AEZ v4.2 has been published so far.

作者 Tairong Shi Chenhui Jin Jie Guan

机构地区 Information Science and Technology Institute

出处《China Communications》 SCIE CSCD 2018年第2期46-53,共8页 中国通信（英文版）

基金 supported by the National Natural Science Foundation of China (Grant No.61572516, No.61272041 and No.61272488)

关键词 CAESAR competition authen-ticated encryption AEZ collision attacks quantum attacks 碰撞攻击加密 AES prf 联系数古典 mon 量算法

分类号 TN918.4 [电子电信—通信与信息系统]

引文网络
相关文献

同被引文献9

1罗宜元,闫海伦,王磊,胡红钢,来学嘉.分组密码结构抗Simon量子算法攻击研究[J].密码学报,2019,6(5):561-573. 被引量：11
2Xiaoyang DONG,Xiaoyun WANG.Quantum key-recovery attack on Feistel structures[J].Science China(Information Sciences),2018,61(10):236-242. 被引量：23
3Xiaoyang DONG,Zheng LI,Xiaoyun WANG.Quantum cryptanalysis on some generalized Feistel schemes[J].Science China(Information Sciences),2019,62(2):176-187. 被引量：18
4眭晗,吴文玲.后量子对称密码的研究现状与发展趋势[J].电子与信息学报,2020,42(2):287-294. 被引量：10
5梁敏,罗宜元,刘凤梅.抗量子计算对称密码研究进展概述[J].密码学报,2021,8(6):925-947. 被引量：10
6李艳俊,林昊,易子晗,谢惠琴.MIBS算法量子密码分析[J].密码学报,2021,8(6):989-998. 被引量：4
7CHEN Yu-Ao,GAO Xiao-Shan.Quantum Algorithm for Boolean Equation Solving and Quantum Algebraic Attack on Cryptosystems[J].Journal of Systems Science & Complexity,2022,35(1):373-412. 被引量：4
8ZHANG Zhongya,WU Wenling,SUI Han,WANG Bolin.Quantum Attacks on Type-3 Generalized Feistel Scheme and Unbalanced Feistel Scheme with Expanding Functions[J].Chinese Journal of Electronics,2023,32(2):209-216. 被引量：1
9邹剑,邹宏楷,董晓阳,吴文玲,罗宜元.基于周期性质的新型密钥恢复攻击方法[J].软件学报,2023,34(9):4239-4255. 被引量：1

引证文献2

1冯晓宁,吴洪宇.OTR方案的量子周期攻击与量子截断攻击[J].密码学报,2023,10(3):622-633. 被引量：1
2董晓阳.对称密码的量子分析法综述[J].密码学报（中英文）,2024,11(1):159-173.

二级引证文献1

1顾银鲁,解海燕,钟小莉.多维动态网络的密钥认证数学建模与仿真[J].计算机仿真,2024,41(4):284-288.

1Hao FENG,Guang ZENG,Wenbao HAN,Yang YANG.New strategy for searching disturbance vector of SHA-1 collision attack[J].Science China(Information Sciences),2017,60(12):276-278.
2Yahui Wang,Huanguo Zhang,Houzhen Wang.Quantum Polynomial-Time Fixed-Point Attack for RSA[J].China Communications,2018,15(2):25-32. 被引量：3
3蔡承智,莫洪兰,梁颖.基于ARIMA模型的我国大豆单产预测分析[J].大豆科学,2017,36(5):789-795. 被引量：5
4付孝洪.基于曲线拟合的投弃式剖面仪电感量算法[J].电子测试,2017,28(6X):61-61.
5郑东梁,尚文利,李世超,张立婷,曾鹏.油田监测与分析系统核心算法修正[J].计算机应用研究,2018,35(2):428-431. 被引量：1
6张怡.气候变化对冬小麦生产潜力的影响——以豫东为例[J].江苏农业科学,2017,45(23):270-274. 被引量：2
7夏云峰,蔡喆伟,陈诚,房红兵,王驰.模型试验含沙量量测技术研究[J].水利水运工程学报,2018(1):9-16. 被引量：2
8蔡承智,王芳,莫洪兰,梁颖.基于ARIMA模型的我国油菜单产预测分析[J].中国农业资源与区划,2018,39(1):71-76. 被引量：8

China Communications

2018年第2期

浏览历史

内容加载中请稍等...

Collision Attacks against AEZ-PRF for Authenticated Encryption AEZ 被引量：2

同被引文献9

引证文献2

二级引证文献1

相关作者

相关机构

相关主题

浏览历史