Cryptographic agility and its relation to circular encryption

Authors:
Tolga Acar;Mira Belenkiy;Mihir Bellare;David Cash
Affiliations:
eXtreme Computing Group, Microsoft Research, Redmond, WA;eXtreme Computing Group, Microsoft Research, Redmond, WA;Department of Computer Science & Engineering, University of California San Diego, CA;Department of Computer Science & Engineering, University of California San Diego, CA
Venue:
EUROCRYPT'10 Proceedings of the 29th Annual international conference on Theory and Applications of Cryptographic Techniques
Year:
2010

Citing 21
Cited 12

Synthesizers and their application to the parallel construction of pseudo-random functions

Journal of Computer and System Sciences - Special issue on the 36th IEEE symposium on the foundations of computer science
OCB: a block-cipher mode of operation for efficient authenticated encryption

CCS '01 Proceedings of the 8th ACM conference on Computer and Communications Security
Securely combining public-key cryptosystems

CCS '01 Proceedings of the 8th ACM conference on Computer and Communications Security
Encryption-Scheme Security in the Presence of Key-Dependent Messages

SAC '02 Revised Papers from the 9th Annual International Workshop on Selected Areas in Cryptography
An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation

EUROCRYPT '01 Proceedings of the International Conference on the Theory and Application of Cryptographic Techniques: Advances in Cryptology
Authenticated Encryption: Relations among Notions and Analysis of the Generic Composition Paradigm

ASIACRYPT '00 Proceedings of the 6th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Protocol Interactions and the Chosen Protocol Attack

Proceedings of the 5th International Workshop on Security Protocols
A Concrete Security Treatment of Symmetric Encryption

FOCS '97 Proceedings of the 38th Annual Symposium on Foundations of Computer Science
Security under key-dependent inputs

Proceedings of the 14th ACM conference on Computer and communications security
A Fast and Key-Efficient Reduction of Chosen-Ciphertext to Known-Plaintext Security

EUROCRYPT '07 Proceedings of the 26th annual international conference on Advances in Cryptology
Circular-Secure Encryption from Decision Diffie-Hellman

CRYPTO 2008 Proceedings of the 28th Annual conference on Cryptology: Advances in Cryptology
Key-dependent message security under active attacks - BRSIM/UC-soundness of Dolev-Yao-style encryption with key cycles

Journal of Computer Security - 20th IEEE Computer Security Foundations Symposium (CSF)
Basing PRFs on Constant-Query Weak PRFs: Minimizing Assumptions for Efficient Symmetric Cryptography

ASIACRYPT '08 Proceedings of the 14th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
OAEP Is Secure under Key-Dependent Messages

ASIACRYPT '08 Proceedings of the 14th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
On the (Im)Possibility of Key Dependent Encryption

TCC '09 Proceedings of the 6th Theory of Cryptography Conference on Theory of Cryptography
A Public Key Encryption Scheme Secure against Key Dependent Chosen Plaintext and Adaptive Chosen Ciphertext Attacks

EUROCRYPT '09 Proceedings of the 28th Annual International Conference on Advances in Cryptology: the Theory and Applications of Cryptographic Techniques
Fast Cryptographic Primitives and Circular-Secure Encryption Based on Hard Learning Problems

CRYPTO '09 Proceedings of the 29th Annual International Cryptology Conference on Advances in Cryptology
Towards key-dependent message security in the standard model

EUROCRYPT'08 Proceedings of the theory and applications of cryptographic techniques 27th annual international conference on Advances in cryptology
The security and performance of the galois/counter mode (GCM) of operation

INDOCRYPT'04 Proceedings of the 5th international conference on Cryptology in India
A provable-security treatment of the key-wrap problem

EUROCRYPT'06 Proceedings of the 24th annual international conference on The Theory and Applications of Cryptographic Techniques
The security of triple encryption and a framework for code-based game-playing proofs

EUROCRYPT'06 Proceedings of the 24th annual international conference on The Theory and Applications of Cryptographic Techniques

Key dependent message security: recent results and applications

Proceedings of the first ACM conference on Data and application security and privacy
Efficient circuit-size independent public key encryption with KDM security

EUROCRYPT'11 Proceedings of the 30th Annual international conference on Theory and applications of cryptographic techniques: advances in cryptology
Key-dependent message security: generic amplification and completeness

EUROCRYPT'11 Proceedings of the 30th Annual international conference on Theory and applications of cryptographic techniques: advances in cryptology
Authenticated and misuse-resistant encryption of key-dependent data

CRYPTO'11 Proceedings of the 31st annual conference on Advances in cryptology
On the joint security of encryption and signature, revisited

ASIACRYPT'11 Proceedings of the 17th international conference on The Theory and Application of Cryptology and Information Security
On the security of the "Free-XOR" technique

TCC'12 Proceedings of the 9th international conference on Theory of Cryptography
Subspace LWE

TCC'12 Proceedings of the 9th international conference on Theory of Cryptography
New definitions and separations for circular security

PKC'12 Proceedings of the 15th international conference on Practice and Theory in Public Key Cryptography
Correlated product security from any one-way function

PKC'12 Proceedings of the 15th international conference on Practice and Theory in Public Key Cryptography
Computational soundness of coinductive symbolic security under active attacks

TCC'13 Proceedings of the 10th theory of cryptography conference on Theory of Cryptography
On the circular security of bit-encryption

TCC'13 Proceedings of the 10th theory of cryptography conference on Theory of Cryptography
Randomness-Dependent message security

TCC'13 Proceedings of the 10th theory of cryptography conference on Theory of Cryptography

Quantified Score

Hi-index	0.00

Visualization

Abstract

We initiate a provable-security treatment of cryptographic agility. A primitive (for example PRFs, authenticated encryption schemes or digital signatures) is agile when multiple, individually secure schemes can securely share the same key. We provide a surprising connection between two seemingly unrelated but challenging questions. The first, new to this paper, is whether wPRFs (weak-PRFs) are agile. The second, already posed several times in the literature, is whether every secure (IND-R) encryption scheme is secure when encrypting cycles. We resolve the second question in the negative and thereby the first as well. We go on to provide a comprehensive treatment of agility, with definitions for various different primitives. We explain the practical motivations for agility. We provide foundational results that show to what extent it is achievable and practical constructions to achieve it to the best extent possible. On the theoretical side our work uncovers new notions and relations and settles stated open questions, and on the practical side it serves to guide developers.