A method for obtaining digital signatures and public-key cryptosystems
Communications of the ACM
REACT: Rapid Enhanced-Security Asymmetric Cryptosystem Transform
CT-RSA 2001 Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA
CRYPTO '01 Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology
RIPEMD-160: A Strengthened Version of RIPEMD
Proceedings of the Third International Workshop on Fast Software Encryption
Simplified OAEP for the RSA and Rabin Functions
CRYPTO '01 Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology
| Hi-index | 0.00 |
When encrypting messages by use of the RSA crypto-system, secure padding these messages is very important for the security of the encryption scheme. One candidate for secure padding is OAEP (Optimal Asymmetric Encryption Padding). OAEP transforms the plaintext by use of a random parameter (called randomizer) and hash-functions. Unfortunately, when concerning low-cost security hardware and embedded security micro-controllers, OAEP is quite slow because hash-functions are implemented in software. The idea presented in this paper is to speed up OAEP by replacing the time consuming calls of the hash-function by symmetric encryption which is implemented in hardware quite often. First we briefly discuss OAEP and OAEP+. Based on this discussion we present the design principle of the proposed Alternative Asymmetric Encryption Padding (AAEP) in two variants and give an analysis of the performance gain and the security. Additional to the basic concept of AAEP we present a modified scheme, which guarantees that regardless of the input values (which might be equal), all outputs of AAEP will be different within some period of time (or some maximum number of outputs).