Tweakable Block Ciphers Secure Beyond the Birthday Bound in the Ideal Cipher Model
We propose a new construction of tweakable block ciphers from standard block ciphers. Our construction, dubbed XHX2, is the cascade of two independent XHX block ciphers, so it makes two calls to the underlying block cipher using tweak-dependent keys. We prove the security of XHX2 up to min {22(n+m)/3, 2n+m/2} queries (ignoring logarithmic factors) in the ideal cipher model, when the block cipher operates on n-bit blocks using m-bit keys. The XHX2 tweakable block cipher is the first construction that achieves beyond-birthday-bound security with respect to the input size of the underlying block cipher in the ideal cipher model.
- Issue Date
- 2018-12-03
- Language
- English
- Citation
24th Annual International Conference on Theory and Application of Cryptology and Information Security, ASIACRYPT 2018, pp.305 - 335
- Appears in Collection
- CS-Conference Papers(학술회의논문)
- Files in This Item
- There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.