×

HBS: a single-key mode of operation for deterministic authenticated encryption. (English) Zbl 1248.94074

Dunkelman, Orr (ed.), Fast software encryption. 16th international workshop, FSE 2009, Leuven, Belgium, February 22–25, 2009. Revised selected papers. Berlin: Springer (ISBN 978-3-642-03316-2/pbk). Lecture Notes in Computer Science 5665, 394-415 (2009).
Summary: We propose the HBS (hash block stealing) mode of operation. This is the first single-key mode that provably achieves the goal of providing deterministic authenticated encryption. The authentication part of HBS utilizes a newly-developed, vector-input polynomial hash function. The encryption part uses a blockcipher-based, counter-like mode. These two parts are combined in such a way as the numbers of finite-field multiplications and blockcipher calls are minimized. Specifically, for a header of \(h\) blocks and a message of \(m\) blocks, the HBS algorithm requires just \(h + m + 2\) multiplications in the finite field and \(m + 2\) calls to the blockcipher. Although the HBS algorithm is fairly simple, its security proof is rather complicated.
For the entire collection see [Zbl 1168.68003].

MSC:

94A60 Cryptography
94A62 Authentication, digital signatures and secret sharing
PDFBibTeX XMLCite
Full Text: DOI