Avalanche Effect in Improperly Initialized CAESAR Candidates

Martin Ukrop
Petr Švenda

Cryptoprimitives rely on thorough theoretical background, but often lack basic usability features making them prone to unintentional misuse by developers. We argue that this is true even for the state-of-the-art designs. Analyzing 52 candidates of the current CAESAR competition has shown none of them have an avalanche effect in authentication tag strong enough to work properly when partially misconfigured. Although not directly decreasing their security profile, this hints at their security usability being less than perfect. Paper details available at crcs.cz/papers/memics2016

In Jan Bouda, Lukáš Holík, Jan Kofroň, Jan Strejček and Adam Rambousek: Proceedings 11th Doctoral Workshop on Mathematical and Engineering Methods in Computer Science (MEMICS 2016), Telč, Czech Republic, 21st-23rd October 2016, Electronic Proceedings in Theoretical Computer Science 233, pp. 72–81.
Published: 13th December 2016.
ArXived at: https://dx.doi.org/10.4204/EPTCS.233.7 bibtex PDF
References in reconstructed bibtex, XML and HTML format (approximated).
Comments and questions to: eptcs@eptcs.org
For website issues: webmaster@eptcs.org