Committing Authenticated Encryption: NIST Finalists and Generic Composition with Patrick Struck


Mi. 14.02.2024


16:00 - 18:00 Uhr



Arena, 11-2091




file_downloadKalendereintrag herunterladen

The talk focuses on committing authenticated encryption. Simply speaking, a committing authenticated encryption scheme comes with the guarantee that it is hard to find two contexts (keys K/K', nonces N/N', and associated data A/A') which decrypt the same ciphertext C. We analyze the finalists of the NIST lightweight cryptography standardization process and show that only 3 out of 10 finalists are committing authenticated encryption scheme while we give attacks against the others. We then analyze the generic composition paradigm and show that Encrypt-and-MAC is committing whereas Encrypt-then-MAC is not.

About Patrick: 

Patrick Struck did his PhD at Technical University of Darmstadt under the supervision of Juliane Krämer. Afterwards he was PostDoc at University of Regensburg and is now at University of Konstanz, where he leads the Cryptography and Cyber Security group. His research interest are provable security of cryptographic algorithms and, in particular, post-quantum cryptography and authenticated encryption.


Registration: None
Event series: Computer Science Insights @HSG - School of Computer Science
Language: English