16:00 - 18:00 Uhr
The talk focuses on committing authenticated encryption. Simply speaking, a committing authenticated encryption scheme comes with the guarantee that it is hard to find two contexts (keys K/K', nonces N/N', and associated data A/A') which decrypt the same ciphertext C. We analyze the finalists of the NIST lightweight cryptography standardization process and show that only 3 out of 10 finalists are committing authenticated encryption scheme while we give attacks against the others. We then analyze the generic composition paradigm and show that Encrypt-and-MAC is committing whereas Encrypt-then-MAC is not.
Patrick Struck did his PhD at Technical University of Darmstadt under the supervision of Juliane Krämer. Afterwards he was PostDoc at University of Regensburg and is now at University of Konstanz, where he leads the Cryptography and Cyber Security group. His research interest are provable security of cryptographic algorithms and, in particular, post-quantum cryptography and authenticated encryption.
Event series: Computer Science Insights @HSG - School of Computer Science