000256746 001__ 256746
000256746 005__ 20190812210029.0
000256746 037__ $$aCONF
000256746 245__ $$aSUNDAE: Small Universal Deterministic Authenticated Encryption for the Internet of Things
000256746 260__ $$c2018
000256746 269__ $$a2018
000256746 336__ $$aConference Papers
000256746 520__ $$aLightweight cryptography was developed in response to the increasing need to secure devices for the Internet of Things. After significant research effort, many new block ciphers have been designed targeting lightweight settings, optimizing efficiency metrics which conventional block ciphers did not. However, block ciphers must be used in modes of operation to achieve more advanced security goals such as data confidentiality and authenticity, a research area given relatively little attention in the lightweight setting. We introduce a new authenticated encryption (AE) mode of operation, SUNDAE, specially targeted for constrained environments. SUNDAE is smaller than other known lightweight modes in implementation area, such as CLOC, JAMBU, and COFB, however unlike these modes, SUNDAE is designed as a deterministic authenticated encryption (DAE) scheme, meaning it provides maximal security in settings where proper randomness is hard to generate, or secure storage must be minimized due to expense. Unlike other DAE schemes, such as GCM-SIV, SUNDAE can be implemented efficiently on both constrained devices, as well as the servers communicating with those devices. We prove SUNDAE secure relative to its underlying block cipher, and provide an extensive implementation study, with results in both software and hardware, demonstrating that SUNDAE offers improved compactness and power consumption in hardware compared to other lightweight AE modes, while simultaneously offering comparable performance to GCM-SIV on parallel high-end platforms.
000256746 700__ $$g283270$$aBanik, Subhadeep$$0250951
000256746 700__ $$aBogdanov, Andrey
000256746 700__ $$aLuykx, Atul
000256746 700__ $$aTischhauser, Elmar
000256746 7112_ $$aIACR Transactions of Symmetric Cryptology
000256746 8560_ $$ffatih.balli@epfl.ch
000256746 909C0 $$pLASEC$$mfatih.balli@epfl.ch$$0252183$$xU10433
000256746 909CO $$pconf$$pIC$$ooai:infoscience.epfl.ch:256746
000256746 960__ $$afatih.balli@epfl.ch
000256746 961__ $$apierre.devaud@epfl.ch
000256746 973__ $$aEPFL$$rREVIEWED
000256746 980__ $$aCONF
000256746 981__ $$aoverwrite