Design and Cryptanalysis of a Customizable Authenticated Encryption Algorithm

Author

Matthew Joseph Kelly

Abstract

It is common knowledge that encryption is a useful tool for providing confidentiality.

Authentication, however, is often overlooked.

Authentication provides data integrity; it helps ensure that any tampering with or corruption of data is detected.

It also provides assurance of message origin.

Authenticated encryption (AE) algorithms provide both confidentiality and integrity / authenticity by processing plaintext and producing both ciphertext and a Message Authentication Code (MAC).

It has been shown too many times throughout history that encryption without authentication is generally insecure.

This has recently culminated in a push for new authenticated encryption algorithms.

There are several authenticated encryption algorithms in existence already.

However, these algorithms are often difficult to use correctly in practice.

This is a significant problem because misusing AE constructions can result in reduced security in many cases.

Furthermore, many existing algorithms have numerous undesirable features.

For example, these algorithms often require two passes of the underlying cryptographic primitive to yield the ciphertext and MAC.

This results in a longer runtime.

It is clear that new easy-to-use, single-pass, and highly secure AE constructions are needed.

Additionally, a new AE algorithm is needed that meets stringent requirements for use in the military and government sectors.

This thesis explores the design and cryptanalysis of a novel, easily customizable AE algorithm based on the duplex construction.

Emphasis is placed on designing a secure pseudorandom permutation (PRP) for use within the construction.

A survey of state of the art cryptanalysis methods is performed and the resistance of our algorithm against such methods is considered.

The end result is an algorithm that is believed to be highly secure and that should remain secure if customizations are made within the provided guidelines.

Library of Congress Subject Headings

Data encryption (Computer science); Cryptography; Computer algorithms--Testing

Publication Date

8-2014

Document Type

Thesis

Student Type

Graduate

Degree Name

Computer Engineering (MS)

Department, Program, or Center

Computer Engineering (KGCOE)

Advisor

Alan Kaminsky

Advisor/Committee Member

Marcin Łukowiak

Advisor/Committee Member

Michael Kurdziel

Comments

Physical copy available from RIT's Wallace Library at QA76.9.A25 K45 2014

Recommended Citation

Kelly, Matthew Joseph, "Design and Cryptanalysis of a Customizable Authenticated Encryption Algorithm" (2014). Thesis. Rochester Institute of Technology. Accessed from
https://repository.rit.edu/theses/8325

Campus

RIT – Main Campus

Plan Codes

CMPE-MS