[Cryptography] New block cipher competition
james hughes
hughejp at me.com
Mon Feb 8 13:50:58 EST 2016
On 02/06/2016 06:29 AM, Henry Baker wrote:
> Consequently, you are cordially invited to submit a proposal for a block cipher that :
> Works on block sizes of 1 kbytes, 4 kbytes, 16 kbytes and 64 kbytes. Bonus points for ciphers that work on an arbitrary block size.
Creating a new large block cipher can be accomplished as a mode to a short block cipher. All of these work on multiples of the underlying block cipher.
Naor and Reingold, A pseudo-random encryption mode. http://www.wisdom.weizmann.ac.il/∼naor/
Luby and Rackoff, How to construct pseudorandom permutations from pseudorandom functions. SIAM J. of Computation
Halevi and Rogaway, A Parallelizable Enciphering Mode, http://web.cs.ucdavis.edu/~rogaway/papers/eme.pdf
Ciphertext Stealing, they can work with Halevi and Rogaway to form an arbitrary block size.
> Use a 64 kbyte key.
Unless you want to go to all the way to a OTP, it is better to work on an extremely good source of entropy than a large key >> 256 bits. Without good entropy, even long keys (> 1000 bits) you still have a problem.
Lenstra et.al. Ron was wrong, Whit is right, https://eprint.iacr.org/2012/064.pdf
> Fits In Head
Even the OTP does not meet the “Fits in Head” criteria. The idea of Shannon’s famous paper can fit in a soundbite, the the facts are 55 hard pages long.
Shannon, A Mathematical Theory of Communication <https://en.wikipedia.org/wiki/A_Mathematical_Theory_of_Communication>. http://worrydream.com/refs/Shannon%20-%20A%20Mathematical%20Theory%20of%20Communication.pdf
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20160208/ab169fd1/attachment.html>
More information about the cryptography
mailing list