An overview of cryptanalysis research for the advanced encryption standard

Kaminsky, Alan; Kurdziel, Michael; Radziszowski, Stanisław

doi:10.1109/milcom.2010.5680130

Cited by 28 publications

(13 citation statements)

References 39 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In terms of AES, there are well-known issues with AES-CBC mode that are not currently believed to pose a practical threat [25], and it is not CCA secure. Both AES-CBC and AES-CFB are secure against chosen plaintext attacks (CPA-secure) if the IV is random, but not if the IV is a nonce [35].…”

Section: Scenario Api Symmetric Encryptionmentioning

confidence: 99%

“…There does not yet exist for Javascript a way to securely install code, such as has been done via signed code in Linux-based operating systems, much less the more comprehensive necessary precautions taken into account by The Update Framework. 25 While signed Javascript may seem difficult, many other systems such as native applications have moved to such a model and so it should not be surprising if the Web itself may need to adopt signed code. In fact, the hashes of popular Javascript code could even be imagined to be stored in a Merkle-tree based append-only log such as those being designed in Certificate Transparency [28].…”

mentioning

confidence: 99%

See 1 more Smart Citation

Security Analysis of the W3C Web Cryptography API

Cairns

Halpin

Steel

2016

Security Standardisation Research

View full text Add to dashboard Cite

Abstract. Due to the success of formal modeling of protocols such as TLS, there is a revival of interest in applying formal modeling to standardized APIs. We argue that formal modeling should happen as the standard is being developed (not afterwards) as it can detect complex or even simple attacks that the standardization group may not otherwise detect. As a case example of this, we discuss in detail the W3C Web Cryptography API. We demonstrate how a formal analysis of the API using the modeling language AVISPA with a SAT solver demonstrates that while the API has no errors in basic API operations and maintains its security properties for the most part, there are nonetheless attacks on secret key material due to how key wrapping and usages are implemented. Furthermore, there were a number of basic problems in terms of algorithm selection and a weakness that led to a padding attack. The results of this study led to the removal of algorithms before its completed standardization and the removal of the padding attack via normalization of error codes, although the key wrapping attack is still open. We expect this sort of formal methodology to be applied to new standardization efforts at the W3C such as the W3C Web Authentication API.

show abstract

Section: Scenario Api Symmetric Encryptionmentioning

confidence: 99%

mentioning

confidence: 99%

Security Analysis of the W3C Web Cryptography API

Cairns

Halpin

Steel

2016

Security Standardisation Research

View full text Add to dashboard Cite

show abstract

“…In contexts similar to ours, the solution is to combine symmetric and asymmetric encryption schemes. We can encrypt the files using symmetric encryption scheme like AES and the AES [8] key is encrypted using asymmetric encryption scheme like RSA [9]. More specifically saying, a file will be encrypted using an AES key.…”

Section: Substitution and Permutation Techniques Are Utilized Based Omentioning

confidence: 99%

A Practical Scheme for Implementing Client Side Encryptions and Decryptions

Mohana¹,

Elayidom²

2015

IJEME

View full text Add to dashboard Cite

The amount of data that is generated each day is rapidly increasing so that the traditional ways of data storage seems to be inadequate. Cloud Computing has helped a lot to solve the storage issues but fear of data leakage hinders its widespread acceptance. Even though the public clouds like Amazon, Google etc store the data in encrypted form, data loss can still occur during transmission. The only practical solution is to upload encrypted data to cloud. Hence users should have an additional software or application to encrypt the data before uploading and decrypt the data after retrieval. This article analyzes different solutions for implementing such applications. The article also describes about the cryptographic primitives that can be added for enforcing security.

show abstract

“…Because the AES algorithm is public, it is subject to expert cryptanalysis. Purely mathematical attacks, such as linear and differential cryptanalysis, reduce the key search space, but they cannot break AES [28].…”

Section: Introductionmentioning

confidence: 99%

Security analysis of concurrent error detection against differential fault analysis

et al. 2014

View full text Add to dashboard Cite

Differential fault analysis (DFA) poses a significant threat to advanced encryption standard (AES). Only a single faulty ciphertext is required to extract the secret key. Concurrent error detection (CED) is widely used to protect AES against DFA. Traditionally, these CEDs are evaluated with uniformly distributed faults, the resulting fault coverage indicates the security of CEDs against DFA. However, DFA-exploitable faults, which are a small subspace of the entire fault space, are not uniformly distributed. Therefore, fault coverage does not accurately measure the security of the CEDs against DFA. We provide a systematic study of DFA of AES and show that an attacker can inject biased faults to improve the success rate of the attacks. We propose fault entropy (FE) and fault differential entropy (FDE) to evaluate CEDs. We show that most CEDs with high fault coverage are not secure when evaluated with FE and FDE. This work challenges the traditional use of fault coverage for uniformly distributed faults as a metric for evaluating the security of CEDs against DFA.

show abstract

An overview of cryptanalysis research for the advanced encryption standard

Cited by 28 publications

References 39 publications

Security Analysis of the W3C Web Cryptography API

Security Analysis of the W3C Web Cryptography API

A Practical Scheme for Implementing Client Side Encryptions and Decryptions

Security analysis of concurrent error detection against differential fault analysis

Contact Info

Product

Resources

About