Chatterjee, Sanjit and Menezes, Alfred and Sarkar, Palash (2012) Another look at tightness. In: 18th International Workshop, SAC 2011, August 11-12, 2011, Toronto, ON, Canada.
Full text not available from this repository. (Request a copy)Abstract
We examine a natural, but non-tight, reductionist security proof for deterministic message authentication code (MAC) schemes in the multi-user setting. If security parameters for the MAC scheme are selected without accounting for the non-tightness in the reduction, then the MAC scheme is shown to provide a level of security that is less than desirable in the multi-user setting. We find similar deficiencies in the security assurances provided by non-tight proofs when we analyze some protocols in the literature including ones for network authentication and aggregate MACs. Our observations call into question the practical value of non-tight reductionist security proofs. We also exhibit attacks on authenticated encryption schemes, disk encryption schemes, and stream ciphers in the multi-user setting.
| Item Type: | Conference Paper |
|---|---|
| Publisher: | Springer-Verlag Berlin |
| Additional Information: | Copyright of this article belongs to Springer-Verlag Berlin. |
| Department/Centre: | Division of Electrical Sciences > Computer Science & Automation |
| Date Deposited: | 19 Mar 2013 09:23 |
| Last Modified: | 19 Mar 2013 09:23 |
| URI: | http://eprints.iisc.ac.in/id/eprint/46038 |
Actions (login required)
 |
View Item |
