Practice-Oriented Security Models and Granular Designs for Future-Proof Authenticated Encryption

Ziel

Authenticated-Encryption (AE) algorithms have recently faced an immense increase in popularity as appropriate cryptographic tools for providing data confidentiality and integrity services simultaneously. AE algorithms are ubiquitous in protocols to secure the very fundamentals of the information and communication infrastructure, being adopted into widely-deployed protocols, such as TLS, SSH, IPsec, IEEE 802.11 (Wi-Fi) and ANSI C12.22. A wide range of recently reported security vulnerabilities and exploits, arisen from either using insecure designs to achieve the AE goal or misusing supposedly secure AE schemes, has motivated the cryptographic community to run the CAESAR competition for designing new AE algorithms, boosting research on AE. Yet a critical look at the classical security models for AE, defined over the last decade, that guided the constructions of CAESAR submissions, and a review of practical applications for AE algorithms reveals several inconsistencies and remaining problems that must be carefully investigated before moving towards adoption of next-generation AE schemes for widespread use in governmental, industrial and financial ICT systems.

POMEGRANATE aims to critically rethink the existing security notions and robustness features for AE schemes and to develop fine-grained security models and modular, future-proof design paradigms that can flexibly capture a widening spectrum of disparate requirements in the emerging streaming media applications such as IPTV as well as in future heterogeneous environments such as Internet of Things and Cloud Computing infrastructures. We aim to proactively identify important ongoing challenges and to bridge the gaps between the theory and practice of AE, looking far beyond the design-centric CAESAR competition. Nevertheless, the results will also impact the evaluation and ranking of the CAESAR finalists, as those schemes should offer a set of envisioned new security and robustness needs for future applications.

Wissenschaftliches Gebiet

• engineering and technologyelectrical engineering, electronic engineering, information engineeringinformation engineeringtelecommunicationstelecommunications networksmobile network5G
• natural sciencescomputer and information sciencesinternetinternet of things
• natural sciencescomputer and information sciencescomputer securitycryptography
• engineering and technologymechanical engineeringvehicle engineeringautomotive engineering

Schlüsselbegriffe

• Cryptography
• symmetric encryption
• authenticated encryption
• provable security
• security notions
• robustness

Programm/Programme

• H2020-EU.1.3. - EXCELLENT SCIENCE - Marie Skłodowska-Curie Actions Main Programme
• H2020-EU.1.3.2. - Nurturing excellence by means of cross-border and cross-sector mobility

Thema/Themen

• MSCA-IF-2015-EF - Marie Skłodowska-Curie Individual Fellowships (IF-EF)

Aufforderung zur Vorschlagseinreichung

H2020-MSCA-IF-2015

Finanzierungsplan

Koordinator