CryptoDB
Practical Attacks on Full-round FRIET
Authors: |
|
---|---|
Download: | |
Abstract: | FRIET is a duplex-based authenticated encryption scheme proposed at EUROCRYPT 2020. It follows a novel design approach for built-in countermeasures against fault attacks. By a judicious choice of components, the designers propose the permutation FRIET-PC that can be used to build an authenticated encryption cipher denoted as FRIET-AE. And FRIET-AE provides a 128-bit security claim for integrity and confidentiality. In this paper, we research the propagation of pairs of differences and liner masks through the round function of FRIET-PC. For the full-round FRIET-PC, we can construct a differential distinguisher whose probability is 1 and a linear distinguisher whose absolute value of correlation is 1. Moreover, we use the differential distinguisher with probability 1 to construct a set consisting of valid tags and ciphertexts which are not created by legal users. This breaks FRIET-AE’s security claim for integrity and confidentiality. As far as we know, this is the first practical attack that threatens the security of FRIET-AE. |
BibTeX
@article{tosc-2022-32700, title={Practical Attacks on Full-round FRIET}, journal={IACR Transactions on Symmetric Cryptology}, publisher={Ruhr-Universität Bochum}, volume={2022, Issue 4}, pages={105-119}, url={https://tosc.iacr.org/index.php/ToSC/article/view/9973}, doi={10.46586/tosc.v2022.i4.105-119}, author={Senpeng Wang and Dengguo Feng and Bin Hu and Jie Guan and Tairong Shi}, year=2022 }