rijndael for aes
play

Rijndael for AES Vincent Rijmen Joan Daemen COSIC Proton World - PDF document

Jan 20, 2024 •466 likes •515 views

Rijndael for AES Vincent Rijmen Joan Daemen COSIC Proton World Security Intrinsic security: no algorithm has been broken Implementation attacks (e.g., DPA): Table-lookup and XOR operations only Rijndael lends itself to secure

  1. Rijndael for AES Vincent Rijmen Joan Daemen COSIC Proton World Security � Intrinsic security: no algorithm has been broken � Implementation attacks (e.g., DPA): � Table-lookup and XOR operations only � Rijndael lends itself to secure implementations on smart cards Thursday, April 20, 2000 3rd AES workshop 2 1

  2. Relative efficiency “Equivalent number of Rijndael rounds” # blocks MARS RC6 Serpent Twofish Pentium Many 13 9 38 12 4 28 15 33 27 1 46 22 36 25 6805 Many 30 28 110 23 4 52 45 107 23 1 114 91 100 22 Thursday, April 20, 2000 3rd AES workshop 3 Design Philosophy � Simplicity � Symmetry � Parallelism � Mutual independence of components � impact of replacing a component on security analysis is limited � Rijndael is easily extendible � block length, key length, number of rounds Thursday, April 20, 2000 3rd AES workshop 4 2

  3. Speed on unknown platforms � “Unknown platforms”: � parallel processors, � vulnerable platforms, � high key agility � No arithmetical operations � No data-dependent rotations � Light key schedule Thursday, April 20, 2000 3rd AES workshop 5 Conclusions In the many surveys, Rijndael comes out � sometimes ahead of the pack � often among the best � NEVER problematic VERSATILITY makes Rijndael best candidate Thursday, April 20, 2000 3rd AES workshop 6 3

Recommend

10 years of Rijndael Vincent Rijmen Overview The AES process (participants perspective)

10 years of Rijndael Vincent Rijmen Overview The AES process (participants perspective)

10 years of Rijndael Vincent Rijmen Overview The AES process (participants perspective) Rijndael Security of Rijndael/AES Spreading of AES Stream ciphers: competitors? Conclusions The early years (1997)

939 views • 70 slides
Rijndael Note on naming Vincent Rijmen Note on naming 1. Introduction After the selection of

Rijndael Note on naming Vincent Rijmen Note on naming 1. Introduction After the selection of

Joan Daemen Rijndael Note on naming Vincent Rijmen Note on naming 1. Introduction After the selection of Rijndael as the AES, it was decided to change the names of some of its component functions in order to improve the readability of the

762 views • 47 slides
DTTF/NB479: Dszquphsbqiz Day 17 Announcements: DES due Thursday. Careful with putting it

DTTF/NB479: Dszquphsbqiz Day 17 Announcements: DES due Thursday. Careful with putting it

DTTF/NB479: Dszquphsbqiz Day 17 Announcements: DES due Thursday. Careful with putting it off since Ch 3 test Friday too. Today: Finish GF(2 8 ) Rijndael Questions? AES (Rijndael) The S-boxes, round keys, and MixColumn

611 views • 13 slides
Announcements About Homework 1 Available on the course website If you cannot see it, it

Announcements About Homework 1 Available on the course website If you cannot see it, it

Announcements About Homework 1 Available on the course website If you cannot see it, it could be due to caching --- so try refreshing the webpage Due in two weeks : 10/22/19 11:59pm Submit through GradeScope 1 Rijndael K n

605 views • 31 slides
The Poly1305-AES message-authentication code D. J. Bernstein Thanks to: University of Illinois

The Poly1305-AES message-authentication code D. J. Bernstein Thanks to: University of Illinois

The Poly1305-AES message-authentication code D. J. Bernstein Thanks to: University of Illinois at Chicago NSF CCR9983950 Alfred P. Sloan Foundation The AES function (Rijndael 1998 Daemen Rijmen; 2001

867 views • 29 slides
Cryptomaniac A Cautionary Tale Dont Let This Happen to You! AES Selection Process Started

Cryptomaniac A Cautionary Tale Dont Let This Happen to You! AES Selection Process Started

Cryptomaniac A Cautionary Tale Dont Let This Happen to You! AES Selection Process Started in 1997 3 years 15 proposals (CAST- 256, CRYPTON, DEAL, DFC, E2, FROG, HPC, LOKI97, MAGENTA, MARS, RC6, Rijndael,SAFER+, Serpent, and

487 views • 13 slides
15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline Introduction: terminology, cryptanalysis, security Private-Key Algorithms: Rijndael, DES Number Theory Groups Public-Key Algorithms: RSA, ElGamal,

525 views • 26 slides
Analysis of XSL Applied to BES By: Lim Chu Wee, Khoo Khoong Ming. History (2002) Courtois

Analysis of XSL Applied to BES By: Lim Chu Wee, Khoo Khoong Ming. History (2002) Courtois

Analysis of XSL Applied to BES By: Lim Chu Wee, Khoo Khoong Ming. History (2002) Courtois and Pieprzyk announced a plausible attack (XSL) on Rijndael AES. Complexity of 2 225 for AES-256. Later Murphy and Robshaw proposed

507 views • 22 slides
Outline Arithmetic on Bytes and 4-Byte Vectors 1 CPSC 418/MATH 318 Introduction to Cryptography

Outline Arithmetic on Bytes and 4-Byte Vectors 1 CPSC 418/MATH 318 Introduction to Cryptography

Outline Arithmetic on Bytes and 4-Byte Vectors 1 CPSC 418/MATH 318 Introduction to Cryptography The Rijndael Algorithm 2 Advanced Encryption Standard, Brute Force Attacks on Block Ciphers Overview Description of the Algorithm Renate

425 views • 9 slides
Innovations in symmetric cryptography Joan Daemen STMicroelectronics, Belgium SSTIC, Rennes, June

Innovations in symmetric cryptography Joan Daemen STMicroelectronics, Belgium SSTIC, Rennes, June

Innovations in symmetric cryptography Joan Daemen STMicroelectronics, Belgium SSTIC, Rennes, June 5, 2013 1 / 46 Outline 1 The origins 2 Early work 3 Rijndael 4 The sponge construction and Keccak 5 Conclusions 2 / 46 The origins

762 views • 59 slides

More recommend