How to Construct Super-Pseudorandom Permutations with Short Keys(Symmetric Cryptography,<Special Section>Cryptography and Information Security)

概要

論文の詳細を見る
It is known that a super-pseudorandom permutation can be constructed from a pseudorandom function f and two universal hash functions, h and h'. It is a four round Feistel permutation denoted by φ(h_k,f,f,h'_<k'>). In this paper, we show how to re-use the secret key for f in this construction. Specifically, we show that (1) the same key can be used for both h and h', and (2) the key for h and h' can be derived from f. As a result, our construction requires only the key for f as a secret key, and it preserves computational efficiency and security. We show the full security proof of our construction. Also, we derive a similar result for a five round MISTY-type permutation.
社団法人電子情報通信学会の論文
2007-01-01