TNT : how to tweak a block cipher

In this paper, we propose Tweak-aNd-Tweak ( for short) mode, which builds a tweakable block cipher from three independent block ciphers. handles the tweak input by simply XOR-ing the unmodified tweak into the internal state of block ciphers twice. Due to its simplicity, can also be viewed as a...

Full description

Saved in:
Bibliographic Details
Main Authors: Bao, Zhenzhen, Guo, Chun, Guo, Jian, Song, Ling
Other Authors: School of Physical and Mathematical Sciences
Format: Conference or Workshop Item
Language:English
Published: 2020
Subjects:
AES
Online Access:https://hdl.handle.net/10356/141805
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Nanyang Technological University
Language: English
Description
Summary:In this paper, we propose Tweak-aNd-Tweak ( for short) mode, which builds a tweakable block cipher from three independent block ciphers. handles the tweak input by simply XOR-ing the unmodified tweak into the internal state of block ciphers twice. Due to its simplicity, can also be viewed as a way of turning a block cipher into a tweakable block cipher by dividing the block cipher into three chunks, and adding the tweak at the two cutting points only. is proven to be of beyond-birthday-bound 22 /3 security, under the assumption that the three chunks are independent secure n-bit SPRPs. It clearly brings minimum possible overhead to both software and hardware implementations. To demonstrate this, an instantiation named TNT-AES with 6, 6, 6 rounds of AES as the underlying block ciphers is proposed. Besides the inherent proven security bound and tweak-independent rekeying feature of the mode, the performance of TNT-AES is comparable with all existing TBCs designed through modular methods.