Journal ArticleOPEN ACCESS

Encryption modes with almost free message integrity

Journal of Cryptology (2008) 21(4) 547-578
DOI: 10.1007/s00145-008-9024-z
30Citations
Citations of this article
11Readers
Mendeley users who have this article in their library.
Get full text

Abstract

We define a new mode of operation for block ciphers which, in addition to providing confidentiality, also ensures message integrity. In contrast, previously for message integrity a separate pass was required to compute a cryptographic message authentication code (MAC). The new mode of operation, called Integrity Aware Parallelizable Mode (IAPM), requires a total of m+1 block cipher evaluations on a plain-text of length m blocks. For comparison, the well-known CBC (cipher block chaining) encryption mode requires m block cipher evaluations, and the second pass of computing the CBC-MAC essentially requires additional m+1 block cipher evaluations. As the name suggests, the new mode is also highly parallelizable. © 2008 International Association for Cryptologic Research.

Author supplied keywords

Cite

CITATION STYLE

APA

Jutla, C. S. (2008). Encryption modes with almost free message integrity. Journal of Cryptology, 21(4), 547–578. https://doi.org/10.1007/s00145-008-9024-z

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free