Authenticated encryption: state-of-the-art and beyond

Joan Daemen   - Radboud University of Nijmegen, the Netherlands

Abstract

Nowadays the core functionality of symmetric cryptography is authenticated encryption (AE), that combines encryption to protect the confidentiality of data with its authentication. In this presentation we define the security goal of AE and show how AE schemes can be built and proven secure assuming an ideal primitive. In what many consider the state-of-the-art, the primitive is a block cipher (in practice AES), and it is assumed to behave like a random permutation. A relatively new approach is to build AE schemes on top of so-called deck functions, primitives supporting arbitrary input and output length that are assumed to behave like a random oracle. In the presentation we will also give some intuition of how we built AES and are now building secure deck functions.