On the importance of the key separation principle for different modes of operation

D. Gligoroski; S. Andova; S.J. Knapskog

doi:10.1007/978-3-540-79104-1_29

On the importance of the key separation principle for different modes of operation

D. Gligoroski
, S. Andova
, S.J. Knapskog

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

9 Citations (Scopus)

4 Downloads (Pure)

Abstract

The key separation principle for different modes of operation of the block ciphers is a cryptographic folklore wisdom that states: One should always use distinct keys for distinct algorithms and distinct modes of operation. If this principle is violated, then there are generic attacks that can recover the whole or a part of the encrypted messages. By the advent of software packages and libraries that offer some or all modes of operation of block ciphers, the violation of this principle is really possible in practice. We show that under the same key, OFB mode of operation is a special case of the CBC mode of operation, and that if CBC and CTR modes of operation are interchangeably used under the same secret key - then the security of the encryption process is seriously weakened. Moreover in the chosen plaintext attack scenario with interchanged use of CBC and OFB mode under the same key, we give a concrete list of openssl commands that can extract the complete plaintext without knowing the secret key.

Original language	English
Title of host publication	Proceedings 4th Information Security Practice and Experience Conference (ISPEC'08, Sydney, Austrialia, April 21-23, 2008)
Editors	L. Chen, Y. Mu, W. Susilo
Place of Publication	Berlin
Publisher	Springer
Pages	404-418
ISBN (Print)	978-3-540-79103-4
DOIs	https://doi.org/10.1007/978-3-540-79104-1_29
Publication status	Published - 2008

Publication series

Name	Lecture Notes in Computer Science
Volume	4991
ISSN (Print)	0302-9743

Access to Document

10.1007/978-3-540-79104-1_29

Cite this

Gligoroski, D., Andova, S., & Knapskog, S. J. (2008). On the importance of the key separation principle for different modes of operation. In L. Chen, Y. Mu, & W. Susilo (Eds.), Proceedings 4th Information Security Practice and Experience Conference (ISPEC'08, Sydney, Austrialia, April 21-23, 2008) (pp. 404-418). (Lecture Notes in Computer Science; Vol. 4991). Springer. https://doi.org/10.1007/978-3-540-79104-1_29

@inproceedings{a3380822516543b2bb616ccfb7057cb6,

title = "On the importance of the key separation principle for different modes of operation",

abstract = "The key separation principle for different modes of operation of the block ciphers is a cryptographic folklore wisdom that states: One should always use distinct keys for distinct algorithms and distinct modes of operation. If this principle is violated, then there are generic attacks that can recover the whole or a part of the encrypted messages. By the advent of software packages and libraries that offer some or all modes of operation of block ciphers, the violation of this principle is really possible in practice. We show that under the same key, OFB mode of operation is a special case of the CBC mode of operation, and that if CBC and CTR modes of operation are interchangeably used under the same secret key - then the security of the encryption process is seriously weakened. Moreover in the chosen plaintext attack scenario with interchanged use of CBC and OFB mode under the same key, we give a concrete list of openssl commands that can extract the complete plaintext without knowing the secret key.",

author = "D. Gligoroski and S. Andova and S.J. Knapskog",

year = "2008",

doi = "10.1007/978-3-540-79104-1\_29",

language = "English",

isbn = "978-3-540-79103-4",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "404--418",

editor = "L. Chen and Y. Mu and W. Susilo",

booktitle = "Proceedings 4th Information Security Practice and Experience Conference (ISPEC'08, Sydney, Austrialia, April 21-23, 2008)",

address = "Germany",

}

Gligoroski, D, Andova, S & Knapskog, SJ 2008, On the importance of the key separation principle for different modes of operation. in L Chen, Y Mu & W Susilo (eds), Proceedings 4th Information Security Practice and Experience Conference (ISPEC'08, Sydney, Austrialia, April 21-23, 2008). Lecture Notes in Computer Science, vol. 4991, Springer, Berlin, pp. 404-418. https://doi.org/10.1007/978-3-540-79104-1_29

On the importance of the key separation principle for different modes of operation. / Gligoroski, D.; Andova, S.; Knapskog, S.J.
Proceedings 4th Information Security Practice and Experience Conference (ISPEC'08, Sydney, Austrialia, April 21-23, 2008). ed. / L. Chen; Y. Mu; W. Susilo. Berlin: Springer, 2008. p. 404-418 (Lecture Notes in Computer Science; Vol. 4991).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - On the importance of the key separation principle for different modes of operation

AU - Gligoroski, D.

AU - Andova, S.

AU - Knapskog, S.J.

PY - 2008

Y1 - 2008

N2 - The key separation principle for different modes of operation of the block ciphers is a cryptographic folklore wisdom that states: One should always use distinct keys for distinct algorithms and distinct modes of operation. If this principle is violated, then there are generic attacks that can recover the whole or a part of the encrypted messages. By the advent of software packages and libraries that offer some or all modes of operation of block ciphers, the violation of this principle is really possible in practice. We show that under the same key, OFB mode of operation is a special case of the CBC mode of operation, and that if CBC and CTR modes of operation are interchangeably used under the same secret key - then the security of the encryption process is seriously weakened. Moreover in the chosen plaintext attack scenario with interchanged use of CBC and OFB mode under the same key, we give a concrete list of openssl commands that can extract the complete plaintext without knowing the secret key.

AB - The key separation principle for different modes of operation of the block ciphers is a cryptographic folklore wisdom that states: One should always use distinct keys for distinct algorithms and distinct modes of operation. If this principle is violated, then there are generic attacks that can recover the whole or a part of the encrypted messages. By the advent of software packages and libraries that offer some or all modes of operation of block ciphers, the violation of this principle is really possible in practice. We show that under the same key, OFB mode of operation is a special case of the CBC mode of operation, and that if CBC and CTR modes of operation are interchangeably used under the same secret key - then the security of the encryption process is seriously weakened. Moreover in the chosen plaintext attack scenario with interchanged use of CBC and OFB mode under the same key, we give a concrete list of openssl commands that can extract the complete plaintext without knowing the secret key.

U2 - 10.1007/978-3-540-79104-1_29

DO - 10.1007/978-3-540-79104-1_29

M3 - Conference contribution

SN - 978-3-540-79103-4

T3 - Lecture Notes in Computer Science

SP - 404

EP - 418

BT - Proceedings 4th Information Security Practice and Experience Conference (ISPEC'08, Sydney, Austrialia, April 21-23, 2008)

A2 - Chen, L.

A2 - Mu, Y.

A2 - Susilo, W.

PB - Springer

CY - Berlin

ER -

Gligoroski D, Andova S, Knapskog SJ. On the importance of the key separation principle for different modes of operation. In Chen L, Mu Y, Susilo W, editors, Proceedings 4th Information Security Practice and Experience Conference (ISPEC'08, Sydney, Austrialia, April 21-23, 2008). Berlin: Springer. 2008. p. 404-418. (Lecture Notes in Computer Science). doi: 10.1007/978-3-540-79104-1_29

On the importance of the key separation principle for different modes of operation

Abstract

Publication series

Access to Document

Fingerprint

Cite this