Quantum Indistinguishability of random sponges

Jan Czajkowski; Andreas Hülsing; Christian Schaffner

doi:10.1007/978-3-030-26951-7_11

Quantum Indistinguishability of random sponges

Jan Czajkowski, Andreas Hülsing, Christian Schaffner

Coding Theory and Cryptology

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/Congresprocedure › Conferentiebijdrage › Academic › peer review

8 Citaten (Scopus)

Samenvatting

In this work we show that the sponge construction can be used to construct quantum-secure pseudorandom functions. As our main result we prove that random sponges are quantum indistinguishable from random functions. In this setting the adversary is given superposition access to the input-output behavior of the construction but not to the internal function. Our proofs hold under the assumption that the internal function is a random function or permutation. We then use this result to obtain a quantum-security version of a result by Andreeva, Daemen, Mennink, and Van Assche (FSE’15) which shows that a sponge that uses a secure PRP or PRF as internal function is a secure PRF. This result also proves that the recent attacks against CBC-MAC in the quantum-access model by Kaplan, Leurent, Leverrier, and Naya-Plasencia (Crypto’16) and Santoli, and Schaffner (QIC’16) can be prevented by introducing a state with a non-trivial inner part. The proof of our main result is derived by analyzing the joint distribution of any q input-output pairs. Our method analyzes the statistical behavior of the considered construction in great detail. The used techniques might prove useful in future analysis of different cryptographic primitives considering quantum adversaries. Using Zhandry’s PRF/PRP switching lemma we then obtain that quantum indistinguishability also holds if the internal block function is a random permutation.

Originele taal-2	Engels
Titel	Advances in Cryptology – CRYPTO 2019 - 39th Annual International Cryptology Conference, Proceedings
Redacteuren	Alexandra Boldyreva, Daniele Micciancio
Plaats van productie	Cham
Uitgeverij	Springer
Pagina's	296-325
Aantal pagina's	30
ISBN van elektronische versie	978-3-030-26951-7
ISBN van geprinte versie	978-3-030-26950-0
DOI's	https://doi.org/10.1007/978-3-030-26951-7_11
Status	Gepubliceerd - 1 jan. 2019
Evenement	39th Annual International Cryptology Conference, CRYPTO 2019 - Santa Barbara, Verenigde Staten van Amerika Duur: 18 aug. 2019 → 22 aug. 2019

Publicatie series

Naam	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	11693 LNCS
ISSN van geprinte versie	0302-9743
ISSN van elektronische versie	1611-3349

Congres

Congres	39th Annual International Cryptology Conference, CRYPTO 2019
Land/Regio	Verenigde Staten van Amerika
Stad	Santa Barbara
Periode	18/08/19 → 22/08/19

Financiering

Acknowledgments. The authors would like to thank Dominique Unruh and Leon Groot Bruiderink for helpful discussions. CS and JC are supported by a NWO VIDI grant (Project No. 639.022.519).

Toegang tot document

10.1007/978-3-030-26951-7_11

Andere bestanden en links

Link to publication in Scopus

Citeer dit

Czajkowski, J., Hülsing, A., & Schaffner, C. (2019). Quantum Indistinguishability of random sponges. In A. Boldyreva, & D. Micciancio (editors), Advances in Cryptology – CRYPTO 2019 - 39th Annual International Cryptology Conference, Proceedings (blz. 296-325). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11693 LNCS). Springer. https://doi.org/10.1007/978-3-030-26951-7_11

Czajkowski, Jan ; Hülsing, Andreas ; Schaffner, Christian. / Quantum Indistinguishability of random sponges. Advances in Cryptology – CRYPTO 2019 - 39th Annual International Cryptology Conference, Proceedings. redacteur / Alexandra Boldyreva ; Daniele Micciancio. Cham : Springer, 2019. blz. 296-325 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{94d145dd20f74520aeb71cae40efbfc6,

title = "Quantum Indistinguishability of random sponges",

abstract = "In this work we show that the sponge construction can be used to construct quantum-secure pseudorandom functions. As our main result we prove that random sponges are quantum indistinguishable from random functions. In this setting the adversary is given superposition access to the input-output behavior of the construction but not to the internal function. Our proofs hold under the assumption that the internal function is a random function or permutation. We then use this result to obtain a quantum-security version of a result by Andreeva, Daemen, Mennink, and Van Assche (FSE{\textquoteright}15) which shows that a sponge that uses a secure PRP or PRF as internal function is a secure PRF. This result also proves that the recent attacks against CBC-MAC in the quantum-access model by Kaplan, Leurent, Leverrier, and Naya-Plasencia (Crypto{\textquoteright}16) and Santoli, and Schaffner (QIC{\textquoteright}16) can be prevented by introducing a state with a non-trivial inner part. The proof of our main result is derived by analyzing the joint distribution of any q input-output pairs. Our method analyzes the statistical behavior of the considered construction in great detail. The used techniques might prove useful in future analysis of different cryptographic primitives considering quantum adversaries. Using Zhandry{\textquoteright}s PRF/PRP switching lemma we then obtain that quantum indistinguishability also holds if the internal block function is a random permutation.",

keywords = "Indistinguishability, Keyed sponges, Message-authentication codes, Quantum security, Symmetric cryptography",

author = "Jan Czajkowski and Andreas H{\"u}lsing and Christian Schaffner",

year = "2019",

month = jan,

day = "1",

doi = "10.1007/978-3-030-26951-7_11",

language = "English",

isbn = "978-3-030-26950-0",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "296--325",

editor = "Alexandra Boldyreva and Daniele Micciancio",

booktitle = "Advances in Cryptology – CRYPTO 2019 - 39th Annual International Cryptology Conference, Proceedings",

address = "Germany",

note = "39th Annual International Cryptology Conference, CRYPTO 2019 ; Conference date: 18-08-2019 Through 22-08-2019",

}

Czajkowski, J, Hülsing, A & Schaffner, C 2019, Quantum Indistinguishability of random sponges. in A Boldyreva & D Micciancio (uitgave), Advances in Cryptology – CRYPTO 2019 - 39th Annual International Cryptology Conference, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 11693 LNCS, Springer, Cham, blz. 296-325, 39th Annual International Cryptology Conference, CRYPTO 2019, Santa Barbara, Verenigde Staten van Amerika, 18/08/19. https://doi.org/10.1007/978-3-030-26951-7_11

Quantum Indistinguishability of random sponges. / Czajkowski, Jan; Hülsing, Andreas; Schaffner, Christian.
Advances in Cryptology – CRYPTO 2019 - 39th Annual International Cryptology Conference, Proceedings. uitgave / Alexandra Boldyreva; Daniele Micciancio. Cham: Springer, 2019. blz. 296-325 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11693 LNCS).

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/Congresprocedure › Conferentiebijdrage › Academic › peer review

TY - GEN

T1 - Quantum Indistinguishability of random sponges

AU - Czajkowski, Jan

AU - Hülsing, Andreas

AU - Schaffner, Christian

PY - 2019/1/1

Y1 - 2019/1/1

N2 - In this work we show that the sponge construction can be used to construct quantum-secure pseudorandom functions. As our main result we prove that random sponges are quantum indistinguishable from random functions. In this setting the adversary is given superposition access to the input-output behavior of the construction but not to the internal function. Our proofs hold under the assumption that the internal function is a random function or permutation. We then use this result to obtain a quantum-security version of a result by Andreeva, Daemen, Mennink, and Van Assche (FSE’15) which shows that a sponge that uses a secure PRP or PRF as internal function is a secure PRF. This result also proves that the recent attacks against CBC-MAC in the quantum-access model by Kaplan, Leurent, Leverrier, and Naya-Plasencia (Crypto’16) and Santoli, and Schaffner (QIC’16) can be prevented by introducing a state with a non-trivial inner part. The proof of our main result is derived by analyzing the joint distribution of any q input-output pairs. Our method analyzes the statistical behavior of the considered construction in great detail. The used techniques might prove useful in future analysis of different cryptographic primitives considering quantum adversaries. Using Zhandry’s PRF/PRP switching lemma we then obtain that quantum indistinguishability also holds if the internal block function is a random permutation.

AB - In this work we show that the sponge construction can be used to construct quantum-secure pseudorandom functions. As our main result we prove that random sponges are quantum indistinguishable from random functions. In this setting the adversary is given superposition access to the input-output behavior of the construction but not to the internal function. Our proofs hold under the assumption that the internal function is a random function or permutation. We then use this result to obtain a quantum-security version of a result by Andreeva, Daemen, Mennink, and Van Assche (FSE’15) which shows that a sponge that uses a secure PRP or PRF as internal function is a secure PRF. This result also proves that the recent attacks against CBC-MAC in the quantum-access model by Kaplan, Leurent, Leverrier, and Naya-Plasencia (Crypto’16) and Santoli, and Schaffner (QIC’16) can be prevented by introducing a state with a non-trivial inner part. The proof of our main result is derived by analyzing the joint distribution of any q input-output pairs. Our method analyzes the statistical behavior of the considered construction in great detail. The used techniques might prove useful in future analysis of different cryptographic primitives considering quantum adversaries. Using Zhandry’s PRF/PRP switching lemma we then obtain that quantum indistinguishability also holds if the internal block function is a random permutation.

KW - Indistinguishability

KW - Keyed sponges

KW - Message-authentication codes

KW - Quantum security

KW - Symmetric cryptography

UR - http://www.scopus.com/inward/record.url?scp=85071455664&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-26951-7_11

DO - 10.1007/978-3-030-26951-7_11

M3 - Conference contribution

AN - SCOPUS:85071455664

SN - 978-3-030-26950-0

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 296

EP - 325

BT - Advances in Cryptology – CRYPTO 2019 - 39th Annual International Cryptology Conference, Proceedings

A2 - Boldyreva, Alexandra

A2 - Micciancio, Daniele

PB - Springer

CY - Cham

T2 - 39th Annual International Cryptology Conference, CRYPTO 2019

Y2 - 18 August 2019 through 22 August 2019

ER -

Czajkowski J, Hülsing A, Schaffner C. Quantum Indistinguishability of random sponges. In Boldyreva A, Micciancio D, redacteurs, Advances in Cryptology – CRYPTO 2019 - 39th Annual International Cryptology Conference, Proceedings. Cham: Springer. 2019. blz. 296-325. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-26951-7_11

Quantum Indistinguishability of random sponges

Samenvatting

Publicatie series

Congres

Financiering

Toegang tot document

Andere bestanden en links

Vingerafdruk

Citeer dit