Tight Security Bound of 2k-LightMAC_Plus
Document Type
Conference Article
Publication Title
Lecture Notes in Computer Science Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics
Abstract
In ASIACRYPT’17, Naito proposed a beyond-birthday-bound variant of the LightMAC construction, called LightMAC_Plus, which is built on three independently keyed n-bit block ciphers, and showed that the construction achieves 2n/3-bits PRF security. Later, Kim et al. claimed (without giving any formal proof) its security bound to 23n/4. In FSE’18, Datta et al. have proposed a two-keyed variant of the LightMAC_Plus construction, called 2k-LightMAC_Plus, which is built on two independently keyed n-bit block ciphers, and showed that the construction achieves 2n/3-bits PRF security. In this paper, we show a tight security bound on the 2k-LightMAC_Plus construction. In particular, we show that it provably achieves security up to 23n/4 queries. We also exhibit a matching attack on the construction with the same query complexity and hence establishing the tightness of the security bound. To the best of our knowledge, this is the first work that provably shows a message length independent 3n/4-bit tight security bound on a block cipher based variable input length PRF with two block cipher keys.
First Page
68
Last Page
88
DOI
10.1007/978-3-031-56232-7_4
Publication Date
1-1-2024
Recommended Citation
Datta, Nilanjan; Dutta, Avijit; and Kundu, Samir, "Tight Security Bound of 2k-LightMAC_Plus" (2024). Conference Articles. 905.
https://digitalcommons.isical.ac.in/conf-articles/905