[ / / / / / / / / / / / / / ] [ dir / agatha / chicas / feet / hikki / imouto / lds / rec / trap ][Options][ watchlist ]

/tech/ - Technology

You can now write text to your AI-generated image at https://aiproto.com It is currently free to use for Proto members.
Name
Email
Subject
Comment *
File
Select/drop/paste files here
* = required field[▶ Show post options & limits]
Confused? See the FAQ.
Expand all images
New Nerve Center Combination

File (hide): 48728ca2c7ffe21⋯.jpg (258.34 KB, 2048x1536, 4:3, DXjF1zCX0AArgXw.jpg large.jpg) (h) (u)

[–]

 No.880558[Watch Thread][Show All Posts]

CAESAR finalists announced

>Lightweight

Ciphers that are suitable for hardware-constrained applications (e.g., IoT). Low-cost implementation (in custom hardware or microcontrollers) prioritized over performance.

Finalists: ACORN, Ascon

>High performance

Ciphers that are designed to perform fast on modern general purpose computers. Improved replacements for AES-GCM and ChaCha20/Poly1305.

Finalists: AEGIS, MORUS, OCB

>Defense in depth:

Prioritizes security over performance. Notably, both of the finalists for this use case are nonce misuse-resistant.

Finalists: COLM, Deoxys-II

https://competitions.cr.yp.to/caesar-submissions.html

Discuss.

 No.880597>>880604 >>880627

I don't know what any of these standards are. And are these standards free-as-in-freedom?


 No.880604

>>880597

CAESAR (Competition for Authenticated Encryption: Security, Applicability, and Robustness) will identify a portfolio of authenticated ciphers that (1) offer advantages over AES-GCM and (2) are suitable for widespread adoption. Cryptographic algorithm designers are invited to submit proposals of authenticated ciphers to CAESAR. All proposals will be made public for evaluation.

CAESAR is run by the international cryptologic research community. The University of Illinois at Chicago applied to NIST for funding for a "Cryptographic competitions" grant, and is using some of this funding to support CAESAR benchmarking and the Directions in Authenticated Ciphers workshop series.


 No.880605

Thanks for sharing, OP


 No.880609>>881192

>no keyak for use case 3

This makes me sad. What the fuck is COLM and Deoxys-II???? How can they be better than Keccak????

>Daniel J. Bernstein

Oh I see now.


 No.880618>>880620

>Hongjun Wu has 4 different submissions and 3 in the final

they will sell his families organs to the jews if he doesn't win


 No.880620

>>880618

>Will there be a single CAESAR winner?

>The CAESAR selection committee will select a portfolio of algorithms. Experience with previous competitions suggests that a single-algorithm portfolio is unlikely to provide as much value as a multiple-algorithm portfolio. Of course, final decisions are up to the selection committee.


 No.880627>>880630

>>880597

Can we please ban multiple question marks in a row niggers?


 No.880630

>>880627

>haha guys i'm one of you XDDDD

>fucking niggers right??? XDDD

XDDDDDDDDDDDDD

ebin, dude


 No.880728>>880734 >>880735

Isn't AES and ChaCha20 theoretically unbreakable? Well, I mean there indeed was an attack that on AES that was more efficient than simply bruteforcing it but I mean was it so bad that it warrants the replacement of the encryption algorithm? What about my GPG encrypted backups online, are they bust?


 No.880734

>>880728

Yea afaik the main symmetric key crypto systems are both in practice and theoretically sound vs the things like RSA and ECC which have big theoretical holes.


 No.880735>>880736

>>880728

AES is difficult to implement securely. Not every CPU has AES-NI.

ChaCha20 is only a stream cipher. If you want authenticated encryption you have to couple it with a MAC algorithm.

The reason for this competition isn't that AES/ChaCha20 are insecure (they are very secure if used correctly). The reason for this compettion is to find algorithms that perform authenticated encryption in one pass while being easier to implement than AES-GCM.


 No.880736>>880739 >>880741

>>880735

What does authenticated mean here? So they are just looking for algorithms that allow prevention of information leaks through side channel attacks like spectre?


 No.880739

>>880736

Things like a sha256 for a MAC

https://en.wikipedia.org/wiki/Authenticated_encryption


 No.880741

>>880736

https://cryptopp.com/wiki/Authenticated_encryption


 No.881172

File (hide): d1a008d48efb016⋯.pdf (356.21 KB, SpongeDuplex.pdf) (h) (u)

>At a high level, COLM can be seen as a block cipher based Encrypt-Linear mix-Encrypt mode, designed with the goal to achieve online misuse resistance, to be fully parallelizable, and to be secure against blockwise adaptive adversaries.

>COLM uses AES-128 with a key and state of size 128 bits.

>In this note, we propose Deoxys, a new authenticated encryption design based on a tweakable block cipher Deoxys-BC using the well-studied AES round function as a building block.

Fucking AES trash won for defense in depth. What a fucking joke.

I suggest that you read the attached PDF and this: https://keccak.team/sponge_duplex.html


 No.881192>>881219 >>881221 >>881247 >>882390

>>880609

Bernstein is the number one cryptographer of all time. His word is practically gospel to cryptographers, and for good reason, he's a mega-brain. Fuck off with your /pol/ shit


 No.881219>>881241

>>881192

>muh eceleb

Great appeal to authority, m8.

>/pol/

Please quote what part of my message is /pol/???

Bernstein is still assmad because Cubehash was rejected so now he has it in for Keccak. That is also why he made Gimli. Pathetic dwarf.


 No.881221>>881242

>>881192

>number one cryptographer of all time

Also LMAO at this. He is good but hardly the best.


 No.881241>>881243

>>881219

I'm not appealing to authority, but stating that he *is* the authority. I'm appealing to the fact he's an authority *for a reason*.

>/pol/

The way you contributed nothing useful but pointed out his name (which coincidentally ends in -stein) gave that impression.


 No.881242>>881247 >>882390

>>881221

I am not agreeing or disagreeing with you but you cannot attempt to refute one man's statement of who the best is without providing your own alternative. Someone must be the best, for the other one to not be the best.

Who is the best?


 No.881243

>>881241

Triggered Bernstein fanboy spotted.

>contributed nothing useful

(You)


 No.881247>>882390

>>881242

>I am not agreeing or disagreeing with you but you cannot attempt to refute one man's statement of who the best is without providing your own alternative.

I can and I did.

But here is my alternative: https://github.com/pvial00

I have no argument as to why he is the best but neither does >>881192 have one.


 No.882390

>>881192

>>881242

>>881247

You're asking for knowledge on the best cryptographers? Don't you mean the best alive?

I seem to recall a time when the best cryptographers were murdered by the alphabets.

Don't insult their memories assholes.


 No.882418

y no skein/threefish?



[Return][Go to top][Catalog][Screencap][Nerve Center][Cancer][Update] ( Scroll to new posts) ( Auto) 5
24 replies | 1 images | Page ?
[Post a Reply]
[ / / / / / / / / / / / / / ] [ dir / agatha / chicas / feet / hikki / imouto / lds / rec / trap ][ watchlist ]