International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

libInterMAC: Beyond Confidentiality and Integrity in Practice

Authors:
Martin R. Albrecht , Royal Holloway, University of London
Torben Brandt Hansen , Royal Holloway, University of London
Kenneth G. Paterson , Royal Holloway, University of London
Download:
DOI: 10.13154/tosc.v2019.i1.46-83
URL: https://tosc.iacr.org/index.php/ToSC/article/view/7397
Search ePrint
Search Google
Presentation: Slides
Abstract: Boldyreva et al. (Eurocrypt 2012) defined a fine-grained security model capturing ciphertext fragmentation attacks against symmetric encryption schemes. The model was extended by Albrecht et al. (CCS 2016) to include an integrity notion. The extended security model encompasses important security goals of SSH that go beyond confidentiality and integrity to include length hiding and denial-of-service resistance properties. Boldyreva et al. also defined and analysed the InterMAC scheme, while Albrecht et al. showed that InterMAC satisfies stronger security notions than all currently available SSH encryption schemes. In this work, we take the InterMAC scheme and make it fully ready for use in practice. This involves several steps. First, we modify the InterMAC scheme to support encryption of arbitrary length plaintexts and we replace the use of Encrypt-then-MAC in InterMAC with modern noncebased authenticated encryption. Second, we describe a reference implementation of the modified InterMAC scheme in the form of the library libInterMAC. We give a performance analysis of libInterMAC. Third, to test the practical performance of libInterMAC, we implement several InterMAC-based encryption schemes in OpenSSH and carry out a performance analysis for the use-case of file transfer using SCP. We measure the data throughput and the data overhead of using InterMAC-based schemes compared to existing schemes in OpenSSH. Our analysis shows that, for some network set-ups, using InterMAC-based schemes in OpenSSH only moderately affects performance whilst providing stronger security guarantees compared to existing schemes.
Video from TOSC 2019
BibTeX
@article{tosc-2019-29264,
  title={libInterMAC: Beyond Confidentiality and Integrity in Practice},
  journal={IACR Transactions on Symmetric Cryptology},
  publisher={Ruhr-Universität Bochum},
  volume={2019, Issue 1},
  pages={46-83},
  url={https://tosc.iacr.org/index.php/ToSC/article/view/7397},
  doi={10.13154/tosc.v2019.i1.46-83},
  author={Martin R. Albrecht and Torben Brandt Hansen and Kenneth G. Paterson},
  year=2019
}