Portal de Periódicos da CAPES

On the Security of CTR + CBC-MAC

2003; Springer Science+Business Media; Linguagem: Inglês

10.1007/3-540-36492-7_7

1611-3349

Jakob Jönsson,

Coding theory and cryptography

We analyze the security of the CTR + CBC-MAC (CCM) encryption mode. This mode, proposed by Doug Whiting, Russ Housley, and Niels Ferguson, combines the CTR (“counter”) encryption mode with CBC-MAC message authentication and is based on a block cipher such as AES. We present concrete lower bounds for the security of CCM in terms of the security of the underlying block cipher. The conclusion is that CCM provides a level of privacy and authenticity that is in line with other proposed modes such as OCB.