Abstract
In [12] Vaudenay presented side-channel attacks on the CBC encryption mode cipher under the padding oracle attack models, which enable an adversary to determine the correct message with knowledge of ciphertext. Black and Urtubia generalized these attacks in several directions, considering various padding schemes [4]. In this paper we extend these attacks to other kinds of modes of operation for block ciphers. Specifically, we apply the padding oracle attacks to multiple modes of operation with various padding schemes. As a results of this paper, 12 out of total 36 double modes and 22 out of total 216 triple modes are vulnerable to the padding oracle attacks. It means that the 12 double modes and the 22 triple modes exposed to these types of attacks do not offer the better security than single modes.
This work was supported by MOST research fund (M1-0326-08-0001).
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Baldwin, R., Rivest, R.: The RC5, RC5-CBC, RC5-CBC-Pad, and RC5-CTS algorithms, RFC 2040 (1996)
Biham, E.: Cryptanalysis of multiple modes of operation. Journal of Cryptology 11(1), 45–58 (1998)
Biham, E.: Cryptanalysis of triple modes of operation. Journal of Cryptology 12(3), 161–184 (1999)
Black, J., Urtubia, H.: Side-Channel Attacks on Symmetric Encryption Schemes: The Case for Authenticated Encryption. In: Proc. of 11th USENIX Security Symposium, San Francisco, pp. 327–338 (2002)
Hong, D., Sung, J., Hong, S., Lee, W., Lee, S., Lim, J., Yi, O.: Known-IV Attacks on Triple Modes of Operation of Block Ciphers. In: Boyd, C. (ed.) ASIACRYPT 2001. LNCS, vol. 2248, pp. 208–221. Springer, Heidelberg (2001)
ISO/IEC 9797-1: Information technology, Security tehniques- Message Auhentication Codes (MACs). Part 1: Mechanisms using a block cipher (1999)
ISO/IEC FDIS 10118-1: Information technology, Security techniques. Hashfunctions. Part 1: General (Final Draft) (2000)
Klima, V., Rosa, T.: Side Channel Attacks on CBC Encrypted Messages in the PKCS#7 Format, Cryptology ePrint Archive, Report 2003/098 (2003)
Paterson, G., Yau, A.: Padding Oracle Attacks on the ISO CBC Mode Encryption Standard. In: Okamoto, T. (ed.) CT-RSA 2004. LNCS, vol. 2964, pp. 305–323. Springer, Heidelberg (2004)
Sung, J., Hong, D., Lee, S.: Key Recovery Attacks on the RMAC, TMAC, and IACBC. In: Safavi-Naini, R., Seberry, J. (eds.) ACISP 2003. LNCS, vol. 2727, pp. 265–273. Springer, Heidelberg (2003)
Sung, J., Lee, S., Lim, J., Lee, W., Yi, O.: Concrete Security Analysis of CTR-OFB and CTR-CFB Modes of Operation. In: Kim, K.-c. (ed.) ICISC 2001. LNCS, vol. 2288, pp. 103–113. Springer, Heidelberg (2002)
Vaudenay, S.: Security Flaws Induced by CBC Padding - Applications to SSL, IPSEC, WTLS. In: Knudsen, L.R. (ed.) EUROCRYPT 2002. LNCS, vol. 2332, pp. 534–545. Springer, Heidelberg (2002)
Wagner, D.: Cryptanalysis of some recently-proposed multiple modes of operation. In: Vaudenay, S. (ed.) FSE 1998. LNCS, vol. 1372, pp. 254–269. Springer, Heidelberg (1998)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Lee, T., Kim, J., Lee, C., Sung, J., Lee, S., Hong, D. (2005). Padding Oracle Attacks on Multiple Modes of Operation. In: Park, Cs., Chee, S. (eds) Information Security and Cryptology – ICISC 2004. ICISC 2004. Lecture Notes in Computer Science, vol 3506. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11496618_25
Download citation
DOI: https://doi.org/10.1007/11496618_25
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-26226-8
Online ISBN: 978-3-540-32083-8
eBook Packages: Computer ScienceComputer Science (R0)