Deterministic Encryption with the Thorp Shuffle

被引:2
作者
Morris, Ben [1 ]
Rogaway, Phillip [2 ]
Stegers, Till [2 ,3 ]
机构
[1] Univ Calif Davis, Dept Math, Davis, CA 95616 USA
[2] Univ Calif Davis, Dept Comp Sci, Davis, CA 95616 USA
[3] Univ Calif Davis, Davis, CA 95616 USA
来源
JOURNAL OF CRYPTOLOGY | 2018年 / 31卷 / 02期
基金
美国国家科学基金会;
关键词
Card shuffling; Coupling; Format-preserving encryption; Modes of operation; Symmetric encryption; Thorp shuffle; Unbalanced Feistel network; MIXING TIME-BOUNDS; PSEUDORANDOM PERMUTATIONS; LUBY-RACKOFF; BLOCK CIPHERS; SECURITY; FEISTEL; NETWORKS; SCHEME; ROUNDS; BENES;
D O I
10.1007/s00145-017-9262-z
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
We analyze the security of the Thorp shuffle, or, equivalently, a maximally unbalanced Feistel network. Roughly said, the Thorp shuffle on N cards mixes any of them in steps. Correspondingly, making O(r) passes of maximally unbalanced Feistel over an n-bit string ensures CCA security to queries. Our results, which employ Markov chain techniques, particularly couplings, help to justify a practical, although still relatively inefficient, blockcipher-based scheme for deterministically enciphering credit card numbers and the like.
引用
收藏
页码:521 / 536
页数:16
相关论文
共 42 条
[1]  
Aiello W, 1996, LECT NOTES COMPUT SC, V1070, P307
[2]  
[Anonymous], 2002, TOPICS CRYPTOLGY CT, DOI DOI 10.1007/3-540-45760-7
[3]  
Baignères T, 2007, LECT NOTES COMPUT SC, V4876, P184
[4]  
Bellarc M, 2009, LECT NOTES COMPUT SC, V5867, P295, DOI 10.1007/978-3-642-05445-7_19
[5]  
Bellare M., 2010, ADDENDUM FFX M UNPUB
[6]   Message-Recovery Attacks on Feistel-Based Format Preserving Encryption [J].
Bellare, Mihir ;
Viet Tung Hoang ;
Tessaro, Stefano .
CCS'16: PROCEEDINGS OF THE 2016 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2016, :444-455
[7]  
Brightwell M., 1997, 20 NISSC P, P141
[8]   Fast generation of random permutations via networks simulation [J].
Czumaj, A ;
Kanarek, P ;
Kutylowski, M ;
Lorys, K .
ALGORITHMICA, 1998, 21 (01) :2-20
[9]  
Desai A, 2000, LECT NOTES COMPUT SC, V1976, P503
[10]  
Dworkin M., 2016, NIST SPECIAL PUBLICA, V800
12345