NationMaster - Encyclopedia: CCM mode

CCM mode (Counter with CBC-MAC) is a mode of operation for cryptographic block ciphers. It is an authenticated encryption algorithm designed to provide both authentication and privacy. CCM mode is only defined for 128-bit block ciphers. In RFC 3610, it is defined for use with 128-bit AES. This article does not cite its references or sources. ... In cryptography, a block cipher operates on blocks of fixed length, often 64 or 128 bits. ... In cryptography, a block cipher is a symmetric key cipher which operates on fixed-length groups of bits, termed blocks, with an unvarying transformation. ... Authenticated Encryption (AE) is a term used to describe encryption systems which simultaneously protect privacy and authenticity. ... Authentication is the act of establishing or confirming something or someone as authentic. ... Privacy is the ability of an individual or group to stop information about themselves from becoming known to people other than those they choose to give the information to. ... General Designer(s) Vincent Rijmen and Joan Daemen First published 1998 Derived from Square (cipher) Cipher(s) based on this design Crypton (cypher), Anubis (cipher), GRAND CRU Algorithm detail Block size(s) 128 bits note Key size(s) 128, 192 or 256 bits note Structure Substitution-permutation network Number of...

Encryption and authentication

As the name suggests, CCM mode combines the well-known counter mode of encryption with the well-known CBC-MAC mode of authentication. The key insight is that the same encryption key can be used for both, provided that the counter values used in the encryption do not collide with the (pre-)initialization vector used in the authentication. A proof of security exists for this combination, based on the security of the underlying block cipher. In fact, the proof also applies to a generalization of CCM for any size block cipher, and in fact, for any size cryptographically strong pseudo-random function (since in both counter mode and CBC-MAC, the block cipher is only ever used in one direction). In cryptography, a block cipher operates on blocks of fixed length, often 64 or 128 bits. ... In cryptography, an initialization vector (IV) is a block of bits that is combined with the first block of data in any of several modes of a block cipher. ... In modern cryptography, symmetric key ciphers are generally divided into stream ciphers and block ciphers. ...

CCM mode was designed by Russ Housley, Doug Whiting and Niels Ferguson. At the time CCM mode was developed, Russ Housley was employed by RSA Labratories. RSA Security is a public company NASDAQ: RSAS. Its headquarters are in Bedford, Massachusetts, and it maintains offices in Ireland, the United Kingdom, Singapore, and Japan. ...

Performance

CCM requires two block cipher encryption operations per each block of encrypted and authenticated message and one encryption per each block of associated authenticated data.

Patents

The catalyst for the development of CCM mode was the submission of OCB mode for inclusion in the IEEE 802.11i standard. Opposition was voiced to the inclusion of OCB mode because of a pending patent application on the algorithm. Inclusion of a patented algorithm meant significant licensing complications for implementors of the standard. OCB mode (Offset Codebook Mode) is a mode of operation for cryptographic block ciphers. ... IEEE 802. ... A patent is a set of exclusive rights granted by a state to a person for a fixed period of time in exchange for the regulated, public disclosure of certain details of a device, method, process or composition of matter (substance) (known as an invention) which is new, inventive, and... Flowcharts are often used to represent algorithms. ...

While the inclusion of OCB mode was disputed based on these intellectual property issues, it was agreed that the simplification provided by an authenticated encryption system was desirable. Therefor Housley, et al. developed CCM mode as a potential alternative that was not encumbered by patents. Intellectual property, or IP, refers to a legal entitlement which sometimes attaches to the expressed form of an idea, or to some other intangible subject matter. ...

Even though CCM mode is less efficient than OCB mode, a patent free solution was preferable to one complicated by patent licensing issues. Therefore, CCM mode went on to become a mandatory component of the IEEE 802.11i standard, and OCB mode was subjugated to the designation of an optional component.

See also

External links

References

Category: Block ciphers In cryptography, a block cipher is a symmetric key cipher which operates on fixed-length groups of bits, termed blocks, with an unvarying transformation. ... In cryptography, 3-Way is a block cipher designed in 1994 by Joan Daemen, who also (with Vincent Rijmen) designed Rijndael, the winner of NISTs Advanced Encryption Standard (AES) contest. ... General Designer(s) Vincent Rijmen and Joan Daemen First published 1998 Derived from Square (cipher) Cipher(s) based on this design Crypton (cypher), Anubis (cipher), GRAND CRU Algorithm detail Block size(s) 128 bits note Key size(s) 128, 192 or 256 bits note Structure Substitution-permutation network Number of... Akelarre is a block cipher proposed in 1996, and combined features from IDEA and RC5. ... Anubis is a block cipher which operates on data blocks of 128 bits, accepting keys of length 32N bits (N=4. ... General Designer(s) Bruce Schneier First published 1993 Derived from - Cipher(s) based on this design Twofish Algorithm detail Block size(s) 64 bits Key size(s) 32-448 bits in steps of 8 bits; default 128 bits Structure Feistel network Number of rounds 16 Best cryptanalysis Four rounds of... In cryptography, Camellia is a block cipher that has been evaluated favorably by several organisations, including the European Unions NESSIE project (a selected algorithm), and the Japanese CRYPTREC project (a recommended algorithm). ... Three rounds of the CAST-128 block cipher In cryptography, CAST-128 (alternatively CAST5) is a block cipher used in a number of products, notably as the default cipher in some versions of GPG and PGP. It has also been approved for Canadian government use by the Communications Security Establishment. ... In cryptography, CAST-256 (or CAST6) is a block cipher published in June 1998 and submitted as a candidate for the Advanced Encryption Standard (AES). ... In cryptography, the Cellular Message Encryption Algorithm (CMEA) is a block cipher which was used for securing mobile phones in the United States. ... In cryptography, the CS-Cipher is a block cipher invented by Jacques Stern and Serge Vaudenay in 1998. ... Deal can refer to: an agreement reached after negotiation, for example a contract to sell as a dealer or dealership a bargain Deal$, a U.S. dollar store a Deal, or File, an opportunity to complete a real estate transaction, or Close a Deal the town of Deal, Kent, England... General Designer(s) IBM First published 1975 (January 1977 as the standard) Derived from Lucifer (cipher) Cipher(s) based on this design Triple DES, G-DES, DES-X, LOKI89, ICE Algorithm detail Block size(s) 64 bits Key size(s) 56 bits Structure Feistel network Number of rounds 16 Best... In cryptography, DES-X (or DESX) is a variant on the DES (Data Encryption Standard) block cipher intended to increase the complexity of a brute force attack using a technique called key whitening. ... General Designer(s) Akihiro Shimizu and Shoji Miyaguchi (NTT) First published FEAL-4 in 1987; FEAL-N/NX in 1990 Derived from - Cipher(s) based on this design - Algorithm detail Block size(s) 64 bits Key size(s) 64 bits (128 bits for FEAL-NX) Structure Feistel network Number of... General Designer(s) Pascal Junod, Serge Vaudenay First published 2003 Derived from IDEA Cipher(s) based on this design None Algorithm detail Block size(s) 64, 128 bits Key size(s) 0-256 bits Structure Lai-Massey scheme Number of rounds 12 Best cryptanalysis Integral attack on 7 round FOX... Suborders Archaeobatrachia Mesobatrachia Neobatrachia - Full list of families Frog is the common name for amphibians in the order Anura. ... In cryptography, the Generalized DES Scheme (G-DES or GDES) is a variant of the DES block cipher designed to speed-up the encryption. ... Diagram of GOST In cryptography, GOST (Russian Ð“ÐžÐ¡Ð¢) (GOsudarstvennyi STandard, Russian for Government Standard) is a symmetric key block cipher published in 1990 as the Soviet standard (GOST 28147-89). ... In cryptography, ICE (Information Concealment Engine) is a block cipher published by Kwan in 1997. ... General Designer(s) James Massey, Xuejia Lai First published 1991 Derived from PES Cipher(s) based on this design MESH, Akelarre, FOX (IDEA NXT) Algorithm detail Block size(s) 64 bits Key size(s) 128 bits Structure Substitution-permutation network Number of rounds 8. ... In cryptography, KASUMI, also termed A5/3, is a block cipher used in the confidentiality (f8) and integrity algorithms (f9) for 3GPP mobile communications. ... In cryptography, KHAZAD is a block cipher designed by Paulo S. L. M. Barreto together with Vincent Rijmen, one of the designers of the Advanced Encryption Standard (Rijndael). ... In cryptography, Khufu and Khafre are two block ciphers designed by Ralph Merkle in 1989 while working at Xeroxs Palo Alto Research Center. ... This picture, from an 18th century Icelandic manuscript, shows Loki with his invention - the fishing net. ... General Designer(s) Lawrie Brown, assisted by Jennifer Seberry and Josef Pieprzyk First published 1998 Derived from LOKI91 Cipher(s) based on this design - Algorithm detail Block size(s) 128 bits Key size(s) 128, 192 or 256 bits Structure Feistel network Number of rounds 16 Best cryptanalysis Linear cryptanalysis... In cryptography, Lucifer was the name given to several of the earliest civilian block ciphers, developed by Horst Feistel and his colleagues at IBM. Lucifer was a direct precursor to the Data Encryption Standard. ... In cryptography, MacGuffin is a block cipher created in 1994 by Bruce Schneier and Matt Blaze at a Fast Software Encryption workshop. ... In cryptography, Madryga is a block cipher created in 1984 by W. E. Madryga. ... In cryptography, MAGENTA is a symmetric key block cipher developed by Deutsche Telekom. ... For the Roman god, see Mars (god). ... In cryptography, MISTY1 (or MISTY-1) is a block cipher designed in 1995 by Mitsuru Matsui for Mitsubishi Electric. ... In cryptography, MMB (Modular Multiplication-based Block cipher) is a block cipher designed by Joan Daemen as an improved replacement for the IDEA cipher. ... In cryptography, NewDES is a symmetric key block cipher. ... Noekeon is a block cipher with a block and key length of 128 bits. ... General Designer(s) Ron Rivest First published source code leaked 1996 (designed 1987) Derived from - Cipher(s) based on this design - Algorithm detail Block size(s) 64 bits Key size(s) 8â€“128 bits, in steps of eight bits; default 64 bits Structure Source-heavy Feistel network Number of rounds... General Designer(s) Ron Rivest First published 1994 Derived from - Cipher(s) based on this design RC6, Akelarre Algorithm detail Block size(s) 32, 64 or 128 bits (64 suggested) Key size(s) 0 to 2040 bits (128 suggested) Structure Feistel network Number of rounds 12 suggested originally Best cryptanalysis... In cryptography, RC6 is a symmetric key block cipher derived from RC5. ... In cryptography, REDOC II and REDOC III are block ciphers designed by Michael Wood for Cryptech Inc and are optimised for use in software. ... Red Pike is a classified United Kingdom government cipher, proposed for use by the National Health Service by GCHQ, but designed for a broad range of applications in the British government [1]. Little is publicly known about Red Pike, except that it is a block cipher with a 64-bit... Uplandia Regiment, or Upplands regemente, also S 1, is a Swedish Army signaling regiment that traces its origins back to the 19th Century. ... This article is about the encryption algorithm. ... SEED is a block cipher developed by the Korean Information Security Agency. ... Serpent is a symmetric key block cipher which was a finalist in the Advanced Encryption Standard contest, where it came second to Rijndael. ... SHACAL-1 and SHACAL-2 are block ciphers based on cryptographic hash function from the SHA family. ... Orders Hexanchiformes Squaliformes Pristiophoriformes Squatiniformes Heterodontiformes Orectolobiformes Carcharhiniformes Lamniformes Sharks are a group (superorder Selachimorpha) of fish, with a full cartilaginous skeleton, a streamlined body plan, with normally 5, but up to 7 (depending on species) gill slits along the side of, or beginning slightly behind, the head (in some... In cryptography, Skipjack is a block cipher â€” an algorithm for encryption â€” developed by the US National Security Agency (NSA). ... In cryptography, Square (sometimes written SQUARE) is a block cipher invented by Joan Daemen and Vincent Rijmen. ... Two rounds of the TEA block cipher In cryptography, the Tiny Encryption Algorithm (TEA) is a block cipher notable for its simplicity of description and implementation (typically a few lines of code). ... In cryptography, Triple DES (also 3DES) is a block cipher formed from the Data Encryption Standard (DES) cipher. ... In cryptography, Twofish is a symmetric key block cipher with a block size of 128 bits and key sizes up to 256 bits. ... General Designer(s) Roger Needham and David Wheeler First published 1997 Derived from Tiny Encryption Algorithm (TEA) Cipher(s) based on this design - Algorithm detail Block size(s) 64 bits Key size(s) 128 bits Structure Feistel network Number of rounds variable; recommended 64 Feistel rounds; 32 cycles Best cryptanalysis... In cryptography, a Feistel cipher is a block cipher with a particular structure, named after IBM cryptographer Horst Feistel; it is also commonly known as a Feistel network. ... The key-schedule of DES In cryptography, the algorithm for computing the subkeys for each round in a product cipher from the encryption (or decryption) key is called the key schedule. ... In cryptography, a product cipher is a popular type of block cipher that works by executing in sequence a number of simple transformations such as substitution, permutation, and modular arithmetic. ... In cryptography, a substitution box (or S-box) is a basic component of symmetric key algorithms. ... In cryptography, an SP-network, or substitution-permutation network (SPN), is a series of linked mathematical operations used in block cipher algorithms such as AES. These networks consist of S-boxes and P-boxes that transform blocks of input bits into output bits. ... The EFFs US$250,000 DES cracking machine contained over 18,000 custom chips and could brute force a DES key in a matter of days â€” the photograph shows a DES Cracker circuit board fitted with several Deep Crack chips In cryptanalysis, a brute force attack is a method... In cryptography, linear cryptanalysis is a general form of cryptanalysis based on finding affine approximations to the action of a cipher. ... Differential cryptanalysis is a general form of cryptanalysis applicable primarily to block ciphers, but also to stream ciphers and cryptographic hash functions. ... Cryptanalysis (from the Greek kryptÃ³s, hidden, and analÃ½ein, to loosen or to untie) is the study of methods for obtaining the meaning of encrypted information, without access to the secret information which is normally required to do so. ... In cryptography, mod n cryptanalysis is an attack applicable to block and stream ciphers. ... In cryptography, a related-key attack is any form of cryptanalysis which presumes that the attacker has the capability to consider the operation of a cipher under several different keys. ... New Scientist magazine featured the XSL attack in June 2003 with an article billed as Cipher crisis: the end of internet privacy. In cryptography, the XSL attack is a method of cryptanalysis for block ciphers. ... On January 2, 1997 the National Institute of Standards and Technology, or NIST, called for cryptographers to propose a new standard block cipher for United States Government use in non-classified but sensitive applications. ... CRYPTREC is the Cryptography Research and Evaluation Committee set up by the Japanese Government to evaluate and recommend cryptographic techniques for government and industrial use. ... NESSIE (New European Schemes for Signatures, Integrity and Encryption) was a European research project funded from 2000–2003 to identify secure cryptographic primitives. ... This article is about cryptography; for other meanings, see snowball effect. ... In modern cryptography, symmetric key ciphers are generally divided into stream ciphers and block ciphers. ... In cryptography, an initialization vector (IV) is a block of bits that is combined with the first block of data in any of several modes of a block cipher. ... In cryptography, the key size (alternatively key length) is a measure of the number of possible keys which can be used in a cipher. ... In cryptography, a block cipher operates on blocks of fixed length, often 64 or 128 bits. ... In cryptanalysis, the piling-up lemma is a principle used in linear cryptanalysis to construct linear approximations to the action of block ciphers. ... In cryptography, a weak key is a key which when used with a specific cipher, makes the cipher behave in some undesirable way. ...

Contents