Analysis of the Authenticated Cipher MORUS (v1)

Aleksandra Mileva; Vesna Dimitrova; Vesselin Velichkov

doi:10.1007/978-3-319-29172-7_4

Analysis of the Authenticated Cipher MORUS (v1)

Aleksandra Mileva, Vesna Dimitrova, Vesselin Velichkov

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract / Description of output

We present several new observations on the CAESAR candidate MORUS (v1). First, we report a collision on its backslashmathrm StateUpdate(S, M)function. Second, we describe a distinguisher in a nonce-reuse scenario with probability 1. Finally, we observe that the differences in some words of the state after the initialization have probabilities significantly higher than the random case. We note that the presented results do not threaten the security of the scheme. This is the first external analysis of the authenticated cipher MORUS.

Original language	English
Title of host publication	Cryptography and Information Security in the Balkans
Editors	Enes Pasalic, Lars R. Knudsen
Place of Publication	Cham
Publisher	Springer
Pages	45-59
Number of pages	15
ISBN (Print)	978-3-319-29172-7
DOIs	https://doi.org/10.1007/978-3-319-29172-7_4
Publication status	Published - 2016
Event	Second annual International Conference on Cryptography and Information Security - Koper, Slovenia Duration: 3 Sept 2015 → 4 Sept 2015 https://conferences.matheo.si/event/16/

Conference

Conference	Second annual International Conference on Cryptography and Information Security
Abbreviated title	BalkanCryptSec 2015
Country/Territory	Slovenia
City	Koper
Period	3/09/15 → 4/09/15
Internet address	https://conferences.matheo.si/event/16/

Access to Document

10.1007/978-3-319-29172-7_4

https://link.springer.com/chapter/10.1007%2F978-3-319-29172-7_4

Cite this

@inproceedings{3e92feab7c7c4ae9b2f87cb8f3a7c878,

title = "Analysis of the Authenticated Cipher MORUS (v1)",

abstract = "We present several new observations on the CAESAR candidate MORUS (v1). First, we report a collision on its backslashmathrm StateUpdate(S, M)function. Second, we describe a distinguisher in a nonce-reuse scenario with probability 1. Finally, we observe that the differences in some words of the state after the initialization have probabilities significantly higher than the random case. We note that the presented results do not threaten the security of the scheme. This is the first external analysis of the authenticated cipher MORUS.",

author = "Aleksandra Mileva and Vesna Dimitrova and Vesselin Velichkov",

year = "2016",

doi = "10.1007/978-3-319-29172-7_4",

language = "English",

isbn = "978-3-319-29172-7",

pages = "45--59",

editor = "Enes Pasalic and Knudsen, {Lars R.}",

booktitle = "Cryptography and Information Security in the Balkans",

publisher = "Springer",

address = "United Kingdom",

note = "Second annual International Conference on Cryptography and Information Security, BalkanCryptSec 2015 ; Conference date: 03-09-2015 Through 04-09-2015",

url = "https://conferences.matheo.si/event/16/",

}

TY - GEN

T1 - Analysis of the Authenticated Cipher MORUS (v1)

AU - Mileva, Aleksandra

AU - Dimitrova, Vesna

AU - Velichkov, Vesselin

PY - 2016

Y1 - 2016

N2 - We present several new observations on the CAESAR candidate MORUS (v1). First, we report a collision on its backslashmathrm StateUpdate(S, M)function. Second, we describe a distinguisher in a nonce-reuse scenario with probability 1. Finally, we observe that the differences in some words of the state after the initialization have probabilities significantly higher than the random case. We note that the presented results do not threaten the security of the scheme. This is the first external analysis of the authenticated cipher MORUS.

AB - We present several new observations on the CAESAR candidate MORUS (v1). First, we report a collision on its backslashmathrm StateUpdate(S, M)function. Second, we describe a distinguisher in a nonce-reuse scenario with probability 1. Finally, we observe that the differences in some words of the state after the initialization have probabilities significantly higher than the random case. We note that the presented results do not threaten the security of the scheme. This is the first external analysis of the authenticated cipher MORUS.

U2 - 10.1007/978-3-319-29172-7_4

DO - 10.1007/978-3-319-29172-7_4

M3 - Conference contribution

SN - 978-3-319-29172-7

SP - 45

EP - 59

BT - Cryptography and Information Security in the Balkans

A2 - Pasalic, Enes

A2 - Knudsen, Lars R.

PB - Springer

CY - Cham

T2 - Second annual International Conference on Cryptography and Information Security

Y2 - 3 September 2015 through 4 September 2015

ER -

Analysis of the Authenticated Cipher MORUS (v1)

Abstract / Description of output

Conference

Access to Document

Fingerprint

Cite this