Authenticated Encryption in the Face of Protocol and Side Channel Leakage

Guy Barwell, Daniel Martin, Elisabeth Oswald, Martijn Stam

Research output: Chapter in Book/Report/Conference proceedingConference Contribution (Conference Proceeding)

18 Citations (Scopus)


Authenticated encryption schemes in practice have to be robust against adversaries that have access to various types of leakage, for instance decryption leakage on invalid ciphertexts (protocol leakage), or leakage on the underlying primitives (side channel leakage). This work includes several novel contributions: we augment the notion of nonce-base authenticated encryption with the notion of continuous leakage and we prove composition results in the face of protocol and side channel leakage. Moreover, we show how to achieve authenticated encryption that is simultaneously both misuse resistant and leakage resilient, based on a sufficiently leakage resilient PRF, and finally we propose a concrete, pairing-based instantiation of the latter.
Original languageEnglish
Title of host publicationAdvances in Cryptology - ASIACRYPT 2017
Subtitle of host publication23rd International Conference on the Theory and Application of Cryptology and Information Security, Hong Kong, China, December 3-7, 2017, Proceedings, Part I
Number of pages31
ISBN (Electronic)9783319706948
ISBN (Print)9783319706931
Publication statusPublished - 30 Nov 2017

Publication series

NameLecture Notes in Computer Science
PublisherSpringer Berlin Heidelberg
ISSN (Print)0302-9743


  • secret-key cryptography/provable security
  • authenticated encryption
  • generic composition
  • leakage resilience
  • robustness

Fingerprint Dive into the research topics of 'Authenticated Encryption in the Face of Protocol and Side Channel Leakage'. Together they form a unique fingerprint.

Cite this