The LOCAL Attack: Cryptanalysis of the Authenticated Encryption Scheme ALE

@article{Khovratovich2013TheLA,
  title={The LOCAL Attack: Cryptanalysis of the Authenticated Encryption Scheme ALE},
  author={Dmitry Khovratovich and Christian Rechberger},
  journal={IACR Cryptology ePrint Archive},
  year={2013},
  volume={2013},
  pages={357}
}
We show how to produce a forged (ciphertext,tag) pair for the scheme ALE with data and time complexity of 2 ALE encryptions of short messages and the same number of authentication attempts. We use a differential attack based on a local collision, which exploits the availability of extracted state bytes to the adversary. Our approach allows for a time-data… CONTINUE READING