World Library  
Flag as Inappropriate
Email this Article

Xor-encrypt-xor

Article Id: WHEBN0042194234
Reproduction Date:

Title: Xor-encrypt-xor  
Author: World Heritage Encyclopedia
Language: English
Subject: Block cipher modes of operation, Key management
Collection: Block Cipher Modes of Operation, Key Management
Publisher: World Heritage Encyclopedia
Publication
Date:
 

Xor-encrypt-xor

The xor-encrypt-xor (XEX) is a (tweakable) mode of operation of a block cipher. XEX-based tweaked-codebook mode with ciphertext stealing (XTS) is one of the more popular modes of operation for whole-disk encryption.

XEX is a common form of key whitening.

XEX is part of some smart card proposals.[1][2]

History

In 1984, to protect DES against exhaustive search attacks, Ron Rivest proposed DESX: XOR a prewhitening key to the plaintext, encrypt the result with DES using a secret key, and then XOR a postwhitening key to the encrypted result to produce the final ciphertext.[3]

In 1991, motivated by Rivest's DESX construction, Even and Mansour proposed a much simpler scheme (the "two-key Even-Mansour scheme"), which they suggested was perhaps the simplest possible block cipher: XOR the plaintext with a prewhitening key, apply a publicly known unkeyed permutation (in practice, a pseudorandom permutation) to the result, and then XOR a postwhitening key to the permuted result to produce the final ciphertext.[3][4]

Orr Dunkelman, Nathan Keller, and Adi Shamir later proved it was possible to simplify the Even-Mansour scheme even further and still retain the same provable security, producing the "single-key Even-Mansour scheme": XOR the plaintext with the key, apply a publicly known unkeyed permutation to the result, and then XOR the same key to the permuted result to produce the final ciphertext.[3]

Rogaway used XEX to allow efficient processing of consecutive blocks (with respect to the cipher used) within one data unit (e.g., a disk sector) for whole-disk encryption.[5]

Many whole-disk encryption systems—BestCrypt, dm-crypt, FreeOTFE, TrueCrypt, DiskCryptor, FreeBSD's geli, OpenBSD softraid disk encryption software, and Mac OS X Lion's FileVault 2 -- support XEX-based tweaked-codebook mode with ciphertext stealing (XTS).

References

  1. ^ Barış Ege, Elif Bilge Kavun, and Tolga Yalçın. "Memory Encryption for Smart Cards". 2011.
  2. ^ Emmanuel Prouff. "Smart Card Research and Advanced Applications". 2011. p. 201.
  3. ^ a b c Orr Dunkelman, Nathan Keller, and Adi Shamir. "Minimalism in Cryptography: The Even-Mansour Scheme Revisited".
  4. ^ Joan Daemen , Laboratorium Esat. "Limitations of the Even-Mansour Construction". 1992. doi: 10.1.1.34.397
  5. ^
This article was sourced from Creative Commons Attribution-ShareAlike License; additional terms may apply. World Heritage Encyclopedia content is assembled from numerous content providers, Open Access Publishing, and in compliance with The Fair Access to Science and Technology Research Act (FASTR), Wikimedia Foundation, Inc., Public Library of Science, The Encyclopedia of Life, Open Book Publishers (OBP), PubMed, U.S. National Library of Medicine, National Center for Biotechnology Information, U.S. National Library of Medicine, National Institutes of Health (NIH), U.S. Department of Health & Human Services, and USA.gov, which sources content from all federal, state, local, tribal, and territorial government publication portals (.gov, .mil, .edu). Funding for USA.gov and content contributors is made possible from the U.S. Congress, E-Government Act of 2002.
 
Crowd sourced content that is contributed to World Heritage Encyclopedia is peer reviewed and edited by our editorial staff to ensure quality scholarly research articles.
 
By using this site, you agree to the Terms of Use and Privacy Policy. World Heritage Encyclopedia™ is a registered trademark of the World Public Library Association, a non-profit organization.
 


Copyright © World Library Foundation. All rights reserved. eBooks from Project Gutenberg are sponsored by the World Library Foundation,
a 501c(4) Member's Support Non-Profit Organization, and is NOT affiliated with any governmental agency or department.