PudgyTurtle Mode Resists Bit-Flipping Attacks

David A. August; Anne C. Smith

doi:10.3390/cryptography7020025

Cryptography (May 2023)

PudgyTurtle Mode Resists Bit-Flipping Attacks

David A. August,
Anne C. Smith

Affiliations

David A. August: Department of Anesthesia, Massachusetts General Hospital, Boston, MA 02114, USA
Anne C. Smith: Independent Researcher, Boston, MA 02114, USA

DOI: https://doi.org/10.3390/cryptography7020025
Journal volume & issue: Vol. 7, no. 2
p. 25

Abstract

Read online

Cryptosystems employing a synchronous binary-additive stream cipher are susceptible to a generic attack called ’bit-flipping’, in which the ciphertext is modified to decrypt into a fraudulent message. While authenticated encryption and message authentication codes can effectively negate this attack, encryption modes can also provide partial protection against bit-flipping. PudgyTurtle is a stream-cipher mode which uses keystream to encode (via an error-correcting code) and to encipher (via modulo-2 addition). Here, we describe the behavior of this mode during bit-flipping attacks and demonstrate how it creates uncertainty about the number, positions, and identities of decrypted bits that will be affected.

Published in Cryptography

ISSN: 2410-387X (Online)
Publisher: MDPI AG
Country of publisher: Switzerland
LCC subjects: Technology
Website: http://www.mdpi.com/journal/cryptography

About the journal

Abstract

Keywords