Formal Security Proof of CMAC and its Variants

EasyChair Preprint 104

14 pages•Date: April 28, 2018

Cécile Baritel-Ruet, François Dupressoir, Pierre-Alain Fouque and Benjamin Grégoire

Abstract

The CMAC standard, when initially proposed by Iwata and Kurosawa as OMAC1, was equipped with a complex game-based security proof. Following recent advances in formal verification for game-based security proofs, we formalize a proof of unforgeability for CMAC in EasyCrypt. A side effects of this proof are improvements of EasyCrypt libraries. This formal proof obtains security bounds very similar to Iwata and Kurosawa’s for CMAC, but also proves secure a certain number of intermediate constructions of independent interest, including ECBC, FCBC and XCBC. This work represents one more step in the direction of obtaining a reliable set of independently verifiable evidence for the security of international cryptographic standards.

Keyphrases: EasyCrypt, MAC, Security, block cipher mode, collision probability, formal proof, security proof

Links:	https://easychair.org/publications/preprint/Zjlx
	https://doi.org/10.29007/2xpx

BibTeX entry

BibTeX does not have the right entry for preprints. This is a hack for producing the correct reference:

@booklet{EasyChair:104,
  author    = {Cécile Baritel-Ruet and François Dupressoir and Pierre-Alain Fouque and Benjamin Grégoire},
  title     = {Formal Security Proof of CMAC and its Variants},
  doi       = {10.29007/2xpx},
  howpublished = {EasyChair Preprint 104},
  year      = {EasyChair, 2018}}

Download PDF Open PDF in browser