{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T07:21:59Z","timestamp":1740122519337,"version":"3.37.3"},"reference-count":79,"publisher":"Springer Science and Business Media LLC","issue":"3","license":[{"start":{"date-parts":[[2017,3,4]],"date-time":"2017-03-04T00:00:00Z","timestamp":1488585600000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"DOI":"10.13039\/501100001832","name":"Radboud University","doi-asserted-by":"crossref","id":[{"id":"10.13039\/501100001832","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Des. Codes Cryptogr."],"published-print":{"date-parts":[[2018,3]]},"DOI":"10.1007\/s10623-017-0347-3","type":"journal-article","created":{"date-parts":[[2017,3,4]],"date-time":"2017-03-04T01:31:56Z","timestamp":1488591116000},"page":"623-640","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":7,"title":["Connecting tweakable and multi-key blockcipher security"],"prefix":"10.1007","volume":"86","author":[{"given":"Jooyoung","family":"Lee","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Atul","family":"Luykx","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Bart","family":"Mennink","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kazuhiko","family":"Minematsu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,3,4]]},"reference":[{"key":"347_CR1","doi-asserted-by":"crossref","unstructured":"Andreeva E., Bogdanov A., Dodis Y., Mennink B., Steinberger J.P.: On the indifferentiability of key-alternating ciphers. In: Canetti R., Garay J.A. (eds.) CRYPTO 2013. LNCS, Part I, vol. 8042, pp. 531\u2013550. Springer, Heidelberg (2013).","DOI":"10.1007\/978-3-642-40041-4_29"},{"key":"347_CR2","doi-asserted-by":"crossref","unstructured":"Andreeva E., Bogdanov A., Luykx A., Mennink B., Tischhauser E., Yasuda K.: Parallelizable and authenticated online ciphers. In: Sako K., Sarkar P. (eds.) ASIACRYPT 2013. LNCS, Part I, vol. 8269, pp. 424\u2013443. Springer, Heidelberg (2013).","DOI":"10.1007\/978-3-642-42033-7_22"},{"key":"347_CR3","doi-asserted-by":"crossref","unstructured":"Andreeva E., Daemen J., Mennink B., Van Assche G.: Security of keyed sponge constructions using a modular proof approach. In: Leander G. (ed.) FSE 2015. LNCS, vol. 9054, pp. 364\u2013384. Springer, Heidelberg (2015).","DOI":"10.1007\/978-3-662-48116-5_18"},{"key":"347_CR4","doi-asserted-by":"crossref","unstructured":"Albrecht M.R., Farshim P., Paterson K.G., Watson G.J.: On cipher-dependent related-key attacks in the ideal-cipher model. In: Joux A. (ed.) FSE 2011. LNCS, vol. 6733, pp. 128\u2013145. Springer, Heidelberg (2011).","DOI":"10.1007\/978-3-642-21702-9_8"},{"key":"347_CR5","doi-asserted-by":"crossref","unstructured":"Bellare M., Boldyreva A., Micali S.: Public-key encryption in a multi-user setting: security proofs and improvements. In: Preneel B. (ed.) EUROCRYPT 2000. LNCS, vol. 1807, pp. 259\u2013274. Springer, Heidelberg (2000).","DOI":"10.1007\/3-540-45539-6_18"},{"key":"347_CR6","unstructured":"Bellare M., Bernstein D.J., Tessaro S.: Hash-function based PRFs: AMAC and its multi-user security. In: Fischlin M., Coron J.-S. (eds.) EUROCRYPT 2016. LNCS, Part I, vol. 9665, pp. 566\u2013595. Springer, Heidelberg (2016)."},{"issue":"3","key":"347_CR7","doi-asserted-by":"crossref","first-page":"117","DOI":"10.1016\/S0020-0190(02)00269-7","volume":"84","author":"E Biham","year":"2002","unstructured":"Biham E.: How to decrypt or even substitute DES-encrypted messages in 2 $${}^{\\text{28 }}$$ 28 steps. Inf. Process. Lett. 84(3), 117\u2013124 (2002).","journal-title":"Inf. Process. Lett."},{"key":"347_CR8","doi-asserted-by":"crossref","unstructured":"Bierbrauer J., Johansson T., Kabatianskii G., Smeets B.J.M.: On families of hash functions via geometric codes and concatenation. In: Stinson D.R. (ed.) CRYPTO\u201993. LNCS, vol. 773, pp. 331\u2013342. Springer, Heidelberg (1994).","DOI":"10.1007\/3-540-48329-2_28"},{"key":"347_CR9","doi-asserted-by":"crossref","unstructured":"Blake-Wilson S., Johnson D., Menezes A.: Key agreement protocols and their security analysis. In: Darnell M. (ed.) Cryptography and Coding 1997. LNCS, vol. 1355, pp. 30\u201345. Springer, Heidelberg (1997).","DOI":"10.1007\/BFb0024447"},{"key":"347_CR10","unstructured":"Bellare M., Kohno T.: A theoretical treatment of related-key attacks: RKA-PRPs, RKA-PRFs, and applications. In: Biham E. (ed.) EUROCRYPT 2003. LNCS, vol. 2656, pp. 491\u2013506. Springer, Heidelberg (2003)."},{"key":"347_CR11","unstructured":"Bogdanov A., Knudsen L.R., Leander G., Standaert F.-X., Steinberger J.P., Tischhauser E.: Key-alternating ciphers in a provable setting: encryption using a small number of public permutations\u2014(extended abstract). In: Pointcheval D., Johansson T. (eds.) EUROCRYPT 2012. LNCS, vol. 7237, pp. 45\u201362. Springer, Heidelberg (2012)."},{"key":"347_CR12","unstructured":"Biryukov A., Mukhopadhyay S., Sarkar P.: Improved time-memory trade-offs with multiple data. In: Preneel B., Tavares S.E. (eds.) SAC 2005. LNCS, vol. 3897, pp. 110\u2013127. Springer, Heidelberg (2005)."},{"key":"347_CR13","doi-asserted-by":"crossref","unstructured":"Bellare M., Rogaway P.: Entity authentication and key distribution. In: CRYPTO\u201993. LNCS, vol. 773, pp. 232\u2013249. Springer, Heidelberg (1994).","DOI":"10.1007\/3-540-48329-2_21"},{"key":"347_CR14","unstructured":"Biham E., Youssef A.M. (eds.): SAC 2006. LNCS, vol. 4356. Springer, Heidelberg (2007)."},{"key":"347_CR15","doi-asserted-by":"crossref","unstructured":"Chen S., Lampe R., Lee J., Seurin Y., Steinberger J.P.: Minimizing the two-round Even-Mansour cipher. In: Garay J.A., Gennaro R. (eds.) CRYPTO 2014. LNCS Part I, vol. 8616, pp. 39\u201356. Springer, Heidelberg (2014).","DOI":"10.1007\/978-3-662-44371-2_3"},{"key":"347_CR16","doi-asserted-by":"crossref","unstructured":"Cogliati B., Lampe R., Seurin Y.: Tweaking Even-Mansour ciphers. In: Gennaro R., Robshaw M. (eds.) CRYPTO 2015, Part I, vol. 9215, pp. 189\u2013208. Springer, Heidelberg, (2015).","DOI":"10.1007\/978-3-662-47989-6_9"},{"key":"347_CR17","unstructured":"Chatterjee S., Menezes A., Sarkar P.: Another look at tightness. In: Miri A., Vaudenay S. (eds.) SAC 2011. LNCS, vol. 7118, pp. 293\u2013319. Springer, Heidelberg (2011)."},{"key":"347_CR18","doi-asserted-by":"crossref","unstructured":"Chakraborty D., Sarkar P.: A general construction of tweakable block ciphers and different modes of operations. In: Lipmaa H., Yung M., Lin D. (eds.) Inscrypt 2006. LNCS, vol. 4318, pp. 88\u2013102. Springer, Heidelberg (2006).","DOI":"10.1007\/11937807_8"},{"key":"347_CR19","doi-asserted-by":"crossref","unstructured":"Chen S., Steinberger J.P.: Tight security bounds for key-alternating ciphers. In: Nguyen P.Q., Oswald E. (eds.) EUROCRYPT 2014. LNCS, vol. 8441, pp. 327\u2013350. Springer, Heidelberg (2014).","DOI":"10.1007\/978-3-642-55220-5_19"},{"key":"347_CR20","doi-asserted-by":"crossref","unstructured":"Cogliati B., Seurin Y.: Beyond-birthday-bound security for tweakable Even-Mansour ciphers with linear tweak and key mixing. In: Iwata T., Cheon J.H. (eds.) ASIACRYPT 2015. LNCS, vol. 9453, pp. 134\u2013158. Springer, Heidelberg (2015).","DOI":"10.1007\/978-3-662-48800-3_6"},{"key":"347_CR21","doi-asserted-by":"crossref","unstructured":"Cogliati B., Seurin Y.: On the provable security of the iterated Even-Mansour cipher against related-key and chosen-key attacks. In: Oswald E., Fischlin M. (eds.) EUROCRYPT 2015. LNCS, Part I, vol. 9056, pp. 584\u2013613. Springer, Heidelberg (2015).","DOI":"10.1007\/978-3-662-46800-5_23"},{"key":"347_CR22","doi-asserted-by":"crossref","unstructured":"Daemen J.: Limitations of the Even-Mansour construction. In: Imai H., Rivest R.L., Matsumoto T. (eds.) ASIACRYPT\u201991. LNCS, vol. 739, pp. 495\u2013498. Springer, Heidelberg (1993).","DOI":"10.1007\/3-540-57332-1_46"},{"key":"347_CR23","first-page":"65","volume":"2","author":"B Boer den","year":"1993","unstructured":"den Boer B.: A simple and key-economical unconditional authentication scheme. J. Comput. Secur. 2, 65\u201372 (1993).","journal-title":"J. Comput. Secur."},{"key":"347_CR24","unstructured":"Daniel J.: Bernstein. The Poly1305-AES message-authentication code. In: Gilbert H., Handschuh H. (eds.) FSE 2005. LNCS, vol. 3557, pp. 32\u201349. Springer, Heidelberg (2005)."},{"key":"347_CR25","doi-asserted-by":"crossref","unstructured":"Dunkelman O., Keller N., Shamir A.: Minimalism in cryptography: the Even-Mansour scheme revisited. In: Pointcheval D., Johansson T. (eds.) EUROCRYPT 2012. LNCS, vol. 7237, pp. 336\u2013354. Springer, Heidelberg (2012).","DOI":"10.1007\/978-3-642-29011-4_21"},{"key":"347_CR26","doi-asserted-by":"crossref","unstructured":"Datta N., Nandi M.: ELmE: A misuse resistant parallel authenticated encryption. In: Susilo W., Yi M. (eds.) ACISP 2014. LNCS, vol. 8544, pp. 306\u2013321. Springer, Heidelberg (2014).","DOI":"10.1007\/978-3-319-08344-5_20"},{"key":"347_CR27","doi-asserted-by":"crossref","unstructured":"Daemen J., Rijmen V.: The wide trail design strategy. In: Bahram H. (ed.) Cryptography and Coding 2001. LNCS, vol. 2260, pp. 222\u2013238. Springer, Heidelberg (2001).","DOI":"10.1007\/3-540-45325-3_20"},{"key":"347_CR28","doi-asserted-by":"crossref","DOI":"10.1007\/978-3-662-04722-4","volume-title":"The Design of Rijndael: AES\u2014The Advanced Encryption Standard","author":"J Daemen","year":"2002","unstructured":"Daemen J., Rijmen V.: The Design of Rijndael: AES\u2014The Advanced Encryption Standard. Springer, Heidelberg (2002)."},{"issue":"4","key":"347_CR29","first-page":"395","volume":"13","author":"J Daemen","year":"2012","unstructured":"Daemen J., Rijmen V.: On the related-key attacks against aes. Proc. Rom. Acad. Ser. A 13(4), 395\u2013400 (2012).","journal-title":"Proc. Rom. Acad. Ser. A"},{"key":"347_CR30","doi-asserted-by":"crossref","unstructured":"Even S., Mansour Y.: A construction of a cipher from a single pseudorandom permutation. In: Imai H.,Rivest R.L., Matsumoto T. (eds.) ASIACRYPT\u201991. LNCS, vol. 739, pp. 210\u2013224. Springer, Heidelberg (1993).","DOI":"10.1007\/3-540-57332-1_17"},{"issue":"3","key":"347_CR31","doi-asserted-by":"crossref","first-page":"151","DOI":"10.1007\/s001459900025","volume":"10","author":"S Even","year":"1997","unstructured":"Even S., Mansour Y.: A construction of a cipher from a single pseudorandom permutation. J. Cryptol. 10(3), 151\u2013162 (1997).","journal-title":"J. Cryptol."},{"key":"347_CR32","doi-asserted-by":"crossref","unstructured":"Farshim P., Procter G.: The related-key security of iterated Even-Mansour ciphers. In: Leander G. (ed.) FSE 2015. LNCS, vol. 9054, pp. 342\u2013363. Springer, Heidelberg (2015).","DOI":"10.1007\/978-3-662-48116-5_17"},{"key":"347_CR33","unstructured":"Fischlin M., Coron J.-S. (eds.): EUROCRYPT 2016. LNCS, Part I, vol. 9665. Springer, Heidelberg (2016)."},{"key":"347_CR34","unstructured":"Fouque P.-A., Joux A., Mavromati C.: Multi-user collisions: Applications to discrete logarithm, Even-Mansour and PRINCE. In: Sarkar P., Iwata T. (eds.) ASIACRYPT 2014. LNCS, Part I, vol. 8873, pp. 420\u2013438. Springer, Heidelberg (2014)."},{"key":"347_CR35","unstructured":"Frances F.: Yao and Yiqun Lisa Yin. Design and analysis of password-based key derivation functions. In: Menezes A. (ed.) CT-RSA 2005. LNCS, vol. 3376, pp. 245\u2013261. Springer, Heidelberg (2005)."},{"key":"347_CR36","unstructured":"Goldenberg D., Hohenberger S., Liskov M.: Elizabeth Crump Schwartz, and Hakan Seyalioglu. On tweaking Luby-Rackoff blockciphers. In: Kurosawa K. (ed.) ASIACRYPT 2007. LNCS, vol. 4833, pp. 342\u2013356. Springer, Heidelberg (2007)."},{"key":"347_CR37","doi-asserted-by":"crossref","unstructured":"Granger R., Jovanovic P., Mennink B., Neves S.: Improved masking for tweakable blockciphers with applications to authenticated encryption. In: Fischlin M., Coron J.-S. (eds.) EUROCRYPT 2016. LNCS, Part I, vol. 9665, pp. 263\u2013293. Springer, Heidelberg (2016).","DOI":"10.1007\/978-3-662-49890-3_11"},{"key":"347_CR38","doi-asserted-by":"crossref","unstructured":"Guo C., Lin D.: A synthetic indifferentiability analysis of interleaved double-key Even-Mansour ciphers. In: Iwata T., Cheon J.H. (eds.) ASIACRYPT 2015. LNCS, Part II, vol. 9453, pp. 389\u2013410. Springer, Heidelberg (2015).","DOI":"10.1007\/978-3-662-48800-3_16"},{"key":"347_CR39","unstructured":"Gennaro R., Robshaw M. (eds.): CRYPTO 2015. LNCS, Part I, vol. 9215. Springer, Heidelberg (2015)."},{"key":"347_CR40","unstructured":"Halevi S., Krawczyk H.: MMH: software message authentication in the Gbit\/second rates. In: Biham E. (ed.) FSE \u201997. LNCS, vol. 1267, pp. 172\u2013189. Springer, Heidelberg (1997)."},{"key":"347_CR41","doi-asserted-by":"crossref","unstructured":"Hong J., Sarkar P.: New applications of time memory data tradeoffs. In: Roy B.K. (ed.) ASIACRYPT 2005. LNCS, vol. 3788, pp. 353\u2013372. Springer, Heidelberg (2005).","DOI":"10.1007\/11593447_19"},{"key":"347_CR42","doi-asserted-by":"crossref","unstructured":"Hoang V.T., Tessaro S.: Key-alternating ciphers and key-length extension: exact bounds and multi-user security. In: Robshaw M., Katz J. (eds.) CRYPTO 2016. LNCS, Part I, vol. 9814, pp. 3\u201332. Springer, Heidelberg (2016).","DOI":"10.1007\/978-3-662-53018-4_1"},{"key":"347_CR43","unstructured":"Hugo K. HMAC-based extract-and-expand key derivation function (HKDF). Request for Comments (RFC) 5869, May (2010). https:\/\/tools.ietf.org\/html\/rfc5869 ."},{"key":"347_CR44","unstructured":"Iwata T., Cheon J.H. (eds.): ASIACRYPT 2015. LNCS, Part II, vol. 9453. Springer, Heidelberg (2015)."},{"key":"347_CR45","unstructured":"Iwata T., Kohno T.: New security proofs for the 3GPP confidentiality and integrity algorithms. In: Roy B.K., Meier W. (eds.) FSE 2004. LNCS, vol. 3017, pp. 427\u2013445. Springer, Heidelberg (2004)."},{"key":"347_CR46","doi-asserted-by":"crossref","unstructured":"Imai H., Rivest R.L., Matsumoto T. (eds.): ASIACRYPT \u201991. LNCS, vol. 739. Springer, Heidelberg (1993).","DOI":"10.1007\/3-540-57332-1"},{"key":"347_CR47","unstructured":"ISO\/IEC 18033-3:2010. Information technology\u2014security techniques\u2014encryption algorithms\u2014Part 3: Block ciphers, December (2010)."},{"key":"347_CR48","unstructured":"Jean J., Nikoli\u0107 I., Peyrin T.: Tweaks and keys for block ciphers: The TWEAKEY framework. In: Sarkar P., Iwata T. (eds.) ASIACRYPT 2014. LNCS, Part II, vol. 8874, pp. 274\u2013288. Springer, Heidelberg (2014)."},{"key":"347_CR49","doi-asserted-by":"crossref","unstructured":"Krawczyk H.: Cryptographic extraction and key derivation: the HKDF scheme. In: Rabin T. (ed.) CRYPTO 2010. LNCS, vol. 6223, pp. 631\u2013648. Springer, Heidelberg (2010).","DOI":"10.1007\/978-3-642-14623-7_34"},{"key":"347_CR50","unstructured":"Krovetz, T.: Message authentication on 64-bit architectures. In: Biham E., Youssef A.M. (eds.) SAC 2006. LNCS, vol. 4356, pp. 327\u2013341. Springer, Heidelberg (2007)."},{"key":"347_CR51","unstructured":"Leander G. (ed.): FSE 2015. LNCS, vol. 9054. Springer, Heidelberg (2015)."},{"key":"347_CR52","doi-asserted-by":"crossref","unstructured":"Lampe R., Patarin J., Seurin Y.: An asymptotically tight security analysis of the iterated Even-Mansour cipher. In: Wang X., Sako K. (eds.) ASIACRYPT 2012. LNCS, vol. 7658, pp. 278\u2013295. Springer, Heidelberg (2012).","DOI":"10.1007\/978-3-642-34961-4_18"},{"key":"347_CR53","doi-asserted-by":"crossref","unstructured":"Liskov M., Rivest R.L., Wagner D.: Tweakable block ciphers. In: Yung M. (ed.) CRYPTO 2002. LNCS, vol. 2442, pp. 31\u201346. Springer, Heidelberg (2002).","DOI":"10.1007\/3-540-45708-9_3"},{"key":"347_CR54","doi-asserted-by":"crossref","unstructured":"Lampe R., Seurin Y.: How to construct an ideal cipher from a small set of public permutations. In Sako K., Sarkar P. (eds.) ASIACRYPT 2013. LNCS, Part I, vol. 8269, pp. 444\u2013463. Springer, Heidelberg (2013).","DOI":"10.1007\/978-3-642-42033-7_23"},{"key":"347_CR55","unstructured":"Lampe R., Seurin Y.: Tweakable blockciphers with asymptotically optimal security. In: Moriai S. (ed.) FSE 2013. LNCS, vol. 8424, pp. 133\u2013151. Springer, Heidelberg (2013)."},{"key":"347_CR56","unstructured":"Landecker W., Shrimpton T.: and R. Seth Terashima. Tweakable blockciphers with beyond birthday-bound security. In: Safavi-Naini R., Canetti R. (eds.) CRYPTO 2012. LNCS, vol. 7417, pp. 14\u201330. Springer, Heidelberg (2012)."},{"key":"347_CR57","doi-asserted-by":"crossref","unstructured":"Lucks S.: Ciphers secure against related-key attacks. In Roy B.K., Meier W. (eds.) FSE 2004. LNCS, vol. 3017, pp. 359\u2013370. Springer, Heidelberg (2004).","DOI":"10.1007\/978-3-540-25937-4_23"},{"key":"347_CR58","doi-asserted-by":"crossref","unstructured":"Mennink B.: Optimally secure tweakable blockciphers. In: Leander G. (ed.) FSE 2015. LNCS, vol. 9054, pp. 428\u2013448. Springer, Heidelberg (2015).","DOI":"10.1007\/978-3-662-48116-5_21"},{"key":"347_CR59","doi-asserted-by":"crossref","unstructured":"Mennink, B.: XPX: generalized tweakable Even-Mansour with improved security guarantees. In Robshaw M., Katz J. (eds.) CRYPTO 2016. LNCS, vol. 9814, pp. 64\u201394. Springer, Heidelberg (2016).","DOI":"10.1007\/978-3-662-53018-4_3"},{"key":"347_CR60","doi-asserted-by":"crossref","unstructured":"Mitsuda A., Iwata T.: Tweakable pseudorandom permutation from generalized Feistel structure. In: Baek J., Bao F., Chen K., Lai X. (eds.) Provable Security 2008. LNCS, vol. 5324, pp. 22\u201337. Springer, Heidelberg (2008).","DOI":"10.1007\/978-3-540-88733-1_2"},{"key":"347_CR61","doi-asserted-by":"crossref","unstructured":"Minematsu K., Iwata T.: Tweak-length extension for tweakable blockciphers. In: Groth J. (ed.) Cryptography and Coding 2015. LNCS, vol. 9496, pp. 77\u201393. Springer, Heidelberg (2015).","DOI":"10.1007\/978-3-319-27239-9_5"},{"key":"347_CR62","doi-asserted-by":"crossref","unstructured":"Minematsu, K..: Improved security analysis of XEX and LRW modes. In Biham E., Youssef A.M. (eds.) SAC 2006. LNCS, vol. 4356, pp. 96\u2013113. Springer, Heidelberg (2007).","DOI":"10.1007\/978-3-540-74462-7_8"},{"key":"347_CR63","doi-asserted-by":"crossref","unstructured":"Minematsu K.: Beyond-birthday-bound security based on tweakable block cipher. In: Dunkelman O. (ed.) FSE 2009. LNCS, vol. 5665, pp. 308\u2013326. Springer, Heidelberg (2009).","DOI":"10.1007\/978-3-642-03317-9_19"},{"key":"347_CR64","doi-asserted-by":"crossref","unstructured":"Mouha N., Luykx A.: Multi-key security: the Even-Mansour construction revisited. In Gennaro R., Robshaw M. (eds.) CRYPTO 2015. LNCS, Part I, vol. 9215, pp. 209\u2013223. Springer, Heidelberg (2015)","DOI":"10.1007\/978-3-662-47989-6_10"},{"issue":"3","key":"347_CR65","doi-asserted-by":"crossref","first-page":"261","DOI":"10.1023\/B:DESI.0000036250.18062.3f","volume":"33","author":"A Menezes","year":"2004","unstructured":"Menezes A., Smart N.P.: Security of signature schemes in a multi-user setting. Des. Codes Cryptogr. 33(3), 261\u2013274 (2004).","journal-title":"Des. Codes Cryptogr."},{"key":"347_CR66","doi-asserted-by":"crossref","unstructured":"Pointcheval D., Johansson T. (eds.): EUROCRYPT 2012. LNCS, vol. 7237. Springer, Heidelberg (2012).","DOI":"10.1007\/978-3-642-29011-4"},{"key":"347_CR67","unstructured":"Procter G.: A note on the CLRW2 tweakable block cipher construction. Cryptology ePrint Archive, Report 2014\/111 (2014)."},{"key":"347_CR68","doi-asserted-by":"crossref","unstructured":"Peyrin T., Seurin Y.: Counter-in-Tweak: authenticated encryption modes for tweakable block ciphers. In: Robshaw M., Katz J. (eds.) CRYPTO 2016. LNCS, Part I, vol. 9814, pp. 33\u201363. Springer, Heidelberg (2016).","DOI":"10.1007\/978-3-662-53018-4_2"},{"key":"347_CR69","unstructured":"Robshaw M., Katz J. (eds.) CRYPTO 2016. LNCS, Part I, vol. 9814. Springer, Heidelberg (2016)."},{"key":"347_CR70","unstructured":"Roy B.K., Meier W. (eds):FSE 2004. LNCS, vol. 3017. Springer, Heidelberg (2004)."},{"key":"347_CR71","doi-asserted-by":"crossref","unstructured":"Rogaway P.: Efficient instantiations of tweakable blockciphers and refinements to modes OCB and PMAC. In: Pil J.L. (ed.) ASIACRYPT 2004. LNCS, vol. 3329, pp. 16\u201331. Springer, Heidelberg (2004).","DOI":"10.1007\/978-3-540-30539-2_2"},{"issue":"3","key":"347_CR72","doi-asserted-by":"crossref","first-page":"505","DOI":"10.1137\/S0097539701386216","volume":"33","author":"A Siegel","year":"2004","unstructured":"Siegel A.: On universal classes of extremely random constant-time hash functions. SIAM J. Comput. 33(3), 505\u2013543 (2004).","journal-title":"SIAM J. Comput."},{"key":"347_CR73","unstructured":"Sako K., Sarkar P. (eds.): ASIACRYPT 2013. LNCS, Part I, vol. 8269. Springer, Heidelberg (2013)."},{"key":"347_CR74","unstructured":"Steinberger J.: Improved security bounds for key-alternating ciphers via Hellinger distance. Cryptology ePrint Archive, Report 2012\/481 (2012)."},{"key":"347_CR75","unstructured":"Stinson D.R. (ed.): CRYPTO\u201993. LNCS, vol. 773. Springer, Heidelberg (1994)."},{"key":"347_CR76","doi-asserted-by":"crossref","unstructured":"Taylor, R.: An integrity check value algorithm for stream ciphers. In: Stinson D.R. (ed.) CRYPTO\u201993. LNCS, vol. 773, pp. 40\u201348. Springer, Heidelberg (1994).","DOI":"10.1007\/3-540-48329-2_4"},{"key":"347_CR77","doi-asserted-by":"crossref","unstructured":"Tessaro S.: Optimally secure block ciphers from ideal primitives. In: Iwata T., Cheon J.H. (eds.) ASIACRYPT 2015. LNCS, Part II, vol. 9453, pp. 437\u2013462. Springer, Heidelberg (2015).","DOI":"10.1007\/978-3-662-48800-3_18"},{"issue":"3","key":"347_CR78","doi-asserted-by":"crossref","first-page":"265","DOI":"10.1016\/0022-0000(81)90033-7","volume":"22","author":"MN Wegman","year":"1981","unstructured":"Wegman M.N., Carter L.: New hash functions and their use in authentication and set equality. J. Comput. Syst. Sci. 22(3), 265\u2013279 (1981).","journal-title":"J. Comput. Syst. Sci."},{"key":"347_CR79","unstructured":"Zobrist A.: A new hashing method with application for game playing. Technical Report 88 Computer Sciences Department, University of Wisconsin (1970)."}],"container-title":["Designs, Codes and Cryptography"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s10623-017-0347-3\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s10623-017-0347-3.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s10623-017-0347-3.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,9,19]],"date-time":"2019-09-19T05:05:33Z","timestamp":1568869533000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s10623-017-0347-3"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,3,4]]},"references-count":79,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2018,3]]}},"alternative-id":["347"],"URL":"https:\/\/doi.org\/10.1007\/s10623-017-0347-3","relation":{},"ISSN":["0925-1022","1573-7586"],"issn-type":[{"type":"print","value":"0925-1022"},{"type":"electronic","value":"1573-7586"}],"subject":[],"published":{"date-parts":[[2017,3,4]]}}}