Evaluation of Format- Preserving Encryption Algorithms for Critical Infrastructure Protection - Critical Infrastructure Protection VIII
Conference Papers Year : 2014

Evaluation of Format- Preserving Encryption Algorithms for Critical Infrastructure Protection

Abstract

Legacy critical infrastructure systems lack secure communications capabilities that can protect against modern threats. In particular, operational requirements such as message format and interoperability prevent the adoption of standard encryption algorithms. Three new algorithms recommended by the National Institute of Standards and Technology (NIST) for format-preserving encryption could potentially support the encryption of legacy protocols in critical infrastructure assets. The three algorithms, FF1, FF2 and FF3, provide the ability to encrypt arbitrarily-formatted data without padding or truncation, which is a critical requirement for interoperability in legacy systems. This paper presents an evaluation of the three algorithms with respect to entropy and operational latency when implemented on a Xilinx Virtex-6 (XC6VLX240T) FPGA. While the three algorithms inherit the security characteristics of the underlying Advanced Encryption Standard (AES) cipher, they exhibit some important differences in their performance characteristics.
Fichier principal
Vignette du fichier
978-3-662-45355-1_16_Chapter.pdf (1.31 Mo) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01386769 , version 1 (24-10-2016)

Licence

Identifiers

Cite

Richard Agbeyibor, Jonathan Butts, Michael Grimaila, Robert Mills. Evaluation of Format- Preserving Encryption Algorithms for Critical Infrastructure Protection. 8th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2014, Arlington, United States. pp.245-261, ⟨10.1007/978-3-662-45355-1_16⟩. ⟨hal-01386769⟩
81 View
1577 Download

Altmetric

Share

More