Third-round report
42 views
Skip to first unread message
Arne Padmos
Jun 17, 2023, 3:26:21 AM6/17/23
to lwc-forum
Hi all,
For those not subscribed to NIST announcements: The third-round report
is now out at
https://csrc.nist.gov/publications/detail/nistir/8454/final. Although
the download page seems to be down for maintenance, the report is
available at
https://web.archive.org/web/20230616164328/https://nvlpubs.nist.gov/nistpubs/ir/2023/NIST.IR.8454.pdf
Note that there seems to be an error on page 53, which states that
Romulus contains a tweak increasing the number of rounds: "TinyJAMBU and
Romulus had the smallest implementations and strong performance when
optimized for low area, however, with both finalists containing a tweak
that increases the number of rounds, throughput would decrease, area
would remain relatively constant, and energy use would increase." The
round 2 comments of the Romulus team state that "due to the huge
security margin offered by Skinny-128/384, the number of rounds has been
decreased from 56 to 40 (now named Skinny-128/384+)".
Regards,
Arne
For those not subscribed to NIST announcements: The third-round report
is now out at
https://csrc.nist.gov/publications/detail/nistir/8454/final. Although
the download page seems to be down for maintenance, the report is
available at
https://web.archive.org/web/20230616164328/https://nvlpubs.nist.gov/nistpubs/ir/2023/NIST.IR.8454.pdf
Note that there seems to be an error on page 53, which states that
Romulus contains a tweak increasing the number of rounds: "TinyJAMBU and
Romulus had the smallest implementations and strong performance when
optimized for low area, however, with both finalists containing a tweak
that increases the number of rounds, throughput would decrease, area
would remain relatively constant, and energy use would increase." The
round 2 comments of the Romulus team state that "due to the huge
security margin offered by Skinny-128/384, the number of rounds has been
decreased from 56 to 40 (now named Skinny-128/384+)".
Regards,
Arne
McKay, Kerry A. (Fed)
Jun 20, 2023, 10:43:13 AM6/20/23
to Arne Padmos, lwc-forum
Hi Arne,
Thank you for bringing the error to our attention. A correction will be posted soon.
Regards,
Kerry
On 6/17/23, 3:27 AM, "lwc-...@list.nist.gov <mailto:lwc-...@list.nist.gov> on behalf of Arne Padmos" <lwc-...@list.nist.gov <mailto:lwc-...@list.nist.gov> on behalf of h...@arnepadmos.com <mailto:h...@arnepadmos.com>> wrote:
Hi all,
For those not subscribed to NIST announcements: The third-round report
is now out at
https://csrc.nist.gov/publications/detail/nistir/8454/final <https://csrc.nist.gov/publications/detail/nistir/8454/final>. Although
Note that there seems to be an error on page 53, which states that
Romulus contains a tweak increasing the number of rounds: "TinyJAMBU and
Romulus had the smallest implementations and strong performance when
optimized for low area, however, with both finalists containing a tweak
that increases the number of rounds, throughput would decrease, area
would remain relatively constant, and energy use would increase." The
round 2 comments of the Romulus team state that "due to the huge
security margin offered by Skinny-128/384, the number of rounds has been
decreased from 56 to 40 (now named Skinny-128/384+)".
Regards,
Arne
--
To unsubscribe from this group, send email to lwc-forum+...@list.nist.gov <mailto:lwc-forum+...@list.nist.gov>
Visit this group at https://groups.google.com/a/list.nist.gov/d/forum/lwc-forum <https://groups.google.com/a/list.nist.gov/d/forum/lwc-forum>
Thank you for bringing the error to our attention. A correction will be posted soon.
Regards,
Kerry
On 6/17/23, 3:27 AM, "lwc-...@list.nist.gov <mailto:lwc-...@list.nist.gov> on behalf of Arne Padmos" <lwc-...@list.nist.gov <mailto:lwc-...@list.nist.gov> on behalf of h...@arnepadmos.com <mailto:h...@arnepadmos.com>> wrote:
Hi all,
For those not subscribed to NIST announcements: The third-round report
is now out at
the download page seems to be down for maintenance, the report is
available at
https://web.archive.org/web/20230616164328/https://nvlpubs.nist.gov/nistpubs/ir/2023/NIST.IR.8454.pdf <https://web.archive.org/web/20230616164328/https://nvlpubs.nist.gov/nistpubs/ir/2023/NIST.IR.8454.pdf>
available at
Note that there seems to be an error on page 53, which states that
Romulus contains a tweak increasing the number of rounds: "TinyJAMBU and
Romulus had the smallest implementations and strong performance when
optimized for low area, however, with both finalists containing a tweak
that increases the number of rounds, throughput would decrease, area
would remain relatively constant, and energy use would increase." The
round 2 comments of the Romulus team state that "due to the huge
security margin offered by Skinny-128/384, the number of rounds has been
decreased from 56 to 40 (now named Skinny-128/384+)".
Regards,
Arne
To unsubscribe from this group, send email to lwc-forum+...@list.nist.gov <mailto:lwc-forum+...@list.nist.gov>
Visit this group at https://groups.google.com/a/list.nist.gov/d/forum/lwc-forum <https://groups.google.com/a/list.nist.gov/d/forum/lwc-forum>
Reply all
Reply to author
Forward
0 new messages