end of CAESAR round 2
652 views
Skip to first unread message
D. J. Bernstein
Aug 15, 2016, 2:03:54 AM8/15/16
to crypto-co...@googlegroups.com
The CAESAR selection committee has selected the following submissions as
third-round candidates: ACORN, AEGIS, COLM (AES-COPA + ELmD), AES-JAMBU,
AES-OTR, AEZ, ASCON, CLOC + SILC, Deoxys, Ketje, Keyak, MORUS, NORX,
OCB, Tiaoxin. See below for a list of previously published analyses that
led to the selection of these algorithms. The web page will be updated
soon. Thanks to all submitters!
Third-round submission PDF files must be received by caesar-submissions
at competitions.cr.yp.to by 2016.09.15 23:59 GMT. This email must have
subject line precisely "round 3 submission: NAME" where NAME is replaced
by the cipher name. Submissions are open only to the submitters of
second-round candidates that were selected for the third round.
See my email dated 26 Jul 2015 22:47:06 for rules regarding "tweaks" and
other updates. There is one additional requirement for third-round PDFs:
* The list of "Recommended parameter sets" must also identify, for
each recommended parameter set, a prioritized list of targeted use
cases (most important use case first), out of the list of three use
cases in my email dated 16 Jul 2016 20:36:10.
Submission teams should ensure that, during the third round, any
performance features that are relevant to their submissions are
demonstrated in a publicly verifiable way by optimized implementations,
preferably within unified frameworks measuring all submissions.
---Dan
ACORN: see
https://competitions.cr.yp.to/round2/acornv2.pdf
https://competitions.cr.yp.to/round1/acornv1.pdf
https://groups.google.com/forum/#!topic/crypto-competitions/dzzNcybqFP4
https://groups.google.com/forum/#!topic/crypto-competitions/2mrDnyb9hfM
https://groups.google.com/d/msg/crypto-competitions/RTtZvFZay7k/-_nVcA7EadUJ
https://eprint.iacr.org/2016/743
https://eprint.iacr.org/2016/521
https://eprint.iacr.org/2015/918
https://eprint.iacr.org/2014/850
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
AEGIS: see
https://competitions.cr.yp.to/round1/aegisv1.pdf
http://link.springer.com/content/pdf/10.1007%2F978-3-319-13051-4_18.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
COLM (COPA + ELmD): see
https://competitions.cr.yp.to/round2/colm.pdf
https://competitions.cr.yp.to/round2/aescopav2.pdf
https://competitions.cr.yp.to/round2/elmdv20.pdf
https://competitions.cr.yp.to/round1/aescopav1.pdf
https://competitions.cr.yp.to/round1/elmdv10.pdf
https://competitions.cr.yp.to/round1/elmd-clarification.pdf
https://eprint.iacr.org/2016/640
https://eprint.iacr.org/2015/444
https://eprint.iacr.org/2015/079
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
AES-JAMBU: see
https://competitions.cr.yp.to/round2/aesjambuv2.pdf
https://competitions.cr.yp.to/round1/aesjambuv1.pdf
https://eprint.iacr.org/2014/931
https://groups.google.com/forum/#!original/crypto-competitions/cTm84kzCtJg/Bj27zFdFw3QJ
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
AES-OTR: see
https://competitions.cr.yp.to/round2/aesotrv2.pdf
https://competitions.cr.yp.to/round1/aesotrv1.pdf
https://eprint.iacr.org/2016/234
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
AEZ: see
https://competitions.cr.yp.to/round2/aezv4.pdf
https://competitions.cr.yp.to/round1/aezv1.pdf
https://competitions.cr.yp.to/round1/aez-security.txt
http://web.cs.ucdavis.edu/~rogaway/aez/aez.pdf
https://groups.google.com/forum/#!topic/crypto-competitions/3Ht2pAYEmuY
https://groups.google.com/forum/#!original/crypto-competitions/IZ5KE1x3cCw/lkeyLe3MBAAJ
https://groups.google.com/forum/#!original/crypto-competitions/IZ5KE1x3cCw/vD7z7yR_BwAJ
http://www.uni-weimar.de/fileadmin/user/fak/medien/professuren/Mediensicherheit/Research/Drafts/nonce-misuse-oae.pdf
http://web.cs.ucdavis.edu/~rogaway/papers/oae.pdf
https://eprint.iacr.org/2015/1193
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
ASCON: see
https://competitions.cr.yp.to/round2/asconv11.pdf
https://competitions.cr.yp.to/round1/asconv1.pdf
https://eprint.iacr.org/2016/490
https://eprint.iacr.org/2016/188
https://eprint.iacr.org/2015/1200
https://eprint.iacr.org/2015/090
https://eprint.iacr.org/2015/034
https://eprint.iacr.org/2015/030
https://eprint.iacr.org/2014/373
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
CLOC + SILC: see
https://competitions.cr.yp.to/round2/clocv2.pdf
https://competitions.cr.yp.to/round1/clocv1.pdf
https://competitions.cr.yp.to/round2/silcv2.pdf
https://competitions.cr.yp.to/round1/silcv1.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
Deoxys: see
https://competitions.cr.yp.to/round2/deoxysv13.pdf
https://competitions.cr.yp.to/round1/deoxysv1.pdf
https://competitions.cr.yp.to/round1/kjd-ordering.txt
https://competitions.cr.yp.to/round1/kjd-addendum.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
Ketje: see
https://competitions.cr.yp.to/round1/ketjev11.pdf
https://competitions.cr.yp.to/round1/ketjev1.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
Keyak: see
https://competitions.cr.yp.to/round2/keyakv2.pdf
https://competitions.cr.yp.to/round1/keyakv11.pdf
https://competitions.cr.yp.to/round1/keyakv1.pdf
https://eprint.iacr.org/2015/1200
https://eprint.iacr.org/2014/373
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
MORUS: see
https://competitions.cr.yp.to/round2/morusv11.pdf
https://competitions.cr.yp.to/round1/morusv1.pdf
https://competitions.cr.yp.to/round1/morus-figure1-corrected.pdf
https://groups.google.com/forum/message/raw?msg=crypto-competitions/p1TQVraGkrU/C0bpcrLxMQAJ
http://link.springer.com/chapter/10.1007%2F978-3-319-29172-7_4
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
NORX: see
https://competitions.cr.yp.to/round2/norxv20.pdf
https://competitions.cr.yp.to/round1/norxv1.pdf
https://eprint.iacr.org/2016/436
https://eprint.iacr.org/2015/1154
https://eprint.iacr.org/2015/186
https://eprint.iacr.org/2014/373
https://eprint.iacr.org/2014/317
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
OCB: see
https://competitions.cr.yp.to/round1/ocbv1.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
Tiaoxin: see
https://competitions.cr.yp.to/round2/tiaoxinv2.pdf
https://competitions.cr.yp.to/round1/tiaoxinv1.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
third-round candidates: ACORN, AEGIS, COLM (AES-COPA + ELmD), AES-JAMBU,
AES-OTR, AEZ, ASCON, CLOC + SILC, Deoxys, Ketje, Keyak, MORUS, NORX,
OCB, Tiaoxin. See below for a list of previously published analyses that
led to the selection of these algorithms. The web page will be updated
soon. Thanks to all submitters!
Third-round submission PDF files must be received by caesar-submissions
at competitions.cr.yp.to by 2016.09.15 23:59 GMT. This email must have
subject line precisely "round 3 submission: NAME" where NAME is replaced
by the cipher name. Submissions are open only to the submitters of
second-round candidates that were selected for the third round.
See my email dated 26 Jul 2015 22:47:06 for rules regarding "tweaks" and
other updates. There is one additional requirement for third-round PDFs:
* The list of "Recommended parameter sets" must also identify, for
each recommended parameter set, a prioritized list of targeted use
cases (most important use case first), out of the list of three use
cases in my email dated 16 Jul 2016 20:36:10.
Submission teams should ensure that, during the third round, any
performance features that are relevant to their submissions are
demonstrated in a publicly verifiable way by optimized implementations,
preferably within unified frameworks measuring all submissions.
---Dan
ACORN: see
https://competitions.cr.yp.to/round2/acornv2.pdf
https://competitions.cr.yp.to/round1/acornv1.pdf
https://groups.google.com/forum/#!topic/crypto-competitions/dzzNcybqFP4
https://groups.google.com/forum/#!topic/crypto-competitions/2mrDnyb9hfM
https://groups.google.com/d/msg/crypto-competitions/RTtZvFZay7k/-_nVcA7EadUJ
https://eprint.iacr.org/2016/743
https://eprint.iacr.org/2016/521
https://eprint.iacr.org/2015/918
https://eprint.iacr.org/2014/850
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
AEGIS: see
https://competitions.cr.yp.to/round1/aegisv1.pdf
http://link.springer.com/content/pdf/10.1007%2F978-3-319-13051-4_18.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
COLM (COPA + ELmD): see
https://competitions.cr.yp.to/round2/colm.pdf
https://competitions.cr.yp.to/round2/aescopav2.pdf
https://competitions.cr.yp.to/round2/elmdv20.pdf
https://competitions.cr.yp.to/round1/aescopav1.pdf
https://competitions.cr.yp.to/round1/elmdv10.pdf
https://competitions.cr.yp.to/round1/elmd-clarification.pdf
https://eprint.iacr.org/2016/640
https://eprint.iacr.org/2015/444
https://eprint.iacr.org/2015/079
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
AES-JAMBU: see
https://competitions.cr.yp.to/round2/aesjambuv2.pdf
https://competitions.cr.yp.to/round1/aesjambuv1.pdf
https://eprint.iacr.org/2014/931
https://groups.google.com/forum/#!original/crypto-competitions/cTm84kzCtJg/Bj27zFdFw3QJ
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
AES-OTR: see
https://competitions.cr.yp.to/round2/aesotrv2.pdf
https://competitions.cr.yp.to/round1/aesotrv1.pdf
https://eprint.iacr.org/2016/234
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
AEZ: see
https://competitions.cr.yp.to/round2/aezv4.pdf
https://competitions.cr.yp.to/round1/aezv1.pdf
https://competitions.cr.yp.to/round1/aez-security.txt
http://web.cs.ucdavis.edu/~rogaway/aez/aez.pdf
https://groups.google.com/forum/#!topic/crypto-competitions/3Ht2pAYEmuY
https://groups.google.com/forum/#!original/crypto-competitions/IZ5KE1x3cCw/lkeyLe3MBAAJ
https://groups.google.com/forum/#!original/crypto-competitions/IZ5KE1x3cCw/vD7z7yR_BwAJ
http://www.uni-weimar.de/fileadmin/user/fak/medien/professuren/Mediensicherheit/Research/Drafts/nonce-misuse-oae.pdf
http://web.cs.ucdavis.edu/~rogaway/papers/oae.pdf
https://eprint.iacr.org/2015/1193
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
ASCON: see
https://competitions.cr.yp.to/round2/asconv11.pdf
https://competitions.cr.yp.to/round1/asconv1.pdf
https://eprint.iacr.org/2016/490
https://eprint.iacr.org/2016/188
https://eprint.iacr.org/2015/1200
https://eprint.iacr.org/2015/090
https://eprint.iacr.org/2015/034
https://eprint.iacr.org/2015/030
https://eprint.iacr.org/2014/373
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
CLOC + SILC: see
https://competitions.cr.yp.to/round2/clocv2.pdf
https://competitions.cr.yp.to/round1/clocv1.pdf
https://competitions.cr.yp.to/round2/silcv2.pdf
https://competitions.cr.yp.to/round1/silcv1.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
Deoxys: see
https://competitions.cr.yp.to/round2/deoxysv13.pdf
https://competitions.cr.yp.to/round1/deoxysv1.pdf
https://competitions.cr.yp.to/round1/kjd-ordering.txt
https://competitions.cr.yp.to/round1/kjd-addendum.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
Ketje: see
https://competitions.cr.yp.to/round1/ketjev11.pdf
https://competitions.cr.yp.to/round1/ketjev1.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
Keyak: see
https://competitions.cr.yp.to/round2/keyakv2.pdf
https://competitions.cr.yp.to/round1/keyakv11.pdf
https://competitions.cr.yp.to/round1/keyakv1.pdf
https://eprint.iacr.org/2015/1200
https://eprint.iacr.org/2014/373
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
MORUS: see
https://competitions.cr.yp.to/round2/morusv11.pdf
https://competitions.cr.yp.to/round1/morusv1.pdf
https://competitions.cr.yp.to/round1/morus-figure1-corrected.pdf
https://groups.google.com/forum/message/raw?msg=crypto-competitions/p1TQVraGkrU/C0bpcrLxMQAJ
http://link.springer.com/chapter/10.1007%2F978-3-319-29172-7_4
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
NORX: see
https://competitions.cr.yp.to/round2/norxv20.pdf
https://competitions.cr.yp.to/round1/norxv1.pdf
https://eprint.iacr.org/2016/436
https://eprint.iacr.org/2015/1154
https://eprint.iacr.org/2015/186
https://eprint.iacr.org/2014/373
https://eprint.iacr.org/2014/317
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
OCB: see
https://competitions.cr.yp.to/round1/ocbv1.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
Tiaoxin: see
https://competitions.cr.yp.to/round2/tiaoxinv2.pdf
https://competitions.cr.yp.to/round1/tiaoxinv1.pdf
https://cryptography.gmu.edu/athena/
https://eprint.iacr.org/2016/740
https://bench.cr.yp.to
https://eprint.iacr.org/2014/850
https://eprint.iacr.org/2014/792
https://aezoo.compute.dtu.dk/doku.php
Reply all
Reply to author
Forward
0 new messages