Format-preserving encryption

About: Format-preserving encryption is a research topic. Over the lifetime, 112 publications have been published within this topic receiving 2050 citations.

A format-preserving encryption FF1, FF3-1 using lightweight block ciphers LEA and, SPECK

Abstract: Format-preserving encryption has been studied for a long time since its proposal, but the algorithm is yet to be adequately evaluated or verified. The existing standard format-preserving encryption FF1 and FF3-1 use block cipher AES in the internal function. This paper proposes a method to improve the speed of FF1 and FF3-1 whereby the algorithm is implemented by changing the cipher to lightweight block ciphers LEA(Lightweight Encryption Algorithm) and SPECK. The encryption speed is analyzed and compared with that of the existing encryption by dividing it into high-performance computer environments and low-performance Internet of Things environments. The results showed that the encryption speed was improved compared with FF1 and FF3-1. Improving the encryption speed of format-preserving encryption will make it easier to apply format-preserving encryption to various systems.

The Curse of Small Domains: New Attacks on Format-Preserving Encryption.

Abstract: Format-preserving encryption (FPE) produces ciphertexts which have the same format as the plaintexts. Building secure FPE is very challenging, and recent attacks (Bellare, Hoang, Tessaro, CCS ’16; Durak and Vaudenay, CRYPTO ’17) have highlighted security deficiencies in the recent NIST SP800-38G standard. This has left the question open of whether practical schemes with high security exist.

Advance security technique for format preserving encryption

Abstract: Cryptography is a technique used to transmit data in a secured way using encryption and decryption. Encryption is the process of converting information from its original form into an unintelligible form. In Cryptography many traditional algorithms introduced to provide security to sensitive data but encrypted data changes its length and format. There is a requirement to change existing database schema. There is no need to change database schema in Format Preserving Encryption. It is a way to encrypt data such that the cipher text has the same length and format as the plaintext. We have proposed new Format Preserving Method which provides Confidentiality and authentication tends to high security.

Format-preserving encryption for Excel

Abstract: In the age of Big data, it's taken more seriously for the publisher to protect the privacy information of released data. This paper focuses on the problem of Format-Preserving Encryption(FPE) of massive multi-type data and researches on the model and scheme of encryption and decryption. First of all, the model takes Excel as the unit of encryption and decryption and analyzes the file structure. Then, the model automatically identifies the types of data, verifies the legitimacy of data and filters the keywords which will not be encrypted and decrypted. At last, we invoke special algorithms to encrypt or decrypt the data. The experimental results show that the FPE scheme for Excel can perform correctly and efficiently with high data throughput.

A Novel Message-Preserving Scheme with Format-Preserving Encryption for Connected Cars in Multi-Access Edge Computing

Abstract: In connected cars with various electronic control unit (ECU) modules, Ethernet is used to communicate data received by the sensor in real time, but it is partially used alongside a controller area network (CAN) due to the cost. There are security threats in the CAN, such as replay attacks and denial-of-service attacks, which can disrupt the driver or cause serious damage, such as a car accident through malicious manipulation. Although several secure protocols for protecting CAN messages have been proposed, they carry limitations, such as combining additional elements for security or modifying CAN messages with a limited length. Therefore, in this paper, we propose a method for encrypting the data frame, including real data in the CAN message structure, using format-preserving encryption (FPE), which ensures that the plaintext and ciphertext have the same format and length. In this way, block ciphers such as AES-128 must be divided into two or three blocks, but FPE can be processed simultaneously by encrypting them according to the CAN message format, thus providing better security against denial-of-service attacks. Based on the 150 ms CAN message, a normal message was received from a malicious message injection of 180 ms or more for AES-128 and a malicious message injection of 100 ms or more for FPE. Finally, based on the proposed scheme, a CAN transmission environment is constructed for analyzing the encryption/decryption rate and the process of transmitting and processing the encrypted message for connected cars in multi-access edge computing (MEC). This scheme is compared with other algorithms to verify that it can be used in a real environment.