2.6: Notes & References

Some of the references I used for this section:

The Best Thing (TM):

https://sweet32.info/

https://sweet32.info/SWEET32_CCS16.pdf

https://danielmiessler.com/study/birthday_attack/

http://mathworld.wolfram.com/BirthdayAttack.html

1. Howard M. Heys, "A tutorial on linear and differential cryptanalysis", undated but probably 1999ish?

http://www.engr.mun.ca/~howard/Research/Papers/ldc_tutorial.html

2. Abdalla and Bellare,

https://link.springer.com/chapter/10.1007/3-540-44448-3_42

http://cseweb.ucsd.edu/~mihir/papers/rekey.html

found via

http://cseweb.ucsd.edu/~mihir/ 

That paper talks about differential/linear cryptanalysis and about the birthday paradox, saying block size $k$ needs to be rekeyed every $2^{k/2}$ blocks.

Bellare et al, A concrete security treatment of symmetric encryption:

analysis of the DES modes of operation

abstract from STOC 1997

https://ieeexplore.ieee.org/abstract/document/646128

full paper at

http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.117.4734&rep=rep1&type=pdf

Focuses on DES, which was in the process of being superseded by AES even in 1997, but the content of the paper is valuable with respect to CBC.  I found the paper a tough read when trying to figure out how to apply the equations.