NIST Standardizes Ascon Cryptographic Algorithm for IoT and Other Lightweight Devices

1 year ago AndyC

The
U.S.
National
Institute
of
Standards
and
Technology
(NIST)
has
announced
that
a
family
of
authenticated
encryption
and
hashing
algorithms
known
as
Ascon
will
be
standardized
for

lightweight
cryptography
applications.

NIST Standardizes Ascon Cryptographic Algorithm for IoT and Other Lightweight Devices

NIST Standardizes Ascon Cryptographic Algorithm for IoT and Other Lightweight Devices

The
U.S.
National
Institute
of
Standards
and
Technology
(NIST)
has
announced
that
a
family
of
authenticated
encryption
and
hashing
algorithms
known
as
Ascon
will
be
standardized
for

lightweight
cryptography
applications.

“The
chosen
algorithms
are
designed
to
protect
information
created
and
transmitted
by
the
Internet
of
Things
(IoT),
including
its
myriad
tiny
sensors
and
actuators,”
NIST

said.
“They
are
also
designed
for
other
miniature
technologies
such
as
implanted
medical
devices,
stress
detectors
inside
roads
and
bridges,
and
keyless
entry
fobs
for
vehicles.”

Put
differently,
the
idea
is
to
adopt
security
protections
via
lightweight
cryptography
in
devices
that
have
a
“limited
amount
of
electronic
resources.”

Ascon
is

credited
to
a
team
of
cryptographers
from
the
Graz
University
of
Technology,
Infineon
Technologies,
Lamarr
Security
Research,
and
Radboud
University.

The
suite
comprises
authenticated
ciphers
ASCON-128,
ASCON-128a,
and
a
variant
called
ASCON-80pq
that
comes
with
resistance
against

quantum
key-search.
It
also
offers
a
set
of
hash
functions
ASCON-HASH,
ASCON-HASHA,
ASCON-XOF,
and
ASCON-XOFA.

It’s
primarily
aimed
at
constrained
devices,
and
is
said
to
be
“easy
to
implement,
even
with
added
countermeasures
against

side-channel
attacks,”
according
to
its
developers.
This
means
that
even
if
an
adversary
manages
to
glean
sensitive
information
about
the
internal
state
during
data
processing,
it
cannot
be
leveraged
to
recover
the
secret
key.

Ascon
is
also
engineered
to
provide
authenticated
encryption
with
associated
data
(AEAD),
which
makes
it
possible
to
bind
ciphertext
to
additional
information,
such
as
a
device’s
IP
address,
to
authenticate
the
ciphertext
and
prove
its
integrity.

“The
algorithm
ensures
that
all
of
the
protected
data
is
authentic
and
has
not
changed
in
transit,”
NIST
said.
“AEAD
can
be
used
in
vehicle-to-vehicle
communications,
and
it
also
can
help
prevent
counterfeiting
of
messages
exchanged
with
the
radio
frequency
identification
(RFID)
tags
that
often
help
track
packages
in
warehouses.”

Implementations
of
the

algorithm
are

available
in
different
programming
languages,
such
as
C,
Java,
Python,
and
Rust,
in
addition
to
hardware
implementations
that
offer
side-channel
protections
and
energy
efficiency.

Found
this
article
interesting?
Follow
us
on

Twitter


and

LinkedIn
to
read
more
exclusive
content
we
post.

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

More Stories

Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking

Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking

10 hours ago AndyC
New XM Cyber Research: 80% of Exposures from Misconfigurations, Less Than 1% from CVEs

New XM Cyber Research: 80% of Exposures from Misconfigurations, Less Than 1% from CVEs

16 hours ago AndyC
China-Linked Hackers Adopt Two-Stage Infection Tactic to Deploy Deuterbear RAT

China-Linked Hackers Adopt Two-Stage Infection Tactic to Deploy Deuterbear RAT

16 hours ago AndyC
Kimsuky APT Deploying Linux Backdoor Gomir in South Korean Cyber Attacks

Kimsuky APT Deploying Linux Backdoor Gomir in South Korean Cyber Attacks

16 hours ago AndyC
CISA Warns of Actively Exploited D-Link Router Vulnerabilities - Patch Now

CISA Warns of Actively Exploited D-Link Router Vulnerabilities – Patch Now

22 hours ago AndyC
New Wi-Fi Vulnerability Enables Network Eavesdropping via Downgrade Attacks

New Wi-Fi Vulnerability Enables Network Eavesdropping via Downgrade Attacks

1 day ago AndyC

You may have missed

Turla APT used two new backdoors to infiltrate a European ministry of foreign affairs

Turla APT used two new backdoors to infiltrate a European ministry of foreign affairs

4 hours ago AndyC

Friday Squid Blogging: Emotional Support Squid

4 hours ago AndyC

How to Protect Yourself on Social Networks

10 hours ago AndyC
Nissan reveals ransomware attack exposed 53,000 workers' social security numbers

Nissan reveals ransomware attack exposed 53,000 workers’ social security numbers

10 hours ago AndyC
With three zero-days, it’s a patch-now Patch Tuesday for May

With three zero-days, it’s a patch-now Patch Tuesday for May

10 hours ago AndyC

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.