Cisco releases source code for experimental block cipher
Posted on 23 June 2014.
A team of Cisco software engineers has created a new encryption scheme, and has released it to the public along with the caveat that this new block cypher is not ready for production, i.e. is still in the experimental phase.

It's been dubbed FNR (shortened for "Flexible Naor and Reingold"), and is a "practical variant" of the work proposed in an earlier work by researchers Moni Naor and Omer Reingold.

"There is a compelling need for privacy of sensitive fields before data is shared with any cloud provider, semi-trusted vendors, partners etc. For example network telemetry data, transaction logs etc. are often required to be shared for benefiting from variety of Software as Service applications. Such sensitive data fields are of prescribed and arbitrary lengths," the researchers explained in the paper.

"While designing privacy for sensitive fields, it may be desirable to preserve the length of the inputs, in order to avoid any re-engineering of packet formats or database columns of existing systems."

The FNR cypher is meant to achieve that, and would be great for encrypting objects that are less than 128 bits in size, such as IPv4 addresses, MAC addresses, credit card numbers, arbitrary strings, and so on.

"When FNR is used in ECB mode, it realizes a deterministic encryption scheme. Like all deterministic encryption methods, this does not provide semantic security, but determinism is needed in situations where anonymizing telemetry and log data (especially in cloud based network monitoring scenarios) is necessary," explained Sashank Dara, one of the two engineers.

Cisco has released the reference implementation of the FNR encryption scheme under open source license LGPLv2, and it's source code can be found here.









Spotlight

Almost 1 in 10 Android apps are now malware

Posted on 28 July 2014.  |  Cheetah Mobile Threat Research Labs analyzed trends in mobile viruses for Q1 and Q2 of 2014. Pulling 24.4 million sample files they found that 2.2 million files had viruses. This is a 153% increase from the number of infected files in 2013.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Mon, Jul 28th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //