Team Keccak

Guido Bertoni³, Joan Daemen², Seth Hoffert, Michaël Peeters¹, Gilles Van Assche¹ and Ronny Van Keer¹
¹STMicroelectronics - ²Radboud University - ³Security Pattern

Kravatte

Kravatte is a deck function, on top of which we define simple modes:

Kravatte-SANE, an authenticated encryption scheme supporting sessions, like Ketje and Keyak;
Kravatte-SANSE, an authenticated encryption scheme supporting sessions and using the synthetic initial value (SIV) technique, robust under nonce repetitions;
Kravatte-WBC, a wide-block cipher for authenticated encryption with minimal expansion.

Kravatte builds upon the Keccak-p permutations and the novel Farfalle construction, which can somehow be seen as the parallel counterpart of the sponge construction. It thus provides inherent parallelism that can be readily exploited on platforms supporting SIMD instruction sets or multiple cores.

Technical details

Synopsis	The Kravatte deck function
Designed by	Guido Bertoni, Joan Daemen, Seth Hoffert, Michaël Peeters, Gilles Van Assche and Ronny Van Keer
Implements	A deck function
Construction	The Farfalle construction
Primitive	The Keccak-p[1600, 6] permutation and specific rolling functions
Parameterized by	No parameter
Instances	Just Kravatte.
Status	Relies on strong components, but otherwise only recently published.

Resources: