NESSIE (New European Schemes for Signatures, Integrity and Encryption) was a European research project funded from 2000 to 2003 to identify secure cryptographic primitives. The project was comparable to the NIST AES process and the Japanese Government-sponsored CRYPTREC project, but with notable differences from both. In particular, there is both overlap and disagreement between the selections and recommendations from NESSIE and CRYPTREC (as of the August 2003 draft report). The NESSIE participants include some of the foremost active cryptographers in the world, as does the CRYPTREC project.
NESSIE was intended to identify and evaluate quality cryptographic designs in several categories, and to that end issued a public call for submissions in March 2000. Forty-two were received, and in February 2003 twelve of the submissions were selected. In addition, five algorithms already publicly known, but not explicitly submitted to the project, were chosen as "selectees". The project has publicly announced that "no weaknesses were found in the selected designs".
Selected algorithms
editThe selected algorithms and their submitters or developers are listed below. The five already publicly known, but not formally submitted to the project, are marked with a "*". Most may be used by anyone for any purpose without needing to seek a patent license from anyone; a license agreement is needed for those marked with a "#", but the licensors of those have committed to "reasonable non-discriminatory license terms for all interested", according to a NESSIE project press release.
None of the six stream ciphers submitted to NESSIE were selected because every one fell to cryptanalysis. This surprising result led to the eSTREAM project.
Block ciphers
edit- MISTY1: Mitsubishi Electric
- AES*: (Advanced Encryption Standard) (NIST, FIPS Pub 197) (aka Rijndael)
- Camellia: Nippon Telegraph and Telephone and Mitsubishi Electric
- SHACAL-2: Gemplus
Collision-Resistant Hash Functions
edit- WHIRLPOOL: Scopus Tecnologia S.A. and K.U.Leuven
- SHA-256*, SHA-384* and SHA-512*: NSA, (US FIPS 180-2)
Message Authentication Codes
edit- UMAC: Intel Corp, Univ. of Nevada at Reno, IBM Research Laboratory, Technion Institute, and Univ. of California at Davis
- Two-Track-MAC: Katholieke Universiteit Leuven and debis AG
- EMAC: Berendschot et al.
- HMAC*: (ISO/IEC 9797-1);
Asymmetric encryption schemes
edit- PSEC-KEM: Nippon Telegraph and Telephone Corp
- RSA-KEM*: RSA key exchange mechanism (draft of ISO/IEC 18033-2)
- ACE Encrypt#: IBM Zurich Research Laboratory
Digital signature algorithms
edit- RSA-PSS: RSA Laboratories
- ECDSA: Certicom Corp
- SFLASH: Schlumberger Corp (SFLASH was broken in 2007[1] and should not be used anymore).
Asymmetric Identification Schemes
edit- GPS-auth: Ecole Normale Supérieure, France Télécom, and La Poste
Other entrants
editEntrants that did not get past the first stage of the contest include Noekeon, Q, Nimbus, NUSH, Grand Cru, Anubis, Hierocrypt, SC2000, and LILI-128.
Project contractors
editThe contractors and their representatives in the project were:
- Katholieke Universiteit Leuven (Prime contractor): Bart Preneel, Alex Biryukov, Antoon Bosselaers, Christophe de Cannière, Bart Van Rompay
- École Normale Supérieure: Jacques Stern, Louis Granboulan, Gwenaëlle Martinet
- Royal Holloway, University of London: Sean Murphy, Alex Dent, Rachel Shipsey, Christine Swart, Juliette White
- Siemens AG: Markus Dichtl, Marcus Schafheutle
- Technion Institute of Technology: Eli Biham, Orr Dunkelman, Vladimir Furman
- Université catholique de Louvain: Jean-Jacques Quisquater, Mathieu Ciet, Francesco Sica
- Universitetet i Bergen: Lars Knudsen, Håvard Raddum
See also
editReferences
edit- ^ Vivien Dubois; Pierre-Alain Fouque; Adi Shamir; Jacques Stern (2007-04-20), Practical Cryptanalysis of SFLASH, retrieved 2017-03-03