Analysis of VAES3 (FF2)

Morris J. Dworkin; Ray A. Perlner

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

Analysis of VAES3 (FF2)

Published

April 2, 2015

Author(s)

Morris J. Dworkin, Ray A. Perlner

Abstract

The National Institute of Standards and Technology (NIST) specified three methods for format-preserving encryption (FPE) in Draft NIST Special Publication (SP) 800-38G, which was released for public comment in July, 2013. Each method was a mode of operation of the Advanced Encryption Standard (AES). One of the three modes, VAES3, was specified under the name FF2 in the NIST draft. This note describes a theoretical chosen-plaintext attack that shows the security strength of FF2 is less than 128 bits.

Citation

Cryptology ePrint Archive

Pub Weblink

http://eprint.iacr.org/2015/306

Pub Type

Websites

Download Paper

Local Download

Keywords

Advanced Encryption Standard, FF2, format-preserving encryption, mode of operation, VAES3

Cybersecurity and Federal information processing standards (FIPS)

Citation

Dworkin, M. and Perlner, R. (2015), Analysis of VAES3 (FF2), Cryptology ePrint Archive, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=917829, http://eprint.iacr.org/2015/306 (Accessed April 26, 2025)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created April 2, 2015, Updated February 19, 2017

Analysis of VAES3 (FF2)

Author(s)

Abstract

Download Paper

Keywords

Citation

Additional citation formats

Issues