Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Analysis of VAES3 (FF2)

Published

Author(s)

Morris J. Dworkin, Ray A. Perlner

Abstract

The National Institute of Standards and Technology (NIST) specified three methods for format-preserving encryption (FPE) in Draft NIST Special Publication (SP) 800-38G, which was released for public comment in July, 2013. Each method was a mode of operation of the Advanced Encryption Standard (AES). One of the three modes, VAES3, was specified under the name FF2 in the NIST draft. This note describes a theoretical chosen-plaintext attack that shows the security strength of FF2 is less than 128 bits.
Citation
Cryptology ePrint Archive

Keywords

Advanced Encryption Standard, FF2, format-preserving encryption, mode of operation, VAES3

Citation

Dworkin, M. and Perlner, R. (2015), Analysis of VAES3 (FF2), Cryptology ePrint Archive, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=917829, http://eprint.iacr.org/2015/306 (Accessed May 23, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created April 2, 2015, Updated February 19, 2017