PRIMATEs are a family of permutation-based authenticated encryption algorithms for lightweight applications. They are currently under submission to the CAESAR competition.
There are three PRIMATEs: the basic SpongeWrap-variant HANUMAN, GIBBON for speed-critical applications, and APE for additional security when nonces are reused or unverified plaintext is released.
When resistance against hardware side-channel attacks is required, the PRIMATEs permutation has been designed to offer an efficient threshold implementation to counter first-order DPA attacks, based on glitch-free secret-sharing-based masking.
The specification and the reference implementation of PRIMATEs has been updated to v1.1, as a result of a ciphertext forgery by Serge Vaudenay and Damian Vizár.
Only HANUMAN is updated; the evaluation of the permutation p1 after the processing of associated data is now performed regardless of the size of the associated data A. GIBBON and APE remain unchanged.
PRIMATEs has advanced to the second round of the CAESAR competition.
We have decided not to tweak PRIMATEs for the second round. The latest version of the specification can be found here: latest specification.
During the Paris Symmetric-Key research retreat, the PRIMATEs team handed over a crate of Westvleteren XII to Brice Minaud.
We congratulate Brice Minaud again for winning the Drunkey Monkey Competition, and thank him for sharing his beers during the workshop.
The Paris Symmetric-Key research retreat had a large number of very active participants, and several new cryptanalysis results related to the CAESAR competition were obtained during this event.
The specification of PRIMATEs has been updated to v1.02. The change with the previous specification, is that we clarify the bounds on collision producing trails (Sect. 4.4.2).
PRIMATEs was be presented by Nicky Mouha at the DIAC 2014 workshop. The DIAC slides are available on-line.
PRIMATEs was presented by Begül Bilgin at the CrossFyre 2014 workshop.
The PRIMATEs slides are available on-line.
The specification of PRIMATEs has been updated to v1.01. This specification makes our intention explicit that the nonce length is a fixed-length parameter.
We thank Ivan Tjuawinata and Hongjun Wu for their observations regarding variable-length nonces.
For the most interesting cryptanalysis of PRIMATEs as submitted to first round of the CAESAR competition, we give away an entire crate (24 bottles of 33 cl) of the best beer in the world: the Westvleteren XII Trappist beer.
Entries must be sent to the crypto-competitions mailing list before the start of DIAC 2014. The choice of the winner is at the discretion of the PRIMATEs designers, and will be announced at DIAC 2014.
For the runner-up, we provide a 1 kg box of Leonidas chocolates.