Compressed Sampling and Authenticated-Encryption

Abstract:
With Compressed Sampling (CS), encryption can be integrated right into the sampling process leading to joint compression and confidentiality with a good level of security. However, data integrity is also a crucial security aspect in presence of strong active attackers, but till now no particular system that offers authenticated-encryption (AE) in CS was proposed. The work presented in this paper builds the basis for CS with authenticated-encryption by analyzing the generic constructions, i.e. compositions of a Compressed Sampling encryption mode and a Message Authentication Code (MAC), while considering the restrictions introduced by the CS process. Our results show that computing the MAC on the CS ciphertext is not only secure, but also the preferred and only feasible composition in most practical scenarios. A general design for CS-AE modes based on authenticated-encryption with associated-data is presented and analyzed with respect to security. Furthermore, a dedicated mode is derived from the general design and some experimental results are discussed.