Abstract:
At the end of 2022, standardization recommendations were adopted in the Russian Federation that define the mode of operation of a block cipher to protect block-oriented storage devices. This mode is called Disk Encryption with Counter. It has several operational characteristics, that complicate its use for system partition encryption. Therefore, the synthesis of alternative modes for full disk encryption is in demand. In the most of exisiting software for system partition encryption XTS mode is used, but it has several properties, that lead to degradation of its cryptographic qualities. This paper proposes a provably secure modification of XTS mode — XEH (Xor-Encrypt-Hash) mode. Furthermore, XEH's performance characteristics have been investigated.
Keywords:full disk encryption, block cipher mode of operation, symmetric cryptography, cryptographic protection of information, block-oriented storage devices.