%0 Journal Article %T 对10轮AES-128的中间相遇攻击<br>A meet-in-the-middle attack on 10-round AES-128 %A 许力冬 %A 王明强< %A br> %A XU Li-dong %A WANG Ming-qiang %J 山东大学学报(理学版) %D 2018 %R 10.6040/j.issn.1671-9352.0.2017.465 %X 摘要: 给出了AES-128相邻两轮的轮密钥之间的一个线性关系。通过将这一关系与Hüseyin Demirci和Ali Ayd?n Sel?uk在2008年提出的一个5轮AES区分器相结合,构造了一个8轮AES区分器。在这个8轮AES区分器的基础上,设计了一个对10轮AES-128的中间相遇攻击方案。这一方案在预计算阶段可以节省相当大的存储空间。<br>Abstract: Some relationship between different adjacent round keys of AES-128 was discovered. Combining this relationship with the principle of the 5-round distinguisher presented by Hüseyin Demirci and Ali Ayd?n Sel?uk in 2008, an 8-round distinguisher was proposed. Based on this distinguisher, a meet-in-the-middle attack on 10-round AES-128 was designed. And, this distinguisher can save a considerable memory space in the precomputation step %K 密钥生成算法 %K 密钥扩展算法 %K 中间相遇攻击 %K 高级加密标准 %K < %K br> %K Rijndael %K meet-in-the-middle cryptanalysis %K AES %K key expansion algorithm %U http://lxbwk.njournal.sdu.edu.cn/CN/10.6040/j.issn.1671-9352.0.2017.465