|
|
- 2018
Midori算法的多维零相关线性分析
|
Abstract:
摘要: 利用零相关线性分析方法评估Midori64算法的安全性。利用“中间相错”的方法构造了Midori64的6轮零相关线性逼近,在此基础上,对10轮Midori64进行了密钥恢复攻击。该攻击过程的数据复杂度约为262.4个明密文对,计算复杂度为279.35次10轮加密运算。结果表明缩减至10轮的Midori64算法对于零相关线性分析方法是不免疫的。
Abstract: The security of Midori64 against zero-correlation linear cryptanalysis is evaluated. By using the “miss-in-the-middle” technique, 6-round zero-correlation linear approximations are constructed. Based on the 6-round distinguisher, key-recovery attack on 10-round Midori is performed. The data complexity is 262.4 plaintexts and the time complexity is 279.35 10-round encryptions. The testing result shows that the Midori reduced to 10-round is not immune to multidimensional zero-correlation linear analysis
| [1] | BOGDANOV A, LEANDER G, NYBERG K, et al. Integral and multidimensional linear distinguishers with correlation zero[C] // Proceedings of the ASIACRYPT 2012. Beijing: Springer, 2012: 244-261. |
| [2] | BOGDANOV A, WANG Meiqin. Zero correlation linear cryptanalysis with reduced data complexity[C] // Proceedings of the FSE 2012. Washington: Springer, 2012: 29-48. |
| [3] | BOGDANOV A, RIJMEN V. Linear hulls with correlation zero and linear cryptanalysis of block ciphers[J]. Designs, Codes and Cryptography, 2014, 70(3):369-383. |
| [4] | WANG Yanfeng, WU Wenling. Improved multidimensional zero-correlation linear cryptanalysis and applications to LBlock and TWINE[M] // Information Security and Privacy. Berlin: Springer, 2014: 1-16. |
| [5] | WEN Long, WANG Meiqin, BOGDANOV A. Multidimensional zero-correlation linear cryptanalysis of E<sub>2</sub>[M]. Progress in Cryptology — AFRICACRYPT 2014. Berlin: Springer, 2014: 147-164. |
| [6] | 伊文坛, 陈少真. FOX密码的多维零相关线性分析[J]. 密码学报,2015,2(1):27-39. YI Wentan, CHEN Shaozhen. Multidimensional zero-correlation linear attacks on FOX block cipher[J]. Journal of Cryptologic Research, 2015, 2(1):27-39. |
| [7] | 伊文坛, 鲁林真, 陈少真. 轻量级密码算法MIBS的零相关和积分分析[J]. 电子与信息学报, 2016,38(4):819-826. YI Wentan, LU Linzhen, CHEN Shaozhen. Integral and zero-correlation linear cryptanalysis of lightweight block cipher MIBS[J]. Journal of Electronics & Information Technology, 2016, 38(4):819-826. |
| [8] | GUO Jian, JEAN J, NIKOLI'C I, et al. Invariant subspace attack against full midori64[R/OL]. IACR Cryptology ePrint Archive, 2015. https://eprint.iacr.org/2015/1189.pdf. |
| [9] | CANNIèRE C D, DUNKELMAN O, KNE?EVIC. KATAN and KTANTAN——a family of small and efficient hardware-oriented block ciphers[C] // International Workshop on Cryptographic Hardware and Embedded Systems. Berlin: Springer, 2009: 272-288. |
| [10] | BANIK S, BOGDANOV A, ISOBE T, et al. Midori: a block cipher for low energy[C] // Advances in Cryptology—ASIACRYPT 2015. Berlin: Springer, 2014: 411-436. |
| [11] | WU W, ZHANG L. LBlock: a lightweight block cipher[M] // Applied Cryptography and Network Security, International Conference: Proceedings 6715. Berlin:Springer, 2011: 327-344. |
| [12] | 马猛, 赵亚群, 刘庆聪, 等. SMS4密码的多维零相关线性分析[J]. 密码学报,2015,2(5):458-466. MA Meng, ZHAO Yaqun, LIU Qingcong, et al. Multidimensional zero-correlation linear cryptanalysis on SMS4 algorithm[J]. Journal of Cryptologic Research, 2015, 2(5):458-466. |
| [13] | LIN Li, WU Wenling. Meet-in-the-middle attacks on reduced-round midori64[R/OL]. IACR Cryptology ePrint Archive, 2015. https://eprint.iacr.org/2015/1165.pdf. |
| [14] | 王美琴, 温隆. 零相关线性分析研究[J]. 密码学报, 2014,1(3):296-310. WANG Meiqin, Wen Long. Research on zero-correlation linear cryptanalysis[J]. Journal of Cryptologic Research, 2014, 1(3):296-310. |
| [15] | CHEN Zhan, WANG Xiaoyun. Impossible differential cryptanalysis of midori[R/OL]. IACR Cryptology ePrint Archive, 2016. https://eprint.iacr.org/2016/535.pdf. |
| [16] | BOGDANOV A, KNUDSEN L R, LEANDER G, et al. Present: an ultra-lightweight block cipher[C] //International Workshop on Cryptographic Hardware and Embedded Systems. Berlin:Springer, 2007: 450-466. |
| [17] | GUO Jian, PEYRIN T, POSCHMANN A, et al. The LED block cipher[M] // Cryptographic Hardware and Embedded Systems — CHES 2011. Berlin: Springer, 2011: 326-341. |
