Impossible differential cryptanalysis of advanced encryption standard 被引量：2

Impossible differential cryptanalysis of advanced encryption standard

导出

摘要 Impossible differential cryptanalysis is a method recovering secret key, which gets rid of the keys that satisfy impossible differential relations. This paper concentrates on the impossible differential cryptanalysis of Advanced Encryption Standard （AES） and presents two methods for impossible differential cryptanalysis of 7-round AES-192 and 8-round AES-256 combined with time-memory trade-off by exploiting weaknesses in their key schedule. This attack on the reduced to 7-round AES-192 requires about 294.5 chosen plaintexts, demands 2129 words of memory, and performs 2157 7-round AES-192 encryptions. Furthermore, this attack on the reduced to 8-round AES-256 requires about 2^101 chosen plaintexts, demands 2^201 words of memory, and performs 2^228 8-round AES-256 encryptions. Impossible differential cryptanalysis is a method recovering secret key, which gets rid of the keys that satisfy impossible differential relations. This paper concentrates on the impossible differential cryptanalysis of Advanced Encryption Standard （AES） and presents two methods for impossible differential cryptanalysis of 7-round AES-192 and 8-round AES-256 combined with time-memory trade-off by exploiting weaknesses in their key schedule. This attack on the reduced to 7-round AES-192 requires about 294.5 chosen plaintexts, demands 2129 words of memory, and performs 2157 7-round AES-192 encryptions. Furthermore, this attack on the reduced to 8-round AES-256 requires about 2^101 chosen plaintexts, demands 2^201 words of memory, and performs 2^228 8-round AES-256 encryptions.

作者 CHEN Jie HU YuPu ZHANG YueYu

机构地区 Key Laboratory of Computer Networks & Information Security

出处《Science in China(Series F)》 2007年第3期342-350,共9页 中国科学（F辑英文版）

基金 the National Natural Science Foundation of China (Grant No. 60673072) Foundation of National Laboratory for Modern Communications (Grant No. 51436030105DZ0105)

关键词 block cipher impossible differential cryptanalysis advanced encryption standard CRYPTANALYSIS block cipher, impossible differential cryptanalysis, advanced encryption standard, cryptanalysis

分类号 TN918 [电子电信—通信与信息系统]

引文网络
相关文献

参考文献1

1WUWenling FENGDengguo.Collision attack on reduced-round Camellia[J].Science in China(Series F),2005,48(1):78-90. 被引量：7

二级参考文献9

1[1]http://www.cryptonessie.org.
2[2]Aoki, K., Ichikawa, T., Kanda, M. et al., Specification of Camellia-a 128-bit block cipher, Selected Areas in Cryptography-SAC'2000, Berlin: Springer-Verlag, 2000, 183-191.
3[3]Hatano, Y., Sekine, H., Kaneko, T., Higher order differential attack of Camellia (Ⅱ), Selected Areas in Cryptography-SAC'02, Berlin: Springer-Verlag, 2002, 39-56.
4[4]Lee, S., Hong, S., Lim, J. et al., Truncated differential cryptanalysis of Camellia, ICISC2001, Berlin:Springer-Verlag, 1993, 32-38.
5[5]Sugita, M., Kobara, K., Imai, H., Security of reduced version of the block cipher Camellia against truncated and impossible differential cryptanalysis, Asiacrypt'01, Berlin: Springer-Verlag, 2001, 193-207.
6[6]Shirai, T., Kanamaru, S., Abe, G., Improved upper bounds of differential and linear characteristic probability for Camellia, Fast Software Encryption-FSE'02, Berlin: Springer-Verlag, 2002,128- 142.
7[7]He Yeping, Qing Sihan, Square attack on reduced Camellia cipher, ICICS2001, Berlin: Springer-Verlag, 2001,238-245.
8[8]Yeom, Y., Park, S., Kim, I., On the security of Camellia against the square attack, Fast Software Encryption-FSE'02, Berlin: Springer-Verlag, 2002, 89-99.
9[9]Yeom, Y., Park, S., Kim, I., A study of Integral type cryptanalysis on Camellia, The 2003 Symposium on Cryptography and Security -SCS'03, Hamamatsu, Japan, 2003, 26-29.

共引文献6

1韦永壮,胡予濮.简化AES-192和AES-256的相关密钥矩形新攻击[J].中国科学（F辑:信息科学）,2009,39(2):246-253. 被引量：3
2陈杰,胡予濮,张跃宇.不可能差分分析高级加密标准[J].中国科学（E辑）,2007,37(2):191-198. 被引量：4
3WEI YongZhuang HU YuPu.New related-key rectangle attacks on reduced AES-192 and AES-256[J].Science in China(Series F),2009,52(4):617-626. 被引量：1
4董晓丽,胡予濮,陈杰.不可能差分分析8轮AES-256[J].武汉大学学报（信息科学版）,2010,35(5):595-598. 被引量：2
5肖继谋,黄远清,何桂恺,路迎春.基于DTOPSIS法的油茶果实经济性状评价研究——以广西国有三门江林场油茶资源圃为例[J].农业研究与应用,2014,27(6):1-9.
6邱丰品,卫宏儒,潘锦航.对简化轮数的SNAKE(2)算法的碰撞攻击[J].计算机科学,2015,42(9):147-150.

同被引文献17

1刘景美,韦宝典,王新梅.Rijndael S-box仿射运算研究[J].西安电子科技大学学报,2005,32(1):94-97. 被引量：4
2Daemen J, Rijmen V. The block cipher square[C]// Proceedings of Fast Software Eneryption'97. Berlin: Springer-Verlag, 1997, 1 267: 149-165.
3Biham E, Keller N. Cryptanalysis of reduced variants of Rijndael [C/OL] // Official Public Comment for Round 2 of the AES Development Effort (2000). [2000-04-08] http: //csrc. nist. gov/encryption/aes/ round2/conf3/aes3papers, html.
4Cheon J, Kim M, Kim K, et al. Improved impossible differential cryptanalysis of Rijndael and crypton [C]//Proceeding of ICICS' 2001. Berlin: Springer Verlag, 2002, 2 288:39-49.
5Phan W. Impossible differential cryptanalysis of 7- round advanced encryption standard[J]. Information Processing Letters, 2004, 91(1): 33-38.
6Biham E, Dunkelman O, Keller N. Related-key impossible differential attacks on 8-round AES-192 [C]//Proceeding of CT-RSA 2006. Berlin: Springer- Verlag, 2006, 3 860: 21-33.
7Zhang Went ao, Wu Wenling, Feng Dengguo. New results on impossible differential eryptanalysis of reduced AES[C]// Proceeding of ICICS' 2007. Berlin: Springer-Verlag, 2007, 4 817: 239-250.
8Biryukov A. The boomerang attack on 5 and 6- round reduced AES[C]//AES 2004. Heidelberg Springer, 2005, 3 373:11-15.
9刘景美,赵林森,王静,王新梅.确定RijndaelS盒布尔函数的等价方法[J].华中科技大学学报（自然科学版）,2010,38(1):58-60. 被引量：1
10伊文坛,田亚,陈少真.减缩轮PRIDE算法的线性分析[J].电子学报,2017,45(2):468-476. 被引量：3

引证文献2

1刘景美,赵林森.高级加密标准AES-192的7轮不可能差分分析[J].华中科技大学学报（自然科学版）,2010,38(12):73-76. 被引量：3
2李玮,孙文倩,谷大武,张爱琳,温云华.PRIDE轻量级密码的不可能统计故障分析[J].通信学报,2024,45(1):141-151.

二级引证文献3

1胡志华,覃中平.一种新的8轮AES_128不可能差分分析[J].小型微型计算机系统,2013,34(9):2111-2115. 被引量：3
2胡志华,覃中平,张青.一种新的9轮AES_256不可能差分分析[J].计算机科学,2014,41(8):197-201. 被引量：1
3王龙翔,董凯,董小社,张兴军.面向虚拟数据空间的轻量级安全传输方法[J].华中科技大学学报（自然科学版）,2021,49(4):108-113. 被引量：8

1魏志恒,姚国清.AES算法的分析与实现[J].电脑编程技巧与维护,2009(10):21-22. 被引量：1
2XIE Min,LI Jingjing,ZANG Yuechuan.Related-Key Impossible Differential Cryptanalysis of LBlock[J].Chinese Journal of Electronics,2017,26(1):35-41. 被引量：3
3CHEN Jie HU Yupu WEI Yongzhuang.A New Method for Impossible Differential Cryptanalysis of 8-Round Advanced Encryption Standard[J].Wuhan University Journal of Natural Sciences,2006,11(6):1559-1562.
4WUMeng,YANGNing-jian.Wavelet Image Encryption Algorithm Based on AES[J].The Journal of China Universities of Posts and Telecommunications,2002,9(4):64-69.
5王雪梅,孙晓东,陈昊明,刘艳华.AES算法介绍及其流水线设计研究[J].计算机安全,2007(10):5-8. 被引量：3
6GAO Sheng MA Wenping ZHU Jiwei.High-Order Bit Independence Criterion Test for the S-boxes[J].Wuhan University Journal of Natural Sciences,2011,16(5):447-451.
7陈志军,林志雄,唐伟.AES加密引擎[J].中国集成电路,2003,12(44):62-65. 被引量：1
8韩军,曾晓洋,赵佳.抗差分功耗分析和差分故障分析的AES算法VLSI设计与实现[J].通信学报,2010,31(1):20-29. 被引量：3
9吴文玲,张文涛,冯登国.Impossible Differential Cryptanalysis of Reduced-Round ARIA and Camellia[J].Journal of Computer Science & Technology,2007,22(3):449-456. 被引量：22
10杨子华,胡倩,程春红.Rijndael算法的Java实现[J].信息安全与通信保密,2005,27(2):117-119.

Science in China(Series F)

2007年第3期

浏览历史

内容加载中请稍等...