期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

用不可能差分法分析17轮SMS4算法 被引量:12

Impossible differential attack on the 17-round block cipher SMS4
下载PDF
导出
摘要 SMS4是我国在2006年公布的第一个商用分组密码算法.通过分析SMS4每一轮输入输出对的差分的变化,首次给出一个14轮SMS4的不可能差分特性:如果输入的明文对的差分为(a,a,a,0),那么14轮之后的输出差分不可能为(a,a,a,0).利用该性质,在14轮不可能差分密码分析的基础上,前面加了两轮,后面加了一轮,提出了一种不可能差分密码分析17轮SMS4的方法.该方法分析17轮SMS4需要2103的选择明文,2124的17轮SMS4加密以及289分组的记忆存储空间,猜测密钥的错误概率仅为2-88.7. The SMS4 is the first commercial block cipher published by our government in 2006. By analyzing the changes of the difference between input and output pairs in each round, this paper first presents an impossible differential property for the 14-round SMS4 if the difference of the input plaintext pair is (a, a, a, 0), it is impossible that the difference of 14-round output pair is (a, a, a, 0). Based on this property, a new method is proposed for cryptanalyzing the 17-round SMS4, which is to add two rounds and one round to each end of the impossible differential cryptanalysis for the 14-round SMS4. This attack on the reduced 17-round SMS4 requires about 2^103 chosen plaintexts, performs 2^124 17-round SMS4 encryptions, and demands 2^89 words of memory. Furthermore, the probability of its failure to recover the secret key is only 2^- 88 7.
作者 陈杰 胡予濮 张跃宇
机构地区 西安电子科技大学计算机网络与信息安全教育部重点实验室
出处 《西安电子科技大学学报》 EI CAS CSCD 北大核心 2008年第3期455-458,共4页 Journal of Xidian University
基金 国家自然科学基金资助(60673072) 国家密码发展基金资助 国家"973"重点基础研究发展规划项目基金资助(2007CB311201)
关键词 分组密码 SMS4算法 不可能差分分析 block cipher SMS4 impossible differential attack
分类号 TN918.1 [电子电信—通信与信息系统]
  • 相关文献

参考文献7

  • 1Office of State Commercial Cipher Administration.Block Cipher for WLAN Products -SMS4[EB/OL].[2006-12-23].http://www.oscca.gov.cn/UpFile/2006021016423197990.
  • 2张蕾,吴文玲.SMS4密码算法的差分故障攻击[J].计算机学报,2006,29(9):1596-1602. 被引量:67
  • 3Biham E,Keller N.Cryptanalysis of Reduced Variants of Rijndael[DB/OL].[2000-12-01].http://csrc.nist.gov/envryption/aes/round2/conf3/aes3papers.html.
  • 4Cheon J H,Kim M J,Kim K,et al.Improved Impossible Differential Cryptanalysis of Rijndael and Crypton[C]//ICICS2001:LNCS 2 288.Berlin:Springer-Verlag,2002:39-49.
  • 5Phan R C W.Impossible Differential Cryptanalysis of 7-round Advanced Encryption Standard[J].Information Processing Letters,2004,91(1):33-38.
  • 6Biham E,Dunkelman O,Keller N.Related-key Impossible Differential Attacks on 8-round AES-192[C]//Proceeding of CT-RSA 2006:LNCS 3 860.Berlin:Springer-Verlag,2006:21-33.
  • 7陈杰,张跃宇,胡予濮.一种新的6轮AES不可能差分密码分析方法[J].西安电子科技大学学报,2006,33(4):598-601. 被引量:7

二级参考文献12

  • 1国家商用密码管理办公室.无线局域网产品使用的SMS4密码算法.http://www. oscca. gov. cn/UpFile/200621016423197990.pdf.
  • 2Boneh D. , DeMillo R. A. , Lipton R. J.. On the importance of checking cryptographic protocols for faults. In: Proceedings of the EUROCRYPT'97, Konstanz, Germany, 1997, 37-51
  • 3Biham E. , Shamir A.. Differential fault analysis of secret key cryptosystems. In: Proceedings of the CRYPTO' 97, Santa Barbara, California, USA, 1997, 513-525
  • 4Biehl I. , Meyer B. , Muller V.. Differential fault attacks on elliptic curve cryptosystems. In: Proceedings of the CRYPTO 2000, Santa Barbara, California, USA, 2000, 131- 146
  • 5Blomer J. , Seifert Jean Pierre. Fault based cryptanalysis of the advanced encryption standard (AES). In: Wright R. N. ed.Financial Cryptography-FC 2003. Lecture Notes in Computer Science 2742. Berlin: Springer-Verlag, 2003, 162- 181
  • 6Giraud C.. DFA on AES. In: Dobbertin H. , Rljmen V.Sowa A. eds. Advanced Eneryption Standard 4-AES 2004. Lecture Notes in Computer Science 3373. Berlin: Springer Verlag, 2005, 27-41
  • 7Chen Chien-Ning, Yen Sung-Ming. Differential fault analysis on AES key schedule and some countermeasures. In: Proceedings of the Australasian Conference on Information Security and Privacy-ACISP 2003, Wollongong, Australia, 2003, 118- 129
  • 8Dusart P. , Letourneux G. , Vivolo O.. Differential fault analysis on AES. In: Zhou J., Yung M. , Han Y.. eds.. Applied Cryptography and Network Security-ACNS 2003. Lecture Notes in Computer Science 2846. Berlin: Springer-Verlag,
  • 9Heroine L.. A differential fault attack against early rounds of(Triple-) DES. In: Joye Marc, Quisquater Jean-Jacques eds.Cryptographic Hardware and Embedded Systems CHES 2004.Lecture Notes in Computer Science 3156. Berlin: Springer-Verlag, 2004, 254-267
  • 10Hoch Jonathan J. , Shamir A: Fault analysis of stream ciphers. In:Joye Marc, Quisquater Jean Jacques eds. Cryptographic Hardware and Embedded Systems-CHES 2004. Lecture Notes in Computer Science 3156. Berlin: Springer-Vetlag, 2004, 240-253

共引文献72

同被引文献103

  • 1高飞,李兴华.基于混沌序列的位图像加密研究[J].北京理工大学学报,2005,25(5):447-450. 被引量:33
  • 2李太勇,贾华丁,吴江.基于三维混沌序列的数字图像加密算法[J].计算机应用,2006,26(7):1652-1654. 被引量:30
  • 3张蕾,吴文玲.SMS4密码算法的差分故障攻击[J].计算机学报,2006,29(9):1596-1602. 被引量:67
  • 4张远洋,李峥,徐建,张少武.面积优先的分组密码算法SMS4 IP核设计[J].电子技术应用,2007,33(1):127-129. 被引量:7
  • 5Specification of SMS4, block cipher for WLAN products- SMS4 ( in Chinese ) [EB/OL]. http://www. oscca, gov. cn/UpFile/200621016423197990, pdf.
  • 6LIU F, JI W, HU L, et al. Analysis of the SMS4 block cipher [C]. Proceeding of ACISP' 07, Springer-Verlag, 2007,4586 : 158 - 170.
  • 7KIM T, KING J, HONG S, et al. Linear and differential cryptanalysis of reduced SMS4 block cipher. Cryptology ePrint Archive : Report 2008/281, 2008.
  • 8ZHANG L, ZHANG W, WU W. Cryptanalysis of reduced-round SMS4 block cipher [ C ]. Proceedings of ACISP'08, Lecture Notes in Computer Science, Springer-Verlag, 2008, 5107 : 216 - 229.
  • 9LU J. Attacking reduced-round versions of the SMS4 block cipher in the chinese WAPI standard [ C ]. Proceedings of ICICS' 07, Springer-Verlag, 2007, 4861: 306 -318.
  • 10BIHAM E, SHAMIR A. Differential cryptanalysis of DES-like cryptosystem ( extended abstract) [C]//MENEZES A, VANSTONE S A (eds.) CRYPTO 1990, Springer, Heidelberg, 1991,537 : 2 - 21.

引证文献12

二级引证文献63

西安电子科技大学学报
2008年 第3期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部