摘要
MORUS算法是被提交到CAESAR竞赛中的一种认证加密算法,已经进入第三轮安全评估。对算法进行区分分析对于其安全性评估具有很重要的意义。以MORUS-1280-128为例,在nonce重用的情况下,对算法进行区分分析能够区分出密文的绝大部分比特,并通过寻找内部状态碰撞对算法进行标签伪造攻击。该研究结果对MORUS算法的安全性分析有很重要的意义。
MORUS is an authenticated cipher,which is submitted to CAESAR competition and has been selected into the third-round security evaluation stage.To study the distinguishing attack of MORUS is significant for its security evaluation.This paper studied the distinguishing attack of MORUS-1280-128 in a nonce-resuse scenario.By using this method,the majority ciphertext can be distinguished,and a collision in internal state can be found for a tag forgery attack.The paper’s research results are of great significance for the safety analysis of MORUS.
作者
郑秀林
宋海燕
付伊鹏
ZHENG Xiu-lin;SONG Hai-yan;FU Yi-peng(Department of Information Security,Beijing Electronic Science and Technology Institute,Beijing 100070,China;School of Telecommunications Engineering,Xidian University,Xi’an 710071,China)
出处
《计算机科学》
CSCD
北大核心
2018年第4期152-156,共5页
Computer Science
关键词
认证加密
MORUS算法
区分分析
伪造攻击
Authenticated encryption
MORUS algorithm
Distinguishing attack
Forgery attack