TANGRAM:一个基于比特切片的适合多平台的分组密码

TANGRAM:A Bit-slice Block Cipher Suitable for Multiple Platforms

本文提出一族新的分组密码算法TANGRAM.TANGRAM包含三个版本:TANGRAM128/128,分组长度和密钥长度均为128比特;TANGRAM 128/256,分组长度为128比特,密钥长度为256比特;TANGRAM 256/256,分组长度和密钥长度均为256比特.TANGRAM分组密码采用SP网络,我们对其S盒的选取以及线性层移位参数的选取进行了深入研究,以使TANGRAM尽可能达到最优的安全性和实现性能的性价比.我们深入分析了TANGRAM针对差分、线性、不可能差分、积分、相关密钥等重要密码分析方法的安全性,为它预留了足够的安全冗余.得益于比特切片方法,TANGRAM在多种软件和硬件平台上都具有很好的表现,可以灵活地适用于多种应用场景.

This study proposes a new block cipher named TANGRAM.It has 3 different versions:TANGRAM 128/128,with block length and key length both being 128 bits;TANGRAM 128/256,with 128-bit block length and 256-bit key length;TANGRAM 256/256,with block length and key length both being 256 bits.TANGRAM uses an SP-network.To achieve the best possible securityperformance tradeoff,a deep study has been made on the selection of the TANGRAM S-box and the rotation parameters of the linear layer.An extensive and deep security analysis of TANGRAM was made against known cryptanalytic approaches,including differential,linear,impossible differential,integral,and related-key cryptanalysis,the analysis shows that TANGRAM has sufficient security redundancy.Due to its bit-slice style,TANGRAM offers great performance in both hardware and software implementations,which provides good flexibility for different application platforms.