摘要
Khudra算法是一种轻量级分组密码算法,算法总共需要进行18轮加密。可分性是一种广义的积分性质,用来进行密码算法的安全性评估。利用搜索得到的7轮积分区分器,对Khudra-64进行了9轮,10轮和11轮的密钥恢复攻击。在具体攻击中,9轮密钥恢复攻击的时间复杂度为2^56.08次9轮加密,数据复杂度为2^56。10轮密钥恢复攻击的时间复杂度为2^63.87次10轮加密,数据复杂度为2^60.09。11轮密钥恢复攻击的时间复杂度为2^80.63次11轮加密,数据复杂度为2^61.09。这是首次较为全面的对Khudra-64的积分性质评估。
Khudra is a lightweight block cipher requiring 18 rounds for an encryption.Division property is a generalized integral property used for evaluating the security of cryptographic algorithms.With a 7 rounds integral distinguisher obtained by search,key recovery attacks on khudra-64 are carried out for 9 rounds,10 rounds and 11 rounds.In the attacks,time complexities of the key recovery attack with 9 rounds,10 rounds and 11 rounds are 2^56.08 times 9 rounds encryption,263.87 times 10 rounds encryption and 2^80.63 times 11 rounds encryption respectively,and corresponding data complexities are 2^56,2^60.09 and 2^61.09 respectively.This work is the first comprehensive evaluation to the integral properties of the Khudra-64.
作者
李艳俊
梁萌
林昊
袁峰
LI Yanjun;LIANG Meng;LIN Hao;YUAN Feng(Beijing Electronic Science and Technology Institute,Beijing 100070,P.R.China)
出处
《北京电子科技学院学报》
2020年第1期13-19,共7页
Journal of Beijing Electronic Science And Technology Institute
基金
中央高校基本科研业务费项目(对称密码量子分析研究)(No.328201901)。
