CLEFIA-128算法的不可能差分密码分析

doi:10.11896/j.issn.1002-137X.2015.11.043

计算机科学 ›› 2015, Vol. 42 ›› Issue (11): 208-211.doi: 10.11896/j.issn.1002-137X.2015.11.043

CLEFIA-128算法的不可能差分密码分析

邱丰品,卫宏儒

北京科技大学数理学院北京100083,北京科技大学数理学院北京100083

出版日期:2018-11-14 发布日期:2018-11-14
基金资助:
本文受2013年国家自然科学基金(61272476),内蒙古自治区科技创新引导奖励资金(2012)资助

Impossible Differential Cryptanalysis of CLEFIA-128

QIU Feng-pin and WEI Hong-ru

Online:2018-11-14 Published:2018-11-14

摘要/Abstract

摘要： 为研究分组密码CLEFIA-128抵抗不可能差分攻击的能力,基于一条9轮不可能差分路径,分析了13轮不带白化密钥的CLEFIA-128算法。利用轮函数中S盒差分分布表恢复部分密钥,利用轮密钥之间的关系减少密钥猜测量,并使用部分密钥分别猜测(Early Abort)技术有效地降低了复杂度。计算结果表明,该方法的数据复杂度和时间复杂度分别为O(2103.2)和O(2124.1)。

关键词: 分组密码,不可能差分攻击,CLEFIA-128,S盒,Early Abort技术

Abstract: To study the ability to resist the impossible differential cryptanalysis of the block cipher CLEFIA-128,the 13-round CLEFIA-128 without whitening key was analyzed based on one 9-round impossible differential role.It uses the output and input differences of S-boxes to recover round keys,utilizes the keys relations to reduce the number of guessed keys,and introduces the key-byte guessing(Early Abort) technique to reduce the complexity effectively.Computing result shows that the data complexity and time complexity of this method are O(2103.2) and O(2124.1) respectively.

Key words: Block cipher,Impossible differential attack,CLEFIA-128,S-box,Early Abort technique

邱丰品,卫宏儒. CLEFIA-128算法的不可能差分密码分析[J]. 计算机科学, 2015, 42(11): 208-211. https://doi.org/10.11896/j.issn.1002-137X.2015.11.043

QIU Feng-pin and WEI Hong-ru. Impossible Differential Cryptanalysis of CLEFIA-128[J]. Computer Science, 2015, 42(11): 208-211. https://doi.org/10.11896/j.issn.1002-137X.2015.11.043

参考文献

[1] Biham E,Biryukov A,Shamir A.Cryptanalysis of Skipjack re-duced to 31 rounds using impossible differentials[C]∥Advances in Cryptology-Eurocrypt,1999.Springer Berlin Heidelberg,1999:12-23
[2] Shirai T,Shibutani K,Akishita T,et al.The 128-bit Blockcipher CLEFIA(Extended Abstract)[C]∥Proc.of FSE’07.Dubrovnik,Croatia:[s.n.],2007:181-195
[3] Sony Corporation.The 128-bit Blockcipher CLEFIA:Algorithm Specification Revision 1.0.(2007-06-01).http://www.sony.net/products/cryptography/clefia/index.html,
[4] Sony Corporation.The 128-bit Blockcipher CLEFIA,Security and Performance Evaluations,Revision1.0[EB/OL].(2007-06-01).http://www.Sony.net/Products/cryptography/cle-fia/
[5] 王薇.分组密码CLEFIA与基于四圈AES的消息认证码的安全性分析[D].济南:山东大学,2009 Wang Wei.Cryptanalysis of Block Cipher CLEFIA and MACs based on four rounds AES[D].Jinan:Shandong University,2009
[6] Wang Wei,Wang Xiao-yun.Improved impossible differentialCryptanalysis of CLEFIA[EB/OL].(2008-05-05).http://eprint.iacr.org/2007/466
[7] Tsunoo Y,Tsujihara E,Shigeri M,et al.Impossible differential Cryptanalysis of CLEFIA [C]∥Proc.of FSE’08.Atlanta,USA:[s.n.],2008:398-411
[8] Zhang Wen-ying,Han Jing.Impossible differential analysis ofreduced round CLEFIA[C]∥Proc.of Inscrypt’08.Beijing,China,2008:181-191
[9] Tang X,Sun B,Li R,et al.Impossible differential cryptanalysis of 13-round CLEFIA-128[J].Journal of Systems and Software,2011,84(7):1191-1196
[10] Mala H,Dakhilalian M,Shakiba M.Impossible differential attacks on 13-round CLEFIA-128[J].Journal of Computer Science and Technology,2011,26(4):744-750
[11] Wu Wen-ling,Zhang Lei,Zhang Wen-tao.Improved impossibledifferential Cryptanalysis of reduced-round Camellia[C]∥Proc.of SAC’08.[S.l.]:ACM Press,2008:442-456
[12] 郑秀林,连至助,鲁艳蓉,等.CLEFIA-128算法的不可能差分密码分析[J].计算机工程,2012,38(3):141-144 Zheng Xiu-lin,Lian Zhi-zhu,Lu Yan-rong,et al.Impossible differential Cryptanalysis of CLEFIA-128 algorithm[J].Computer Engineering,2012,38(3):141-144

Metrics

Viewed

Full text

Abstract

Cited

Shared

Discussed

CLEFIA-128算法的不可能差分密码分析

Impossible Differential Cryptanalysis of CLEFIA-128

PDF (PC)

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 0

Metrics

本文评价

推荐阅读 0