Degree of composition of highly nonlinear functions and applications to higher order cryptanalysis

Anne Canteaut 1 Marion Videau 1
1 CODES - Coding and cryptography
Inria Paris-Rocquencourt
Abstract : To improve the security of iterated block ciphers, the resistance against linear cryptanalysis has been formulated in terms of provable security which suggests the use of highly nonlinear functions as round functions. Here, we show that some properties of such functions enable to find a new upper bound for the degree of the product of its Boolean components. Such an improvement holds when all values occurring in the Walsh spectrum of the round function are divisible by a high power of 2. This result leads to a higher order differential attack on any 5-round Feistel ciphers using an almost bent substitution function. We also show that the use of such a function is precisely the origin of the weakness of a reduced version of MISTY1 reported in [23, 1].
Document type :
Conference papers
Complete list of metadatas

Cited literature [23 references]  Display  Hide  Download

https://hal.inria.fr/hal-00675316
Contributor : Marion Videau <>
Submitted on : Thursday, March 1, 2012 - 9:34:59 AM
Last modification on : Friday, May 25, 2018 - 12:02:03 PM
Long-term archiving on : Thursday, June 14, 2012 - 5:02:57 PM

File

canteaut_videau2a.pdf
Files produced by the author(s)

Identifiers

Collections

Citation

Anne Canteaut, Marion Videau. Degree of composition of highly nonlinear functions and applications to higher order cryptanalysis. EUROCRYPT 2002 : International Conference on the Theory and Applications of Cryptographic Techniques, Apr 2002, Amsterdam, Netherlands. pp.518-533, ⟨10.1007/3-540-46035-7_34⟩. ⟨hal-00675316⟩

Share

Metrics

Record views

235

Files downloads

223