Refined Probability of Differential Characteristics Including Dependency Between Multiple Rounds - Archive ouverte HAL Access content directly
Journal Articles IACR Transactions on Symmetric Cryptology Year : 2017

Refined Probability of Differential Characteristics Including Dependency Between Multiple Rounds

(1) , (2) , (3) , (4) , (5) , (6)
1
2
3
4
5
6
Anne Canteaut
Eran Lambooij
  • Function : Author
  • PersonId : 1023879
Samuel Neves
  • Function : Author
  • PersonId : 1023880
Shahram Rasoolzadeh
  • Function : Author
  • PersonId : 1023881
Yu Sasaki
  • Function : Author
  • PersonId : 1023882

Abstract

The current paper studies the probability of differential characteristics for an unkeyed (or with a fixed key) construction. Most notably, it focuses on the gap between two probabilities of differential characteristics: probability with independent S-box assumption, $p_{ind}$, and exact probability, $p_{exact}$. It turns out that $p_{exact}$ is larger than $p_{ind}$ in Feistel network with some S-box based inner function. The mechanism of this gap is then theoretically analyzed. The gap is derived from interaction of S-boxes in three rounds, and the gap depends on the size and choice of the S-box. In particular the gap can never be zero when the S-box is bigger than six bits. To demonstrate the power of this improvement, a related-key differential characteristic is proposed against a lightweight block cipher RoadRunneR. For the 128-bit key version, $p_{ind}$ of $2^{-48}$ is improved to $p_{exact}$ of $2^{-43}$. For the 80-bit key version, $p_{ind}$ of $2^{-68}$ is improved to $p_{exact}$ of $2^{-62}$. The analysis is further extended to SPN with an almost-MDS binary matrix in the core primitive of the authenticated encryption scheme Minalpher: $p_{ind}$ of $2^{-128}$ is improved to $p_{exact}$ of $2^{-96}$, which allows to extend the attack by two rounds.
Fichier principal
Vignette du fichier
tosc.pdf (1.09 Mo) Télécharger le fichier
Origin : Files produced by the author(s)
Loading...

Dates and versions

hal-01649954 , version 1 (28-11-2017)

Identifiers

Cite

Anne Canteaut, Eran Lambooij, Samuel Neves, Shahram Rasoolzadeh, Yu Sasaki, et al.. Refined Probability of Differential Characteristics Including Dependency Between Multiple Rounds. IACR Transactions on Symmetric Cryptology, 2017, 2017 (2), pp.203--227. ⟨10.13154/tosc.v2017.i2.203-227⟩. ⟨hal-01649954⟩

Collections

INRIA INRIA2
88 View
85 Download

Altmetric

Share

Gmail Facebook Twitter LinkedIn More