Skip to Main content Skip to Navigation
Conference papers

Generic Attack on Iterated Tweakable FX Constructions

Abstract : Tweakable block ciphers are increasingly becoming a common primitive to build new resilient modes as well as a concept for multiple dedicated designs. While regular block ciphers define a family of permutations indexed by a secret key, tweakable ones define a family of permutations indexed by both a secret key and a public tweak. In this work we formalize and study a generic framework for building such a tweakable block cipher based on regular block ciphers, the iterated tweakable FX construction, which includes many such previous constructions of tweakable block ciphers. Then we describe a cryptanal-ysis from which we can derive a provable security upper-bound for all constructions following this tweakable iterated FX strategy. Concretely, the cryptanalysis of r rounds of our generic construction based on n-bit block ciphers with κ-bit keys requires O(2 r r+1 (n+κ)) online and offline queries. For r = 2 rounds this interestingly matches the proof of the particular case of XHX2 by Lee and Lee (ASIACRYPT 2018) thus proving for the first time its tightness. In turn, the XHX and XHX2 proofs show that our generic cryptanalysis is information theoretically optimal for 1 and 2 rounds.
Document type :
Conference papers
Complete list of metadata

Cited literature [17 references]  Display  Hide  Download
Contributor : Ferdinand Sibleyras <>
Submitted on : Sunday, December 29, 2019 - 9:31:06 AM
Last modification on : Monday, February 22, 2021 - 1:14:00 PM
Long-term archiving on: : Monday, March 30, 2020 - 12:42:25 PM


Files produced by the author(s)




Ferdinand Sibleyras. Generic Attack on Iterated Tweakable FX Constructions. CT-RSA 2020 - The Cryptographers' Track at the RSA Conference 2020, Feb 2020, San Francisco, United States. pp.1--14, ⟨10.1007/978-3-030-40186-3_1⟩. ⟨hal-02424953⟩



Record views


Files downloads