Cryptanalysis of Forkciphers - Inria - Institut national de recherche en sciences et technologies du numérique Accéder directement au contenu
Article Dans Une Revue IACR Transactions on Symmetric Cryptology Année : 2020

Cryptanalysis of Forkciphers

Résumé

The forkcipher framework was designed in 2018 by Andreeva et al. for authenticated encryption of short messages. Two dedicated ciphers were proposed in this framework: ForkAES based on the AES (and its tweakable variant Kiasu-BC), and ForkSkinny based on Skinny. The main motivation is that the forked ciphers should keep the same security as the underlying ciphers, but offer better performances thanks to the larger output. Recent cryptanalysis results at ACNS '19 have shown that ForkAES actually offers a reduced security margin compared to the AES with an 8-round attack, and this was taken into account in the design of ForkSkinny. In this paper, we present new cryptanalysis results on forkciphers. First we improve the previous attack on ForkAES in order to attack the full 10 rounds. This is the first attack challenging the security of full ForkAES. Then we present the first analysis of ForkSkinny, showing that the best attacks on Skinny can be extended to one round for most ForkSkinny variants, and up to three rounds for ForkSkinny-128-256. This allows to evaluate the security degradation between ForkSkinny and the underlying block cipher. Our analysis shows that all components of a forkcipher must be carefully designed: the attack against ForkAES uses the weak diffusion of the middle rounds in reconstruction queries (going from one ciphertext to the other), but the attack against ForkSkinny uses a weakness of the tweakey schedule in encryption queries (when one branch of the tweakey schedule is skipped).
Fichier principal
Vignette du fichier
8564-Article Text-5110-1-10-20200507.pdf (827.36 Ko) Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)

Dates et versions

hal-03135299 , version 1 (08-02-2021)

Identifiants

Citer

Augustin Bariant, Nicolas David, Gaëtan Leurent. Cryptanalysis of Forkciphers. IACR Transactions on Symmetric Cryptology, 2020, 2020 (1), pp.233--265. ⟨10.13154/tosc.v2020.i1.233-265⟩. ⟨hal-03135299⟩

Collections

INRIA INRIA2
48 Consultations
99 Téléchargements

Altmetric

Partager

Gmail Facebook X LinkedIn More