Weakness of Block Ciphers Using Highly Nonlinear Confusion Functions - Archive ouverte HAL Access content directly
Reports (Research Report) Year : 2002

Weakness of Block Ciphers Using Highly Nonlinear Confusion Functions

(1) , (1)
1
Anne Canteaut
Marion Videau
  • Function : Author
  • PersonId : 831529

Abstract

The level of security of an iterated block cipher is mainly quantified in terms of resistance against known attacks. In particular the resistance against the two main generic attacks, the linear and the differential ones has been formalized in terms of «provable security» which lies on some properties of the confusion functions used in the system. It demands especiall- y that these functions have a high nonlinearity. However such a property implies in the case of almost bent functions, that the Walsh spectrum is divisible by a high power of 2. We show how this provides a new upper bound for the degree of the product of Boolean components of an almost bent function. This result leads to a higher order differential attack on any 5-round Feistel cipher using an almost bent function as a round function. We also show that it is precisely the origin of the weakness of MISTY1 allowing a 7-th order differential attack.
Fichier principal
Vignette du fichier
RR-4367.pdf (328.76 Ko) Télécharger le fichier

Dates and versions

inria-00072221 , version 1 (23-05-2006)

Identifiers

  • HAL Id : inria-00072221 , version 1

Cite

Anne Canteaut, Marion Videau. Weakness of Block Ciphers Using Highly Nonlinear Confusion Functions. [Research Report] RR-4367, INRIA. 2002. ⟨inria-00072221⟩
138 View
189 Download

Share

Gmail Facebook Twitter LinkedIn More