Midori算法的多维零相关线性分析

doi:10.6040/j.issn.1671-9352.2.2017.110

山东大学学报（理学版） ›› 2018, Vol. 53 ›› Issue (2): 88-94.doi: 10.6040/j.issn.1671-9352.2.2017.110

• • 上一篇

Midori算法的多维零相关线性分析

程璐,魏悦川^*,李安辉,潘晓中

武警工程大学电子技术系, 陕西西安 710086

收稿日期:2017-08-20 出版日期:2018-02-20 发布日期:2018-01-31
通讯作者: 魏悦川(1982— ),女,副教授,研究方向为密码学. E-mail:wych004@163.com E-mail:18302972151@163.com
作者简介:程璐(1992— ),男,硕士,研究方向为密码学. E-mail:18302972151@163.com
基金资助:
武警工程大学基础研究计划(WJY201522)

Multidimensional zero-correlation linear cryptanalysis on Midori

CHENG Lu, WEI Yue-chuan^*, LI An-hui, PAN Xiao-zhong

Department of Electronic Technology, Engineering University of PAP, Xian 710086, Shaanxi, China

Received:2017-08-20 Online:2018-02-20 Published:2018-01-31

摘要/Abstract

摘要： 利用零相关线性分析方法评估Midori64算法的安全性。利用“中间相错”的方法构造了Midori64的6轮零相关线性逼近,在此基础上,对10轮Midori64进行了密钥恢复攻击。该攻击过程的数据复杂度约为2^62.4个明密文对,计算复杂度为2^79.35次10轮加密运算。结果表明缩减至10轮的Midori64算法对于零相关线性分析方法是不免疫的。

关键词: 零相关线性分析, 线性逼近, 分组密码, Midori

Abstract: The security of Midori64 against zero-correlation linear cryptanalysis is evaluated. By using the “miss-in-the-middle” technique, 6-round zero-correlation linear approximations are constructed. Based on the 6-round distinguisher, key-recovery attack on 10-round Midori is performed. The data complexity is 2^62.4 plaintexts and the time complexity is 2^79.35 10-round encryptions. The testing result shows that the Midori reduced to 10-round is not immune to multidimensional zero-correlation linear analysis.

Key words: block cipher, zero-correlation linear cryptanalysis, linear approximations, Midori

中图分类号:

TN918

程璐,魏悦川,李安辉,潘晓中. Midori算法的多维零相关线性分析[J]. 山东大学学报（理学版）, 2018, 53(2): 88-94.

CHENG Lu, WEI Yue-chuan, LI An-hui, PAN Xiao-zhong. Multidimensional zero-correlation linear cryptanalysis on Midori[J]. JOURNAL OF SHANDONG UNIVERSITY(NATURAL SCIENCE), 2018, 53(2): 88-94.

参考文献

[1] BOGDANOV A, KNUDSEN L R, LEANDER G, et al. Present: an ultra-lightweight block cipher[C] //International Workshop on Cryptographic Hardware and Embedded Systems. Berlin:Springer, 2007: 450-466.
[2] WU W, ZHANG L. LBlock: a lightweight block cipher[M] // Applied Cryptography and Network Security, International Conference: Proceedings 6715. Berlin:Springer, 2011: 327-344.
[3] GUO Jian, PEYRIN T, POSCHMANN A, et al. The LED block cipher[M] // Cryptographic Hardware and Embedded Systems — CHES 2011. Berlin: Springer, 2011: 326-341.
[4] CANNIÈRE C D, DUNKELMAN O, KNEŽEVIC. KATAN and KTANTAN——a family of small and efficient hardware-oriented block ciphers[C] // International Workshop on Cryptographic Hardware and Embedded Systems. Berlin: Springer, 2009: 272-288.
[5] BANIK S, BOGDANOV A, ISOBE T, et al. Midori: a block cipher for low energy[C] // Advances in Cryptology—ASIACRYPT 2015. Berlin: Springer, 2014: 411-436.
[6] BOGDANOV A, LEANDER G, NYBERG K, et al. Integral and multidimensional linear distinguishers with correlation zero[C] // Proceedings of the ASIACRYPT 2012. Beijing: Springer, 2012: 244-261.
[7] BOGDANOV A, WANG Meiqin. Zero correlation linear cryptanalysis with reduced data complexity[C] // Proceedings of the FSE 2012. Washington: Springer, 2012: 29-48.
[8] BOGDANOV A, RIJMEN V. Linear hulls with correlation zero and linear cryptanalysis of block ciphers[J]. Designs, Codes and Cryptography, 2014, 70(3):369-383.
[9] WANG Yanfeng, WU Wenling. Improved multidimensional zero-correlation linear cryptanalysis and applications to LBlock and TWINE[M] // Information Security and Privacy. Berlin: Springer, 2014: 1-16.
[10] WEN Long, WANG Meiqin, BOGDANOV A. Multidimensional zero-correlation linear cryptanalysis of E₂[M]. Progress in Cryptology — AFRICACRYPT 2014. Berlin: Springer, 2014: 147-164.
[11] 马猛, 赵亚群, 刘庆聪, 等. SMS4密码的多维零相关线性分析[J]. 密码学报,2015,2(5):458-466. MA Meng, ZHAO Yaqun, LIU Qingcong, et al. Multidimensional zero-correlation linear cryptanalysis on SMS4 algorithm[J]. Journal of Cryptologic Research, 2015, 2(5):458-466.
[12] 伊文坛, 陈少真. FOX密码的多维零相关线性分析[J]. 密码学报,2015,2(1):27-39. YI Wentan, CHEN Shaozhen. Multidimensional zero-correlation linear attacks on FOX block cipher[J]. Journal of Cryptologic Research, 2015, 2(1):27-39.
[13] 伊文坛, 鲁林真, 陈少真. 轻量级密码算法MIBS的零相关和积分分析[J]. 电子与信息学报, 2016,38(4):819-826. YI Wentan, LU Linzhen, CHEN Shaozhen. Integral and zero-correlation linear cryptanalysis of lightweight block cipher MIBS[J]. Journal of Electronics & Information Technology, 2016, 38(4):819-826.
[14] 王美琴, 温隆. 零相关线性分析研究[J]. 密码学报, 2014,1(3):296-310. WANG Meiqin, Wen Long. Research on zero-correlation linear cryptanalysis[J]. Journal of Cryptologic Research, 2014, 1(3):296-310.
[15] LIN Li, WU Wenling. Meet-in-the-middle attacks on reduced-round midori64[R/OL]. IACR Cryptology ePrint Archive, 2015. https://eprint.iacr.org/2015/1165.pdf.
[16] GUO Jian, JEAN J, NIKOLI'C I, et al. Invariant subspace attack against full midori64[R/OL]. IACR Cryptology ePrint Archive, 2015. https://eprint.iacr.org/2015/1189.pdf.
[17] CHEN Zhan, WANG Xiaoyun. Impossible differential cryptanalysis of midori[R/OL]. IACR Cryptology ePrint Archive, 2016. https://eprint.iacr.org/2016/535.pdf.

多维度评价

Viewed

Full text

Abstract

Cited

Shared

Discussed

Midori算法的多维零相关线性分析

Multidimensional zero-correlation linear cryptanalysis on Midori

PDF (PC)

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 2

多维度评价

本文评价

推荐阅读 0

[1]	杜承航1,2,陈佳哲1,2. 轻量级分组密码算法MIBS不可能差分分析[J]. J4, 2012, 47(7): 55-58.
[2]	杨林1,2,王美琴1,2. 约减轮的MIBS算法的差分分析[J]. J4, 2010, 45(4): 12-15.