Vincent Rijmen scite author profile

Abstract. In this paper we present a new 128-bit block cipher called SQUARE. The original design of SQUARE concentrates on the resistance against differential and linear cryptanalysis. However, after the initial design a dedicated attack was mounted that forced us to augment the number of rounds. The goal of this paper is the publication of the resulting cipher for public scrutiny. A C implementation of SQUARE is available that runs at 2.63 MByte/s on a 100 MHz Pentium. Our M68HC05 Smart Card implementation fits in 547 bytes and takes less than 2 msec. (4 MHz Clock). The high degree of parallellism allows hardware implementations in the Gbit/s range today.

show abstract

The Design of Rijndael

Daemen¹,

Rijmen²

2002

1,784

326

View full text Add to dashboard Cite

Rijndael/AES

Daemen¹,

Rijmen²

202

282

View full text Add to dashboard Cite

Threshold Implementations Against Side-Channel Attacks and Glitches

2006

View full text Add to dashboard Cite

Implementations of cryptographic algorithms are vulnerable to side-channel attacks. Masking techniques are employed to counter side-channel attacks that are based on multiple measurements of the same operation on different data. Most currently known techniques require new random values after every nonlinear operation and they are not effective in the presence of glitches. We present a new method to protect implementations. Our method has a higher computational complexity, but requires random values only at the start, and stays effective in the presence of glitches.

show abstract

Secure Hardware Implementation of Nonlinear Functions in the Presence of Glitches

2010

View full text Add to dashboard Cite

A Side-Channel Analysis Resistant Description of the AES S-Box

Oswald¹,

Mangard²,

Pramstaller³

et al. 2005

231

182

View full text Add to dashboard Cite

Abstract. So far, efficient algorithmic countermeasures to secure the AES algorithm against (first-order) differential side-channel attacks have been very expensive to implement. In this article, we introduce a new masking countermeasure which is not only secure against first-order sidechannel attacks, but which also leads to relatively small implementations compared to other masking schemes implemented in dedicated hardware. Our approach is based on shifting the computation of the finite field inversion in the AES S-box down to GF (4). In this field, the inversion is a linear operation and therefore it is easy to mask. Summarizing, the new masking scheme combines the concepts of multiplicative and additive masking in such a way that security against firstorder side-channel attacks is maintained, and that small implementations in dedicated hardware can be achieved.

show abstract

AES implementation on a grain of sand

Feldhofer

Wolkerstorfer

Rijmen

2005

IEE Proc. Inf. Secur.

293

175

View full text Add to dashboard Cite

RECTANGLE: a bit-slice lightweight block cipher suitable for multiple platforms

Zhang

Bao

Lin

et al. 2015

Sci. China Inf. Sci.

195

155

View full text Add to dashboard Cite

In this paper, we propose a new lightweight block cipher named RECTANGLE. The main idea of the design of RECTANGLE is to allow lightweight and fast implementations using bit-slice techniques. RECTANGLE uses an SP-network. The substitution layer consists of 16 4 × 4 S-boxes in parallel. The permutation layer is composed of 3 rotations. As shown in this paper, RECTANGLE offers great performance in both hardware and software environment, which provides enough flexibility for different application scenario. The following are 3 main advantages of RECTANGLE. First, RECTANGLE is extremely hardware-friendly. For the 80-bit key version, a one-cycle-per-round parallel implementation only needs 1600 gates for a throughput of 246 Kbits/s at 100 kHz clock and an energy efficiency of 3.0 pJ/bit. Second, RECTANGLE achieves a very competitive software speed among the existing lightweight block ciphers due to its bit-slice style. Using 128-bit SSE instructions, a bit-slice implementation of RECTANGLE reaches an average encryption speed of about 3.9 cycles/byte for messages around 3000 bytes. Last but not least, we propose new design criteria for the RECTANGLE S-box. Due to our careful selection of the S-box and the asymmetric design of the permutation layer, RECTANGLE achieves a very good security-performance tradeoff. Our extensive and deep security analysis shows that the highest number of rounds that we can attack, is 18 (out of 25).

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Vincent Rijmen

The block cipher Square

The Design of Rijndael

Rijndael/AES

Threshold Implementations Against Side-Channel Attacks and Glitches

Secure Hardware Implementation of Nonlinear Functions in the Presence of Glitches

A Side-Channel Analysis Resistant Description of the AES S-Box

AES implementation on a grain of sand

RECTANGLE: a bit-slice lightweight block cipher suitable for multiple platforms

Contact Info

Product

Resources

About