Improved Attacks on Full GOST

Dinur, Itai; Dunkelman, Orr; Shamir, Adi

doi:10.1007/978-3-642-34047-5_2

Cited by 54 publications

(61 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…We note that the mentioned below complementation properties have been known and exploited in attacks on GOST [7,4]. However, to the best of our knowledge, all the attacks on GOST that recover the full key, are impractical.…”

Section: The Case Of Gostmentioning

confidence: 94%

“…Hence, in the case of former one has to try around 2 P different pairs of keys and encrypt one pair of plaintexts, while in the case of modular Feistels, for each of the 2 P pairs of related-key has to encrypt 2 Q pairs of plaintexts (2 −P , 2 −Q are the probabilities of the differential in the key schedule and in the state). 4 One of our anonymous reviewers has informed us that a similar idea was used against DESX in Kelsey et al [6]. 5 When r is odd, there are r 2 round keys with difference ∆1, and r 2 − 1 round keys with ∆2.…”

Section: Remarkmentioning

confidence: 99%

“…Thus we obtain the first analysis on the fullround Camellia without the F L, F L −1 in the hash mode -it requires around 2 112 encryptions. Complementation property of GOST has been known (see [7,4]), however all of the proposed key recovery attacks require impractical time complexity. We show that if one uses several similar complementation properties, an efficient key recovery attack on GOST exists.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Complementing Feistel Ciphers

Biryukov

Nikolić

2014

Fast Software Encryption

View full text Add to dashboard Cite

Abstract. In this paper, we propose related-key differential distinguishers based on the complementation property of Feistel ciphers. We show that with relaxed requirements on the complementation, i.e. the property does not have to hold for all keys and the complementation does not have to be on all bits, one can obtain a variety of distinguishers. We formulate criteria sufficient for attacks based on the complementation property. To stress the importance of our findings we provide analysis of the full-round primitives:-For the hash mode of Camellia-128 without F L, F L −1 layers, differential multicollisions with 2 112 time -For GOST, practical recovery of the full key with 31 related keys and 2 38 time/data

show abstract

Section: The Case Of Gostmentioning

confidence: 94%

Section: Remarkmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Complementing Feistel Ciphers

Biryukov

Nikolić

2014

Fast Software Encryption

View full text Add to dashboard Cite

show abstract

“…Между тем LWC от-нюдь не является «простой». Аксель Пошманн, из-вестный специалист по Lightweight Cryptography, характеризует ее словами «As light as a feather, and as hard as dragon-scales» -«Легка, как пух и прочна как чешуя дракона» 7 .…”

Section: методы и средства кодирования информацииunclassified

“…Вопросы кибербезопасности №1 (9) 64 пар открытый текст-шифртекст, что делает предложенную ата-ку неосуществимой на практике [7]. Основным характеристиками реализации криптографического алгоритма являются слож-ность реализации и скорость работы.…”

Section: легковесная криптографияunclassified

Lightweight Cryptography. Part 1

Zhukov

2015

Cybersecurity issues

View full text Add to dashboard Cite

Введение.Развитие криптографии в течение последне-го столетия во многом определялось развитием средств связи и информационных технологий. Так, открытие возможности передачи информации с помощью электрических сигналов и радиоволн привело к созданию в начале ХХ века дисковых шифраторов. Появление новых технологий, осно-ванных на использовании полупроводников (пер-вый полупроводниковый транзистор был создан в 1947 г.), привело к появлению шифров, реализуе-мых электронными логическими схемами, исполь-зующими, например, такие конструктивные узлы, как регистры сдвига. Возникновение компьюте-ров и соответствующей элементной базы (первые микропроцессоры появились в начале 70-х годов ХХ века) привело к созданию шифров нового по-коления -блочных шифров.Развитие криптографии, начиная с последней четверти ХХ века, в основном определялось и, по всей видимости, в ближайшем будущем будет определяться развитием Интернета и интернет-технологий. При этом определяющим на бли-жайшие годы направлением развития Интернета будет так называемый Интернет Вещей (Internet of Things, IoT), принятый комиссиями Европарла-мента и Совета Европы в качестве магистрального пути развития информационных и интернет тех-нологий 1 . Это направление характеризуется пере-

show abstract

Generating binary diffusion layers with maximum/high branch numbers and low search complexity

Akleylek

Sakallı

Öztürk

et al. 2016

Security Comm. Networks

View full text Add to dashboard Cite

In this paper, we propose a new method to generate n × n binary matrices (for n = k·2t where k and t are positive integers) with a maximum/high of branch numbers and a minimum number of fixed points by using 2t×2t Hadamard (almost) maximum distance separable matrices and k × k cyclic binary matrix groups. By using the proposed method, we generate n × n (for n = 6, 8, 12, 16, and 32) binary matrices with a maximum of branch numbers, which are efficient in software implementations. The proposed method is also applicable with m × m circulant matrices to generate n × n(for n = k·m) binary matrices with a maximum/high of branch numbers. For this case, some examples for 16 × 16, 48 × 48, and 64 × 64 binary matrices with branch numbers of 8, 15, and 18, respectively, are presented. Copyright © 2016 John Wiley & Sons, Ltd.

show abstract

Improved Attacks on Full GOST

Cited by 54 publications

References 11 publications

Complementing Feistel Ciphers

Complementing Feistel Ciphers

Lightweight Cryptography. Part 1

Generating binary diffusion layers with maximum/high branch numbers and low search complexity

Contact Info

Product

Resources

About