Improving the Generalized Feistel

Suzaki, T.; Minematsu, Kazuhiko

doi:10.1007/978-3-642-13858-4_2

Cited by 99 publications

(143 citation statements)

References 25 publications

(39 reference statements)

Supporting

Mentioning

138

Contrasting

Unclassified

Order By: Relevance

“…Moreover, we specifically choose the rotation offsets of right half in each round as 8 bits which can be omitted in 8-bit platform implementation. On the other hand, in the aspect of security requirement, we choose the word-wise permutation carefully so that the structure of LBlock satisfies that in both encryption and decryption directions it can achieve best diffusion [32] in 8 rounds.…”

Section: Structurementioning

confidence: 99%

LBlock: A Lightweight Block Cipher

Zhang

2011

Lecture Notes in Computer Science

420

297

View full text Add to dashboard Cite

Abstract. In this paper, we propose a new lightweight block cipher called LBlock. Similar to many other lightweight block ciphers, the block size of LBlock is 64-bit and the key size is 80-bit. Our security evaluation shows that LBlock can achieve enough security margin against known attacks, such as differential cryptanalysis, linear cryptanalysis, impossible differential cryptanalysis and related-key attacks etc. Furthermore, LBlock can be implemented efficiently not only in hardware environments but also in software platforms such as 8-bit microcontroller. Our hardware implementation of LBlock requires about 1320 GE on 0.18 µm technology with a throughput of 200 Kbps at 100 KHz. The software implementation of LBlock on 8-bit microcontroller requires about 3955 clock cycles to encrypt a plaintext block.

show abstract

Section: Structurementioning

confidence: 99%

LBlock: A Lightweight Block Cipher

Zhang

2011

Lecture Notes in Computer Science

420

297

View full text Add to dashboard Cite

show abstract

“…The nibble-wise permutation has been chosen such that it achieves the best diffusion as proposed in [14]. To verify the theoretical model of zero-correlation attacks [3] we implement the described attack on a small variant of LBlock with block length 32-bit.…”

Section: Resultsmentioning

confidence: 99%

“…To verify the theoretical model of zero-correlation attacks [3] we implement the described attack on a small variant of LBlock with block length 32-bit. Two optimal word-wise permutations for improved Type II GFC with 8 branches were suggested in [14]. To make the small variant cipher similar as much as possible to the original one, we choose the permutation which is not based on the Bruijn graph.…”

Section: Resultsmentioning

confidence: 99%

Zero-correlation linear cryptanalysis of reduced-round LBlock

Soleimany

Nyberg

2014

Des. Codes Cryptogr.

View full text Add to dashboard Cite

Abstract. Zero-correlation linear attack is a new method for cryptanalysis of block ciphers developed by . In this paper we adapt the matrix method to find zerocorrelation linear approximations. Then we present several zero-correlation linear approximations for 14 rounds of LBlock and describe a cryptanalysis for 22 rounds of the reduced LBlock. After biclique attacks on LBlock revealed weaknesses in its key schedule, its designers presented a new version of the cipher with a revised key schedule. The attack presented in this paper is applicable to LBlock structure independently of the key scheduling. The attack needs distinct known plaintexts which is a more realistic attack model in comparison with impossible differential cryptanalysis which uses chosen plaintext pairs. Moreover, we performed simulations on a small variant LBlock and present the first experimental results on the theoretical model of the multidimensional zero-correlation linear cryptanalysis method.

show abstract

“…In [30], Suzaki and Minematsu proposed to use a non-cyclic permutation instead and applied it to Type-2 GFNs. More precisely, they studied the maximum diffusion round.…”

Section: Introductionmentioning

confidence: 99%

“…Following the work of [30], Yanagihara and Iwata [32] studied the case of Type-1, Type-3, SH and TH GFNs with non-cyclic permutation. For Type-1 and Type-3 GFNs, they showed that the maximum diffusion round can be improved by changing the permutation while for SH and TH GFNs it cannot.…”

Section: Introductionmentioning

confidence: 99%

Extended Generalized Feistel Networks Using Matrix Representation

Berger

Minier

Thomas

2014

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. While Generalized Feistel Networks have been widely studied in the literature as a building block of a block cipher, we propose in this paper a unified vision to easily represent them through a matrix representation. We then propose a new class of such schemes called Extended Generalized Feistel Networks well suited for cryptographic applications. We instantiate those proposals into two particular constructions and we finally analyze their security.

show abstract

Improving the Generalized Feistel

Cited by 99 publications

References 25 publications

LBlock: A Lightweight Block Cipher

LBlock: A Lightweight Block Cipher

Zero-correlation linear cryptanalysis of reduced-round LBlock

Extended Generalized Feistel Networks Using Matrix Representation

Contact Info

Product

Resources

About