Title | ||
---|---|---|
A generalization of linear cryptanalysis and the applicability of Matsui's piling-up lemma |
Abstract | ||
---|---|---|
Matsui's linear cryptanalysis for iterated block ciphers is generalized by replacing his linear expressions with I/O sums. For a single round, an I/O sum is the XOR of a balanced binary-valued function of the round input and a balanced binary-valued function of the round output. The basic attack is described and conditions for it to be successful are given. A procedure for finding effective I/O sums, i.e., I/O sums yielding successful attacks, is given. A cipher contrived to be secure against linear cryptanalysis but vulnerable to this generalization of linear cryptanalysis is given. Finally, it is argued that the ciphers IDEA and SAFER K-64 are secure against this generalization. |
Year | DOI | Venue |
---|---|---|
1995 | 10.1007/3-540-49264-X_3 | EUROCRYPT |
Keywords | Field | DocType |
single round,linear expression,ciphers idea,safer k-64,round input,successful attack,linear cryptanalysis,piling-up lemma,o sum,round output,balanced binary-valued function,block cipher,value function | Mod n cryptanalysis,Discrete mathematics,Higher-order differential cryptanalysis,Boomerang attack,Piling-up lemma,Block cipher,Impossible differential cryptanalysis,Theoretical computer science,Linear cryptanalysis,Mathematics,Differential cryptanalysis | Conference |
ISBN | Citations | PageRank |
3-540-59409-4 | 53 | 5.73 |
References | Authors | |
6 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Carlo Harpes | 1 | 97 | 13.23 |
Gerhard G. Kramer | 2 | 53 | 5.73 |
James L. Massey | 3 | 1096 | 272.94 |