Name
Abstract | ||
|---|---|---|
The linear layer is a core component in any substitution-permutation network block cipher. Its design significantly influences both the security and the efficiency of the resulting block cipher. Surprisingly, not many general constructions are known that allow to choose trade-offs between security and efficiency. Especially, when compared to Sboxes, it seems that the linear layer is crucially understudied. In this paper, we propose a general methodology to construct good, sometimes optimal, linear layers allowing for a large variety of trade-offs. We give several instances of our construction and on top underline its value by presenting a new block cipher. PRIDE is optimized for 8-bit micro-controllers and significantly outperforms all academic solutions both in terms of code size and cycle count. |
Year | DOI | Venue |
|---|---|---|
2014 | 10.1007/978-3-662-44371-2_4 | ADVANCES IN CRYPTOLOGY - CRYPTO 2014, PT I |
Keywords | Field | DocType |
block cipher,linear layer,wide-trail,embedded processors | Pride,Substitution-permutation network,Affine cipher,Block cipher,Computer science,CBC-MAC,Cycle count,Theoretical computer science,Residual block termination,Ciphertext stealing | Conference |
Volume | ISSN | Citations |
8616 | 0302-9743 | 43 |
PageRank | References | Authors |
1.53 | 34 | 6 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Martin R. Albrecht | 1 | 309 | 25.33 |
| Benedikt Driessen | 2 | 92 | 7.32 |
| Elif Bilge Kavun | 3 | 114 | 9.89 |
| Gregor Leander | 4 | 1287 | 77.03 |
| Christof Paar | 5 | 3794 | 442.62 |
| Tolga Yalçin | 6 | 120 | 9.20 |