Open Access
Camellia: A 128-Bit Block Cipher Suitable for Multiple Platforms
Kazumaro Aoki,Tetsuya Ichikawa,Masayuki Kanda,Mitsuru Matsui,Shiho Moriai,Nakajima Junko,Toshio Tokita,Nippon Telegraph +7 more
TLDR
Camellia as discussed by the authors is a new 128-bit block cipher with 128-, 192-, and 256-bit key lengths, which was designed to withstand all known cryptanalytic attacks and even to have a sufficiently large security leeway for use of the next 10-20 years.Abstract:
We present a new 128-bit block cipher called Camellia. Camellia sup- ports 128-bit block size and 128-, 192-, and 256-bit key lengths, i.e. the same interface specifications as the Advanced Encryption Standard (AES). Camellia was carefully designed to withstand all known cryptanalytic attacks and even to have a sufficiently large security leeway for use of the next 10-20 years. There are no hidden weakness inserted by the designers. It was also designed to have suitability for both software and hardware implementations and to cover all possible encryption applications that range from low-cost smart cards to high-speed network systems. Compared to the AES finalists, Camellia offers at least comparable encryption speed in software and hardware. An optimized implementation of Camellia in assembly language can en- crypt on a PentiumIII (800MHz) at the rate of m ore than 276 Mbits per second, which is much faster than the speed of an optimized DES implementation. In ad- dition, a distinguishing feature is its small hardware design. The hardware design, which includes key schedule, encryption and decryption, occupies approximately 11K gates, which is the smallest among all existing 128-bit block ciphers as far as we know. It perfectly meet current market requirements in wireless cards, for instance, where low power consumption is a mandaroty condition.read more
Citations
More filters
A Description of the Camellia Encryption Algorithm
M. Matsui,J. Nakajima,S. Moriai +2 more
TL;DR: The algorithm description is presented together with key scheduling part and data randomizing part of the Camellia encryption algorithm.
Journal ArticleDOI
Analysis of the algebraic side channel attack
TL;DR: A theoretical study to explain and to characterize the algebraic phase of algebraic side-channel attacks of ASCA and deduce an invariant which can be easily computed from a given S-box and provides a sufficient condition of weakness under an ASCA.
Journal ArticleDOI
Joint data and key distribution of simple, multiple, and multidimensional linear cryptanalysis test statistic and its impact to data complexity
Céline Blondeau,Kaisa Nyberg +1 more
TL;DR: This paper analyzes the hypotheses made in simple, multiple, and multidimensional linear attacks that use either non-zero or zero correlations, and provides more accurate estimates of the data complexity of these attacks.
Journal Article
LCASE: Lightweight Cellular Automata-based Symmetric-key Encryption
Somanath Tripathy,Sukumar Nandi +1 more
TL;DR: A lightweight block cipher that supports 128bit block size with 128-, 192- and 256-bit keys, to conflrm with the Advanced Encryption Standard (AES) speciflcation.
Journal ArticleDOI
A new lightweight cryptographic algorithm for enhancing data security in cloud computing
TL;DR: A New Lightweight Cryptographic Algorithm for Enhancing Data Security that can be used to secure applications on cloud computing is proposed and presented a strong security level and an apparent enhancement in measures of cipher execution time and security forces compared to the cryptographic systems widely used in cloud computing.
References
More filters
Book ChapterDOI
Differential Power Analysis
TL;DR: In this paper, the authors examine specific methods for analyzing power consumption measurements to find secret keys from tamper resistant devices. And they also discuss approaches for building cryptosystems that can operate securely in existing hardware that leaks information.
Book ChapterDOI
Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems
TL;DR: By carefully measuring the amount of time required to perform private key operalions, attackers may be able to find fixed Diffie-Hellman exponents, factor RSA keys, and break other cryptosystems.
Book ChapterDOI
Linear cryptanalysis method for DES cipher
TL;DR: A new method is introduced for cryptanalysis of DES cipher, which is essentially a known-plaintext attack, that is applicable to an only-ciphertext attack in certain situations.
Book
Differential Cryptanalysis of the Data Encryption Standard
Eli Biham,Adi Shamir +1 more
TL;DR: This book introduces a new cryptographic method, called differential cryptanalysis, which can be applied to analyze cryptosystems, and describes the cryptanalysis of DES, deals with the influence of its building blocks on security, and analyzes modified variants.