Book ChapterDOI
Counting Active S-Boxes is not Enough
Orr Dunkelman,Abhishek Kumar,Eran Lambooij,Somitra Kumar Sanadhya +3 more
- pp 332-344
Reads0
Chats0
TLDR
The wide trail strategy as discussed by the authors suggests to ensure that the number of active S-boxes in a differential characteristic or a linear approximation is sufficiently high, thus, offering security against differential and linear attacks.Abstract:
Inspired by the works of Nyberg and Knudsen, the wide trail strategy suggests to ensure that the number of active S-boxes in a differential characteristic or a linear approximation is sufficiently high, thus, offering security against differential and linear attacks. Many cipher designers are relying on this strategy, and most new designs include analysis based on counting the number of active S-boxes.read more
References
More filters
Journal ArticleDOI
The data encryption standard
TL;DR: NBS was the first to embark on developing a standard encryp-tion algorithm that could satisfy a broad range of commercial and unclassified government requirements in information security and issued the Data Encryption Standard (DES) as Federal Information Processing Standard (FIPS) 46 on Novem-ber 23, 1977.
Book ChapterDOI
On the distribution of characteristics in bijective mappings
TL;DR: The exact distribution of characteristics in XOR tables is derived, and an upper bound on the probability of the most likely characteristic in a product cipher constructed from randomly selected S-boxes that are bijective mappings is determined.
Journal Article
On Feistel Structures Using a Diffusion Switching Mechanism
Taizo Shirai,Kyoji Shibutani +1 more
TL;DR: The theory of Feistel structure is extended by replacing the condition of optimal mappings with general-type mappings, consequently the restriction is eliminated and a method to estimate the guaranteed number of active S-boxes for arbitrary round numbers is established.
Book ChapterDOI
Mind the Gap - A Closer Look at the Security of Block Ciphers against Differential Cryptanalysis.
Ralph Ankele,Stefan Kölbl +1 more
TL;DR: In this paper, Lai et al. comprehended that differential cryptanalysis rather uses differentials instead of single characteristics, and they proposed a block cipher with differentials to resist DCA.
Book ChapterDOI
On the Security of Rijndael-Like Structures against Differential and Linear Cryptanalysis
TL;DR: In this paper, the maximum differential probability and the maximum linear hull probability for Rijndael-like structures are bounded by 1.06 × 2-96 for 4 rounds.