Book ChapterDOI
Counting Active S-Boxes is not Enough
Orr Dunkelman,Abhishek Kumar,Eran Lambooij,Somitra Kumar Sanadhya +3 more
- pp 332-344
TLDR
The wide trail strategy as discussed by the authors suggests to ensure that the number of active S-boxes in a differential characteristic or a linear approximation is sufficiently high, thus, offering security against differential and linear attacks.Abstract:
Inspired by the works of Nyberg and Knudsen, the wide trail strategy suggests to ensure that the number of active S-boxes in a differential characteristic or a linear approximation is sufficiently high, thus, offering security against differential and linear attacks. Many cipher designers are relying on this strategy, and most new designs include analysis based on counting the number of active S-boxes.read more
References
More filters
Book ChapterDOI
Double SP-functions: enhanced generalized feistel networks
Andrey Bogdanov,Kyoji Shibutani +1 more
TL;DR: In this article, the security and efficiency of type-I and type-II generalized Feistel networks (GFNs) with 4 lines were investigated. And the authors provided tight lower bounds on the number of differentially and linearly active functions and S-boxes in such ciphers.
Book ChapterDOI
Differential Cryptanalysis and Linear Distinguisher of Full-Round Zorro
TL;DR: Zhang et al. as mentioned in this paper showed that the security of Zorro against linear and differential cryptanalysis evaluated by designers is insufficient, and that the secret key selected randomly from the whole key space can be recovered much faster than the brute-force attack.
Journal ArticleDOI
Refined Probability of Differential Characteristics Including Dependency Between Multiple Rounds
TL;DR: In this paper, the gap between two probabilities of differential characteristics: probability with independent S-box assumption, p_ind, and exact probability,p_exact, was analyzed for an unkeyed (or with a fixed key) construction.