Multidimensional Linear Cryptanalysis of Feistel Ciphers
This paper presents new generic attacks on Feistel ciphers that incorporate the key addition at the input of the non-invertible round function only. This feature leads to a specific vulnerability that can be exploited using multidimensional linear cryptanalysis. More specifically, our approach invo...
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Ruhr-Universität Bochum
2023-12-01
|
| Series: | IACR Transactions on Symmetric Cryptology |
| Subjects: | |
| Online Access: | https://tosc.iacr.org/index.php/ToSC/article/view/11277 |
| _version_ | 1797399507767394304 |
|---|---|
| author | Betül Aşkın Özdemir Tim Beyne Vincent Rijmen |
| author_facet | Betül Aşkın Özdemir Tim Beyne Vincent Rijmen |
| author_sort | Betül Aşkın Özdemir |
| collection | DOAJ |
| description |
This paper presents new generic attacks on Feistel ciphers that incorporate the key addition at the input of the non-invertible round function only. This feature leads to a specific vulnerability that can be exploited using multidimensional linear cryptanalysis. More specifically, our approach involves using key-independent linear trails so that the distribution of a combination of the plaintext and ciphertext can be computed. This makes it possible to use the likelihood-ratio test as opposed to the χ2 test. We provide theoretical estimates of the cost of our generic attacks and verify these experimentally by applying the attacks to CAST-128 and LOKI91. The theoretical and experimental findings demonstrate that the proposed attacks lead to significant reductions in data-complexity in several interesting cases.
|
| first_indexed | 2024-03-09T01:40:17Z |
| format | Article |
| id | doaj.art-9775d80562b84680b8396610d9d7cf2a |
| institution | Directory Open Access Journal |
| issn | 2519-173X |
| language | English |
| last_indexed | 2024-03-09T01:40:17Z |
| publishDate | 2023-12-01 |
| publisher | Ruhr-Universität Bochum |
| record_format | Article |
| series | IACR Transactions on Symmetric Cryptology |
| spelling | doaj.art-9775d80562b84680b8396610d9d7cf2a2023-12-08T16:13:27ZengRuhr-Universität BochumIACR Transactions on Symmetric Cryptology2519-173X2023-12-012023410.46586/tosc.v2023.i4.1-27Multidimensional Linear Cryptanalysis of Feistel CiphersBetül Aşkın Özdemir0Tim Beyne1Vincent Rijmen2COSIC, KU Leuven, Leuven, BelgiumCOSIC, KU Leuven, Leuven, BelgiumCOSIC, KU Leuven, Leuven, Belgium; University of Bergen, Bergen, Norway This paper presents new generic attacks on Feistel ciphers that incorporate the key addition at the input of the non-invertible round function only. This feature leads to a specific vulnerability that can be exploited using multidimensional linear cryptanalysis. More specifically, our approach involves using key-independent linear trails so that the distribution of a combination of the plaintext and ciphertext can be computed. This makes it possible to use the likelihood-ratio test as opposed to the χ2 test. We provide theoretical estimates of the cost of our generic attacks and verify these experimentally by applying the attacks to CAST-128 and LOKI91. The theoretical and experimental findings demonstrate that the proposed attacks lead to significant reductions in data-complexity in several interesting cases. https://tosc.iacr.org/index.php/ToSC/article/view/11277Multidimensional linear cryptanalysisLikelihood-ratio testGeneric attackFeistel ciphersCAST-128LOKI91 |
| spellingShingle | Betül Aşkın Özdemir Tim Beyne Vincent Rijmen Multidimensional Linear Cryptanalysis of Feistel Ciphers IACR Transactions on Symmetric Cryptology Multidimensional linear cryptanalysis Likelihood-ratio test Generic attack Feistel ciphers CAST-128 LOKI91 |
| title | Multidimensional Linear Cryptanalysis of Feistel Ciphers |
| title_full | Multidimensional Linear Cryptanalysis of Feistel Ciphers |
| title_fullStr | Multidimensional Linear Cryptanalysis of Feistel Ciphers |
| title_full_unstemmed | Multidimensional Linear Cryptanalysis of Feistel Ciphers |
| title_short | Multidimensional Linear Cryptanalysis of Feistel Ciphers |
| title_sort | multidimensional linear cryptanalysis of feistel ciphers |
| topic | Multidimensional linear cryptanalysis Likelihood-ratio test Generic attack Feistel ciphers CAST-128 LOKI91 |
| url | https://tosc.iacr.org/index.php/ToSC/article/view/11277 |
| work_keys_str_mv | AT betulaskınozdemir multidimensionallinearcryptanalysisoffeistelciphers AT timbeyne multidimensionallinearcryptanalysisoffeistelciphers AT vincentrijmen multidimensionallinearcryptanalysisoffeistelciphers |