On the Construction of New Lightweight Involutory MDS Matrices in Generalized Subfield Form

Maximum Distance Separable (MDS) matrices are used as the main component of diffusion layers in block ciphers. MDS matrices have the optimal diffusion properties and the maximum branch number, which is a criterion to measure diffusion rate and security against linear and differential cryptanalysis. However, it is a challenging problem to construct hardware-friendly MDS matrices with optimal or close to optimal circuits, especially for involutory ones. In this paper, we consider the generalized subfield construction method from the global optimization perspective and then give new <inline-formula> <tex-math notation="LaTeX">$4 \times 4$ </tex-math></inline-formula> involutory MDS matrices over <inline-formula> <tex-math notation="LaTeX">$\mathbb {F}_{2^{3}}$ </tex-math></inline-formula> and <inline-formula> <tex-math notation="LaTeX">$\mathbb {F}_{2^{5}}$ </tex-math></inline-formula>. After that, we present 1,176 (<inline-formula> <tex-math notation="LaTeX">$=28\times 42$ </tex-math></inline-formula>) new <inline-formula> <tex-math notation="LaTeX">$4 \times 4$ </tex-math></inline-formula> involutory and MDS diffusion matrices by 33 XORs and depth 3. This new record also improves the previously best-known cost of 38 XOR gates.