Linear cryptanalysis of non binary ciphers (with an application to SAFER)

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 4876 LNCS, Issue , 2007, Pages 184-211

  Baignères, Thomas ^a   Stern, Jacques ^b   Vaudenay, Serge ^a  

^a EPFL   (Switzerland)

^b ECOLE NORMALE SUPÉRIEURE   (France)

Author keywords

[No Author keywords available]

Indexed keywords

BINARY SEQUENCES; CODES (SYMBOLS); COMPUTATIONAL METHODS; INTRUSION DETECTION;

BLOCK CIPHER CRYPTANALYSIS; PLAINTEXT ATTACK;

CRYPTOGRAPHY;

EID: 38549179747     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-77360-3_13     Document Type: Conference Paper

References (52)

1. Adams, C., Heys, H.M., Tavares, S.E., Wiener, M.: CAST256: a submission for the advanced encryption standard. In: First AES Candidate Conference (AES1) (1998)
2. Baignères, T., Finiasz, M.: Dial C for Cipher. In: Selected Areas in Cryptography 2006. LNCS, Springer, Heidelberg (2006)
3. Baignères, T., Junod, P., Vaudenay, S.: How far can we go beyond linear cryptanalysis? In: Lee, P.J. (ed.) ASIACRYPT 2004. LNCS, vol. 3329, pp. 432-450. Springer, Heidelberg (2004)
4. Biham, E.: On Matsui's linear cryptanalysis. In [10], pp. 341-355
5. Biham, E., Shamir, A.: Differential cryptanalysis of DES-like cryptosystems. Journal of Cryptology 4, 3-72 (1991)
6. Biryukov, A., De Cannière, C., Quisquater, M.: On multiple linear approximations. In: Franklin, M. (ed.) CRYPTO 2004. LNCS, vol. 3152, pp. 1-22. Springer, Heidelberg (2004)
7. Brincat, K., Meijer, H.: On the SAFER cryptosystem. In: Darnell, M. (ed.) Cryptography and Coding. LNCS, vol. 1355, pp. 59-68. Springer, Heidelberg (1997)
8. Chabaud, F., Vaudenay, S.: Links between differential and linear cryptanalysis. In: [10], pp. 356-365
9. Daemen, J., Rijmen, V.: AES proposal: Rijndael. NIST AES Proposal (1998)
10. De Santis, A. (ed.): EUROCRYPT 1994. LNCS, vol. 950. Springer, Heidelberg (1995)
11. Feller, W.: An Introduction to Probability Theory and Its Applications, 2nd edn. Wiley Series in Probability and Mathematical Statistics, vol. 2. John Wiley & Sons, Chichester (1971)
12. Gollmann, D. (ed.): Fast Software Encryption. LNCS, vol. 1039. Springer, Heidelberg (1996)
13. Granboulan, L., Levieil, E., Piret, G.: Pseudorandom permutation families over Abelian groups. In: Robshaw, M. (ed.) FSE 2006. LNCS, vol. 4047, pp. 57-77. Springer, Heidelberg (2006)
14. Handschuh, H., Hasan, M.A. (eds.): SAC 2004. LNCS, vol. 3357. Springer, Heidelberg (2004)
15. Harpes, C., Kramer, G.G., Massey, J.: A generalization of linear cryptanalysis and the applicability of Matsui's piling-up lemma. In: Guillou, L.C., Quisquater, J.-J. (eds.) EUROCRYPT 1995. LNCS, vol. 921, pp. 24-38. Springer, Heidelberg (1995)
16. Harpes, C., Massey, J.: Partitioning cryptanalysis. In: Biham, E. (ed.) FSE 1997. LNCS, vol. 1267, pp. 13-27. Springer, Heidelberg (1997)
17. Jakobsen, T.: Higher-order cryptanalysis of block ciphers. PhD thesis, Department of Mathematics, Technical University of Denmark (1999)
18. Jakobsen, T., Harpes, C.: Non-uniformity measures for generalized linear cryptanalysis and partitioning cryptanalysis. In: Pragocrypt 1996, CTU Publishing House (1996)
19. Junod, P.: On the optimality of linear, differential and sequential distinguishers. In: Biham, E. (ed.) EUROCRPYT 2003. LNCS, vol. 2656, pp. 17-32. Springer, Heidelberg (2003)
20. Junod, P., Vaudenay, S.: Optimal key ranking procedures in a statistical cryptanalysis. In: Johansson, T. (ed.) FSE 2003. LNCS, vol. 2887, pp. 235-246. Springer, Heidelberg (2003)
21. Junod, P., Vaudenay, S.: FOX: a new family of block ciphers. In: [14], pp. 114-129
22. Junod, P., Vaudenay, S.: Perfect diffusion primitives for block ciphers. In [14], pp. 84-99
23. Kaliski, B., Robshaw, M.: Linear cryptanalysis using multiple approximations. In: Desmedt, Y.G. (ed.) CRYPTO 1994. LNCS, vol. 839, pp. 26-39. Springer, Heidelberg (1994)
24. Kelsey, J., Schneier, B., Wagner, D.: modn cryptanalysis, with applications against RC5P and M6. In: Knudsen, L.R. (ed.) FSE 1999. LNCS, vol. 1636, pp. 139-155. Springer, Heidelberg (1999)
25. Knudsen, L.: Truncated and higher order differentials. In [43], pp. 196-211
26. Knudsen, L.: A detailed analysis of SAFER K. Journal of Cryptology 13(4), 417 436 (2000)
27. Knudsen, L., Berson, T.: Truncated differentials of SAFER. In [12], pp. 15-26
28. Knudsen, L., Robshaw, M.: Non-linear approximations in linear cryptanalysis. In: Maurer, U.M. (ed.) EUROCRYPT 1996. LNCS, vol. 1070, pp. 224-236. Springer, Heidelberg (1996)
29. Lai, X., Massey, J., Murphy, S.: Markov ciphers and differential cryptanalysis. In: Davies, D.W. (ed.) EUROCRYPT 1991. LNCS, vol. 547, pp. 17-38. Springer, Heidelberg (1991)
30. Lai, X., Massey, J.L.: A proposal for a new block encryption standard. In: Damgård, I.B. (ed.) EUROCRYPT 1990. LNCS, vol. 473, pp. 389-404. Springer, Heidelberg (1991)
31. Massey, J.: SAFER-K64: a byte-oriented block-ciphering algorithm. In: Anderson, R. (ed.) Fast Software Encryption. LNCS, vol. 809, pp. 1-17. Springer, Heidelberg (1994)
32. Massey, J.: SAFER-K64: one year later. In [43], pp. 212-241
33. Massey, J.: Strengthened key schedule for the cipher SAFER. Posted on USENET newsgroup sei.crypt (September 9, 1995)
34. Matsui, M.: The first experimental cryptanalysis of the Data Encryption Standard. In: Desmedt, Y.G. (ed.) CRYPTO 1994. LNCS, vol. 839, pp. 1-11. Springer, Heidelberg (1994)
35. Matsui, M.: New structure of block ciphers with provable security against differential and linear cryptanalysis. In [12], pp. 205-218
36. Menezes, A., Van Oorschot, P., Vanstone, S.: Handbook of applied cryptography. The CRC Press series on discrete mathematics and its applications. CRC-Press, Boca Raton, USA (1997)
37. Minier, M., Gilbert, H.: Stochastic cryptanalysis of Crypton. In: Schneier, B. (ed.) FSE 2000. LNCS, vol. 1978, pp. 121-133. Springer, Heidelberg (2001)
38. Murphy, S.: An analysis of SAFER. Journal of Cryptology 11(4), 235-251 (1998)
39. Nakahara, J., Preneel, B., Vandewalle, J.: Linear cryptanalysis of reduced-round versions of the SAFER block cipher family. In: Schneier, B. (ed.) FSE 2000. LNCS, vol. 1978, pp. 244-261. Springer, Heidelberg (2001)
40. Nathanson, M.B.: Elementary Methods in Number Theory. Graduate Texts in Mathematics. Springer, Heidelberg (2000)
41. Nyberg, K.: Linear approximation of block ciphers. In [10], pp. 439-444
42. Parker, M.: Generalized S-Box linearity. Technical report, NESSIE Project (2003), https://www.cryptonessie.org
43. Preneel, B. (ed.): Fast Software Encryption. LNCS, vol. 1008. Springer, Heidelberg (1995)
44. Rice, J.A.: Mathematical Statistics and Data Analysis, 2nd edn. Duxbury Press, Boston, MA (1995)
45. Schroeppel, R.: Hasty pudding cipher specification (June 1998), available on http://www.cs.arizona.edu/~rcs/hpc/hpc-spec
46. Shimoyama, T., Kaneko, T.: Quadratic relation of S-Box and its application to the linear attack of full round DES. In: Krawczyk, H. (ed.) CRYPTO 1998. LNCS, vol. 1462, pp. 200-211. Springer, Heidelberg (1998)
47. Standaert, F.-X., Rouvroy, G., Piret, G., Quisquater, J.-J., Legat, J.-D.: Key-dependent approximations in cryptanalysis: an application of multiple Z4 and nonlinear approximations. In: 24th Symposium on Information Theory in the Benelux (2003)
48. Stern, J., Vaudenay, S.: CS-Cipher. In: Vaudenay, S. (ed.) FSE 1998. LNCS, vol. 1372, pp. 189-204. Springer, Heidelberg (1998)
49. Vaudenay, S.: On the need for multipermutations: Cryptanalysis of MD4 and SAFER. In [43], pp. 286-297
50. Vaudenay, S.: An experiment on DES statistical cryptanalysis. In: 3rd ACM Conference on Computer and Communications Security, pp. 139-147. ACM Press, New York (1996)
51. Vaudenay, S.: On the security of CS-cipher. In: Knudsen, L.R. (ed.) FSE 1999. LNCS, vol. 1636, pp. 260-274. Springer, Heidelberg (1999)
52. Wu, H., Bao, F., Deng, R., Ye, Q.-Z.: Improved truncated differential attacks on SAFER. In: Ohta, K., Pei, D. (eds.) ASIACRYPT 1998. LNCS, vol. 1514, pp. 133-147. Springer, Heidelberg (1998)