嵌套SP网络的New-Structure系列结构的零相关线性逼近与不可能差分性质研究

doi:10.3969/j.issn.0372-2112.2017.06.013

电子学报 ›› 2017, Vol. 45 ›› Issue (6): 1367-1374.DOI: 10.3969/j.issn.0372-2112.2017.06.013

嵌套SP网络的New-Structure系列结构的零相关线性逼近与不可能差分性质研究

付立仕, 崔霆, 金晨辉

解放军信息工程大学, 河南郑州 450001

收稿日期:2015-10-22 修回日期:2016-01-27 出版日期:2017-06-25
- 作者简介:
- 付立仕 女,1989年生于河南南阳.现为解放军信息工程大学密码工程学院博士研究生.主要研究方向为分组密码的设计与分析.E-mail:15036018167@163.com;崔霆男,1985年生于安徽铜陵.现为解放军信息工程大学讲师.主要研究方向为分组密码.E-mail:cuiting_1209@126.com;金晨辉 男,1965年生于河南周口.现为解放军信息工程大学教授、博士生导师.主要研究方向为密码学.E-mail:jinchenhui@126.com
- 基金资助:
- 国家自然科学基金 (No.61272488，No.61402523）

Zero Correlation Linear Approximations and Impossible Differentials of New-Structure Series with SP Networks

FU Li-shi, CUI Ting, JIN Chen-hui

PLA Information Engineering University, Zhengzhou, Henan 450001, China

Received:2015-10-22 Revised:2016-01-27 Online:2017-06-25 Published:2017-06-25
- Supported by:
- National Natural Science Foundation of China (No.61272488, No.61402523)

摘要/Abstract

摘要：

分组密码的安全性分析是密码学的重要研究内容，其中不可能差分分析和零相关线性分析是密码算法安全性分析的重要方法.本文利用中间相错方法，通过对扩散层进行限制，给出了嵌套SP网络的New-Structure 系列结构的零相关线性逼近.给出了New-Structure I和New-Structure IV结构中概率非零的差分传递链和相关优势非零的线性逼近传递链在结构上的一致性.此外也给出了嵌套SP网络New-Structure I、III的16/22轮不可能差分特征.最后给出在分组规模和密钥规模均为128比特时，对New-Structure I，III，IV进行21/28/22轮的不可能差分攻击和19/28/22轮的多维零相关线性逼近攻击所需要的时间复杂度和数据复杂度.本文的结果对基于New-Structure结构设计的密码算法的安全性分析提供了理论依据.

关键词: 信息安全, 不可能差分分析, 零相关线性分析, New-Structure系列

Abstract:

The security analysis of block cipher is an important respect in cryptology.Impossible differential analysis and zero-correlation linear cryptanalysis are important methods to evaluate the security of cryptographic algorithms.Based on miss-in-the-middle method and the restrictions on the diffusion layer,this paper gives the zero correlation linear approximations for New-Structure series with SP networks.This paper also presents the consistency between the structures of the differential characteristic with nonzero probability and linear approximation with nonzero correlation coefficient in New-Structure I and New-Structure IV.Moreover,this paper gives the 16/22-round impossible differentials for New-Structure I and III with SP networks respectively.Finally,when the block size and key size are both 128-bit,this paper gives the time complexities and data complexities of the 21/28/22-round impossible differential attack (resp.19/28/22-round multidimensional zero-correlation linear approximation attack) on New-Structure I,III,IV.The results provide theoretical foundations for one cryptographic algorithm based on New-Structure series.

Key words: information security, impossible differential cryptanalysis, zero-correlation linear cryptanalysis, New-Structure series

中图分类号:

TN918.1

付立仕, 崔霆, 金晨辉. 嵌套SP网络的New-Structure系列结构的零相关线性逼近与不可能差分性质研究[J]. 电子学报, 2017, 45(6): 1367-1374.

FU Li-shi, CUI Ting, JIN Chen-hui . Zero Correlation Linear Approximations and Impossible Differentials of New-Structure Series with SP Networks[J]. Acta Electronica Sinica, 2017, 45(6): 1367-1374.

参考文献

[1] Knudsen L.DEAL-a 128-bit Block Cipher[R].Bergen,Norway:Department of Informatics,University of Bergen,1998.
[2] Biham E,Biryukov A,Shamir A.Cryptanalysis of Skipjack reduced to 31 rounds using impossible differentials[A].Jacques S.Advances in Cryptology-EUROCRYPT'1999[C].Prague,Czech Republic:Springer,1999.2-23.
[3] Biham E,Dunkelman O,Keller N.Related-Key impossible differential attacks on 8-round AES-192[A].David P.Topics in Cryptology-CT-RSA'2006[C].San Jose,USA:Springer,2006.21-33.
[4] Dunkelman O,Keller N.An improved impossible differential attack on MISTY1[A].Josef P.Advances in Cryptology——ASIACRYPT'2008[C].Melbourne,Australia:Springer,2008.441-454.
[5] 魏悦川,孙兵,李超.FOX密码的不可能差分分析[J].通信学报,2010,31(9):24-29. Wei Yue-chuan,Sun Bing,Li Chao.Impossible differential attacks on FOX[J].Journal on Communications,2010,31(9):24-29.(in Chinese)
[6] Li X R,Fu F W,Guang X.Multiple impossible differential cryptanalysis on reduced FOX[J].IEICE Transactions on Fundamentals of Electronics,Communications and Computer Sciences,2015,E98-A(3):906-911.
[7] Boura C,Plasencia M N,Suder V.Scrutinizing and improving impossible differential attacks:applications to CLEFIA,Camellia,LBlock and Simon[A].Palash S.Advances in Cryptology-ASIACRYPT'2014[C].Taiwan,China:Springer,2014.179-199.
[8] Bogdanov A,Rijmen V.Linear hulls with correlation zero and linear cryptanalysis of block ciphers[J].Designs,Codes and Cryptography,2014,70(3):369-383.
[9] Bogdanov A,Wang M.Zero correlation linear cryptanalysis with reduced data complexity[A].Bruce S.Advances in Cryptology-FSE'2012[C].Washington,DC,USA:Springer,2012.29-48.
[10] Bogdanov A,Leander G,Nyberg K.Integral and multidimensional linear distinguishers with correlation zero[A].Wang X Y.Advances in Cryptology-ASIACRYPT'2012[C].Beijing,China:Springer,2012.244-261.
[11] Bogdanov A,Boura C,Rijmen V.Key difference invariant bias in block ciphers[A].Kazue S.Advances in Cryptology-ASIACRYPT'2013[C].Bangalore,India:Springer,2013.357-376.
[12] Wen L,Wang M,Bogdanov A.Multidimensional zero-correlation linear cryptanalysis of E2[A].Pointcheval.Advances in Cryptology-AFRICACRYPT'2014[C].Marrakesh,Morocco:Springer,2014.147-164.
[13] Bogdanov A,Geng H,Wang M.Zero-correlation linear cryptanalysis with FFT and improved attacks on ISO standards Camellia and CLEFIA[A].Tanja L.Selected Areas in Cryptography-SAC' 2013[C].Burnaby,Canada:Springer,2013.306-323.
[14] Wen L,Wang M Q,Bogdanov A.Multidimensional zero-correlation attacks on lightweight block cipher HIGHT:improved cryptanalysis of an ISO standard[J].Information Processing Letters,2014,114(6):322-330.
[15] Blondeau C,Nyberg K.New links between differential and linear cryptanalysis[A].Thomas J.Advances in Cryptology-EUROCRYPT'2013[C].Athens:Springer,2013.388-404.
[16] Blondeau C,Bogdanov A,Wang M.On the (in) equivalence of impossible differential and zero-correlation distinguishers for Feistel-and Skipjack-type ciphers[A].Yoko K,Applied Cryptography and Network Security-ACNS'2014[C].Lausanne,Switzerland:Springer,2014.271-288.
[17] Wu S B,Wang M S.Security Evaluation Against Differential Cryptanalysis for Block Cipher Structures[EB/OL].http://eprint.iacr.org/2011/551,2011.
[18] Cui T,Jin C H.Impossible differential evaluations for New-Structure series[J].Chinese Journal of Electronics,2014,23(2):357-360.
[19] Wei Y C,Li P,Sun B,Li C.Impossible differential cryptanalysis on Feistel ciphers with SP and SPS round functions[A].Jafri M A,Applied Cryptography and Network Security-ACNS'10[C].Beijing,China:Springer,2010.105-122.
[20] 张庆贵.不可能差分攻击中的明文对筛选方法[J].计算机工程,2010,36(2):127-129. Zhang Qing-gui.Plaintext pair sieve methods in impossible differential attack[J].Computer Engineering,2010,36(2):127-129.(in Chinese)

嵌套SP网络的New-Structure系列结构的零相关线性逼近与不可能差分性质研究

Zero Correlation Linear Approximations and Impossible Differentials of New-Structure Series with SP Networks

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	朱健, 胡凯, 张伯钧. 智能合约的形式化验证方法研究综述[J]. 电子学报, 2021, 49(4): 792-804.
[2]	王继军, 李国祥, 夏国恩, 孙泽锐. 图像插值空间完全可逆可分离密文域信息隐藏算法[J]. 电子学报, 2020, 48(1): 92-100.
[3]	王继军, 孙泽锐, 李国祥. 图像抛物线插值空间大容量可逆信息隐藏算法[J]. 电子学报, 2019, 47(1): 137-144.
[4]	房卫东, 张武雄, 杨旸, 张传雷, 陈伟. 基于生物特征标识的无线传感器网络三因素用户认证协议[J]. 电子学报, 2018, 46(3): 702-713.
[5]	王森, 邱扬, 田锦, 许清琳. 基于视觉效应的视频信息电磁泄漏抑制方法研究[J]. 电子学报, 2017, 45(8): 2038-2043.
[6]	肖玮, 陈性元, 包义保. 可重构信息安全系统研究综述[J]. 电子学报, 2017, 45(5): 1240-1248.
[7]	贾平, 徐洪, 来学嘉. LBlock-s算法的不可能差分分析[J]. 电子学报, 2017, 45(4): 966-973.
[8]	雷红轩, 彭家寅, 刘熠. 几类非确定型量子程序的终止验证[J]. 电子学报, 2016, 44(12): 2932-2938.
[9]	曹东, 宋耀良. 基于纠缠辅助码的量子模糊承诺和生物认证[J]. 电子学报, 2012, 40(7): 1492-1496.
[10]	蔡涛, 鞠时光, 仲巍, 牛德姣. 基于切割的检测器生成与匹配算法[J]. 电子学报, 2009, 37(S1): 131-134,86.
[11]	赵险峰;李宁;邓艺. 一种保护芯片设计的多变量加密及其电路结构[J]. 电子学报, 2009, 37(6): 1300-1306.
[12]	赵和平;赵聆波. 一种基于物理噪声源的复合加密算法[J]. 电子学报, 2009, 37(10): 2193-2198.
[13]	杨庚;程宏兵;. 一种有效的无线传感器网络密钥协商方案[J]. 电子学报, 2008, 36(7): 1389-1395.
[14]	邱扬;魏丽丽;田锦;陈光达;钱柳宇. 基于数字滤波的计算机视频信息防泄漏研究[J]. 电子学报, 2008, 36(6): 1188-1192.
[15]	章文辉;杜百川;杨盈昀. 模糊层次分析法在广播电视信息安全保障评价指标体系中的应用研究[J]. 电子学报, 2008, 36(10): 2060-2064.