Skip to the main content

Original scientific paper

https://doi.org/10.21857/yvjrdcl0ey

A new representation of S-boxes for algebraic differential cryptanalysis

Alena Bednáriková ; Slovak University of Technology in Bratislava, Bratislava, Slovakia
Pavol Zajac orcid id orcid.org/0000-0003-1909-9453 ; Slovak University of Technology in Bratislava, Bratislava, Slovakia


Full text: english pdf 1.243 Kb

page 33-49

downloads: 472

cite


Abstract

Algebraic cryptanalysis can be used to break (small versions of) block ciphers with small data complexity. If we have access to a large number of P-C pairs, algebraic cryptanalysis can be combined with differential techniques. Differential characteristic produces extra linear equations, which can be used to augment the original algebraic system. In our experiments with algebraic differential cryptanalysis, we have developed a different technique to represent the system. In our new method, we model a single P-C pair based encryption, but we use the differential to restrict the equations that model active S-boxes. An algebraic system created with our new model is smaller, and can theoretically be solved faster. Our experiments show that the advantage depends on the overall number of P-C pairs available and whether the chosen differential characteristic is correctly estimated. One of the advantages of the new method is that it can use partial information from the differential and still determine a correct solution faster than both the standard algebraic attack and the standard algebraic-differential attack.

Keywords

Algebraic differential cryptanalysis; S-boxes

Hrčak ID:

261466

URI

https://hrcak.srce.hr/261466

Publication date:

25.8.2021.

Visits: 1.137 *