Linear cryptanalysis reduced round of piccolo-80

Tomer Ashur, Orr Dunkelman, Nael Masalha

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademicpeer review

2 Citaten (Scopus)

Samenvatting

Piccolo is a 64-bit lightweight block cipher suitable for constrained environments such as wireless sensor networks. In this paper we evaluate the security of Piccolo-80 against linear cryptanalysis, we present a 6-round linear approximation of Piccolo-80 with probability 1/2+2-29.04. We use this approximation to attack 7-round Piccolo-80 (with whitening keys) with data complexity of 261 known plaintexts and time complexity of 261. Its extension to an 8-round attack merely increases the time complexity to 270. This is the best linear attack against Piccolo-80 and it is also applicable to Piccolo-128 as the difference between the two variates is only the number of rounds and the key schedule algorithm. Moreover, we show that the bias in the approximation of the F-function, in some cases, is related to the MSB of the input. We utilize this relation to efficiently extract the MSBs of the whitening keys in the first round.
Originele taal-2Engels
TitelCyber Security Cryptography and Machine Learning - 3rd International Symposium, CSCML 2019, Proceedings
SubtitelCSCML 2019
RedacteurenShlomi Dolev, Danny Hendler, Sachin Lodha, Moti Yung
Plaats van productieCham
UitgeverijSpringer
Pagina's16-32
Aantal pagina's17
ISBN van elektronische versie978-3-030-20951-3
ISBN van geprinte versie978-3-030-20950-6
DOI's
StatusGepubliceerd - 19 mei 2019
Extern gepubliceerdJa
EvenementInternational Symposium on Cyber Security Cryptography and Machine Learning (CSCML 2019) - Beer-Sheva, Israël
Duur: 27 jun. 201928 jun. 2019

Publicatie series

NaamLecture Notes in Computer Science
UitgeverijSpringerLink
Volume11527

Congres

CongresInternational Symposium on Cyber Security Cryptography and Machine Learning (CSCML 2019)
Land/RegioIsraël
StadBeer-Sheva
Periode27/06/1928/06/19

Vingerafdruk

Duik in de onderzoeksthema's van 'Linear cryptanalysis reduced round of piccolo-80'. Samen vormen ze een unieke vingerafdruk.

Citeer dit