TY - GEN
T1 - Improvement on the method for automatic differential analysis and its application to two lightweight block ciphers DESL and LBlock-s
AU - Sun, Siwei
AU - Hu, Lei
AU - Qiao, Kexin
AU - Ma, Xiaoshuang
AU - Shan, Jinyong
AU - Song, Ling
N1 - Publisher Copyright:
© Springer International Publishing Switzerland 2015.
PY - 2015
Y1 - 2015
N2 - With the development of the ubiquitous computing and large-scale information processing systems, the demand for lightweight block ciphers which is suitable for resource constrained computing devices is increasing. Hence, the methodology for design and analysis of block ciphers is becoming more important. In this paper, we use the Mixed-Integer Linear Programming (MILP) based tools for automatic differential cryptanalysis in a clever way to find improved single-key and related-key differential characteristics for DESL (a lightweight variant of the well known Data Encryption Standard), and obtain tighter security bound for LBlock-s (a core component of an lightweight authenticated encryption algorithm submitted to the international competition for authenticated encryption – CAESAR) against related-key differential attack. To be more specific, in searching for improved characteristics, we restrict the differential patterns allowed in the first and last rounds of the characteristics in the feasible region of an MILP problem by imposing different constraints than other rounds, and we partition the differential patterns of the DESL S-box into different sets with 2-bit more information associated with each pattern according to their probabilities. In addition, we show how to use the Gurobi optimizer combined with a known good characteristic to speed up the characteristic searching and bound proving process. Using these techniques, we managed to find the currently known best 9-round related-key differential characteristic for DESL, and the first published nontrivial related-key and single-key differential characteristics covering 10 rounds of DESL. Also, we obtain the currently known tightest security bound for LBlock-s against relatedkey differential attack. These techniques should be useful in analysis and design of other lightweight block ciphers.
AB - With the development of the ubiquitous computing and large-scale information processing systems, the demand for lightweight block ciphers which is suitable for resource constrained computing devices is increasing. Hence, the methodology for design and analysis of block ciphers is becoming more important. In this paper, we use the Mixed-Integer Linear Programming (MILP) based tools for automatic differential cryptanalysis in a clever way to find improved single-key and related-key differential characteristics for DESL (a lightweight variant of the well known Data Encryption Standard), and obtain tighter security bound for LBlock-s (a core component of an lightweight authenticated encryption algorithm submitted to the international competition for authenticated encryption – CAESAR) against related-key differential attack. To be more specific, in searching for improved characteristics, we restrict the differential patterns allowed in the first and last rounds of the characteristics in the feasible region of an MILP problem by imposing different constraints than other rounds, and we partition the differential patterns of the DESL S-box into different sets with 2-bit more information associated with each pattern according to their probabilities. In addition, we show how to use the Gurobi optimizer combined with a known good characteristic to speed up the characteristic searching and bound proving process. Using these techniques, we managed to find the currently known best 9-round related-key differential characteristic for DESL, and the first published nontrivial related-key and single-key differential characteristics covering 10 rounds of DESL. Also, we obtain the currently known tightest security bound for LBlock-s against relatedkey differential attack. These techniques should be useful in analysis and design of other lightweight block ciphers.
KW - Authenticated encryption
KW - Automatic cryptanalysis
KW - Mixed-Integer Linear Programming
KW - Relatedkey differential attack
KW - Security evaluation
UR - http://www.scopus.com/inward/record.url?scp=84944727716&partnerID=8YFLogxK
U2 - 10.1007/978-3-319-22425-1_7
DO - 10.1007/978-3-319-22425-1_7
M3 - Conference contribution
AN - SCOPUS:84944727716
SN - 9783319224244
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 97
EP - 111
BT - Advances in Information and Computer Security - 10th International Workshop on Security, IWSEC 2015, Proceedings
A2 - Tanaka, Keisuke
A2 - Suga, Yuji
PB - Springer Verlag
T2 - 10th International Workshop on Security, IWSEC 2015
Y2 - 26 August 2015 through 28 August 2015
ER -