A new impossible differential attack on SAFER ciphers

Shihui Zheng; Licheng Wang; Yixian Yang

doi:10.1016/j.compeleceng.2009.08.004

A new impossible differential attack on SAFER ciphers

Shihui Zheng
, Licheng Wang^*
, Yixian Yang

^*Corresponding author for this work

Information Security Center

Research output: Contribution to journal › Article › peer-review

3 Citations (Scopus)

Abstract

This paper presents an improved impossible differential cryptanalysis of SAFER ciphers, which uses the miss-in-the-middle technique developed by Biham et al. We analyze 3.75-round SAFER SK-64,1(In this paper, the number in the name of the ciphers indicates the key length).¹ using 2⁴⁵ chosen plaintexts, 2³⁸ bytes memory and 2⁴² half round computations. Furthermore, the new impossible differential attack on 3.75-round SAFER+/128 uses 2⁷⁸ chosen plaintexts, 2⁷⁵ half round computations and 2⁶⁸ bytes memory. And attack on 3.75-round SAFER++/128 uses 2⁷⁸ data, 2⁶⁶ time, and 2⁶² memory.

Original language	English
Pages (from-to)	180-189
Number of pages	10
Journal	Computers and Electrical Engineering
Volume	36
Issue number	1
DOIs	https://doi.org/10.1016/j.compeleceng.2009.08.004
Publication status	Published - Jan 2010
Externally published	Yes

Keywords

Impossible differential
SAFER+
SAFER++
SAFER-SK

Access to Document

10.1016/j.compeleceng.2009.08.004

Cite this

@article{6a3d7ca2ea78483b9073cf4d079b36ea,

title = "A new impossible differential attack on SAFER ciphers",

abstract = "This paper presents an improved impossible differential cryptanalysis of SAFER ciphers, which uses the miss-in-the-middle technique developed by Biham et al. We analyze 3.75-round SAFER SK-64,1(In this paper, the number in the name of the ciphers indicates the key length).1 using 245 chosen plaintexts, 238 bytes memory and 242 half round computations. Furthermore, the new impossible differential attack on 3.75-round SAFER+/128 uses 278 chosen plaintexts, 275 half round computations and 268 bytes memory. And attack on 3.75-round SAFER++/128 uses 278 data, 266 time, and 262 memory.",

keywords = "Impossible differential, SAFER+, SAFER++, SAFER-SK",

author = "Shihui Zheng and Licheng Wang and Yixian Yang",

year = "2010",

month = jan,

doi = "10.1016/j.compeleceng.2009.08.004",

language = "English",

volume = "36",

pages = "180--189",

journal = "Computers and Electrical Engineering",

issn = "0045-7906",

publisher = "Elsevier Ltd.",

number = "1",

}

TY - JOUR

T1 - A new impossible differential attack on SAFER ciphers

AU - Zheng, Shihui

AU - Wang, Licheng

AU - Yang, Yixian

PY - 2010/1

Y1 - 2010/1

N2 - This paper presents an improved impossible differential cryptanalysis of SAFER ciphers, which uses the miss-in-the-middle technique developed by Biham et al. We analyze 3.75-round SAFER SK-64,1(In this paper, the number in the name of the ciphers indicates the key length).1 using 245 chosen plaintexts, 238 bytes memory and 242 half round computations. Furthermore, the new impossible differential attack on 3.75-round SAFER+/128 uses 278 chosen plaintexts, 275 half round computations and 268 bytes memory. And attack on 3.75-round SAFER++/128 uses 278 data, 266 time, and 262 memory.

AB - This paper presents an improved impossible differential cryptanalysis of SAFER ciphers, which uses the miss-in-the-middle technique developed by Biham et al. We analyze 3.75-round SAFER SK-64,1(In this paper, the number in the name of the ciphers indicates the key length).1 using 245 chosen plaintexts, 238 bytes memory and 242 half round computations. Furthermore, the new impossible differential attack on 3.75-round SAFER+/128 uses 278 chosen plaintexts, 275 half round computations and 268 bytes memory. And attack on 3.75-round SAFER++/128 uses 278 data, 266 time, and 262 memory.

KW - Impossible differential

KW - SAFER+

KW - SAFER++

KW - SAFER-SK

UR - https://www.scopus.com/pages/publications/72649090785

U2 - 10.1016/j.compeleceng.2009.08.004

DO - 10.1016/j.compeleceng.2009.08.004

M3 - Article

AN - SCOPUS:72649090785

SN - 0045-7906

VL - 36

SP - 180

EP - 189

JO - Computers and Electrical Engineering

JF - Computers and Electrical Engineering

IS - 1

ER -

A new impossible differential attack on SAFER ciphers

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this