Study of the invariant coset attack on PRINTcipher: more weak keys with practical key recovery

In this paper we investigate the invariant property of PRINTcipher first discovered by Leander et al. in their CRYPTO 2011 paper. We provide a thorough study of the question, showing that there exist 64 classes of weak keys for PRINTcipher--48 and many more for PRINTcipher--96. We show that for many classes of weak keys the key recovery can be done in a matter of minutes in the chosen plaintext scenario. In fact, at least $2^{48}$ weak keys can be recovered in less than 20 minutes per key on a single PC using only a few chosen plaintexts. We provide detailed treatment of the methods and put them in a more general context that opens new interesting directions of research for PRESENT-like ciphers.

[1]  Matthew J. B. Robshaw,et al.  Algebraic aspects of the advanced encryption standard , 2006 .

[2]  Wenling Wu,et al.  LBlock: A Lightweight Block Cipher , 2011, ACNS.

[3]  A. E. Harmanci,et al.  Combined Differential and Linear Cryptanalysis of Reduced-Round PRINTcipher , 2011, Selected Areas in Cryptography.

[4]  Christophe De Cannière,et al.  KATAN and KTANTAN - A Family of Small and Efficient Hardware-Oriented Block Ciphers , 2009, CHES.

[5]  Gregor Leander,et al.  Differential Cryptanalysis of Round-Reduced PRINTcipher: Computing Roots of Permutations , 2011, FSE.

[6]  Tao Wang,et al.  Fault-propagation Pattern Based DFA on SPN Structure Block Ciphers using Bitwise Permutation, with Application to PRESENT and PRINTcipher , 2011, IACR Cryptol. ePrint Arch..

[7]  Dawu Gu,et al.  Differential and Linear Cryptanalysis Using Mixed-Integer Linear Programming , 2011, Inscrypt.

[9]  Matt Henricksen,et al.  EPCBC - A Block Cipher Suitable for Electronic Product Code Encryption , 2011, CANS.

[10]  Matthew J. B. Robshaw,et al.  PRINTcipher: A Block Cipher for IC-Printing , 2010, CHES.

[11]  Andrey Bogdanov,et al.  spongent: A Lightweight Hash Function , 2011, CHES.

[12]  Andrey Bogdanov,et al.  PRESENT: An Ultra-Lightweight Block Cipher , 2007, CHES.

[13]  Gregory V. Bard,et al.  Algebraic Cryptanalysis , 2009 .

[14]  Thomas Peyrin,et al.  The LED Block Cipher , 2011, IACR Cryptol. ePrint Arch..

[15]  Stanislav Bulygin,et al.  Algebraic Cryptanalysis of the Round-Reduced and Side Channel Analysis of the Full PRINTCipher-48 , 2011, CANS.

[16]  Thomas Johansson,et al.  Linear Cryptanalysis of PRINTcipher - Trails and Samples Everywhere , 2011, INDOCRYPT.